Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 1 Chapter Extension 24 Computer Crime and Forensics.

Published byCody Douglas Modified over 8 years ago

Similar presentations

Presentation on theme: "© 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 1 Chapter Extension 24 Computer Crime and Forensics."— Presentation transcript:

1 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 1 Chapter Extension 24 Computer Crime and Forensics

2 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 2 Software Piracy VideoSoftware Piracy Video (7 min) Compare and contrast the attitudes of the employees toward software piracy in this case with the attitudes of the boss and the legal counsel. (1/2 page word) (this is optional. If you missed a 2 point assignment, I suggest you pass it in) File is linked above video case left columnFile is linked above video case left column (SPA.rm) It takes time refresh if required, or get it below this file in the folder

3 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 3 In the news http://abcnews.go.com/Video/playerIndex?id= 2803149 (7:08) http://abcnews.go.com/Video/playerIndex?id= 2803149 Public Health Agency computers infected by worm Public Health Agency computers infected by worm

4 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 4 Agenda 1.What are the three types of computer crime? 2.What is the extent of computer crime? 3.How can computer crime be prevented? 4.What laws pertain to governmental search of computers? 5.What is computer forensics? 6.How should organizations respond to a suspected computer crime?

5 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 5 Video (7:20) Computer Forensics and Internet Safety

6 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 6 What Are the Three Types of Computer Crime? Crimes committed using computer Examples: theft of financial assets, phishing, child pornography Crimes committed against a computer Examples: viruses, unauthorized access, theft of proprietary data, theft of computer equipment Crimes where computer was used to store data that can be used as evidence Examples: address books, e-mails. Databases of criminal activity

7 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 7 What Is the Extent of Computer Crime? Many organizations don’t report crimes Top reported losses Viruses, unauthorized access, laptop theft, theft of proprietary data

8 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 8 Computer Crime, 2005 US FBI/CSI Survey Figure CE 24-2

9 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 9 How Can Computer Crime Be Prevented? Develop security plan Manage security risk List assets Determine threats against assets Develop safeguards May be uneconomic to create safeguards Management may accept risk of loss

10 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 10 In Canada If it is on the office computer it belongs to the company and If it is offensive it can cost a company thousands of dollars and you are unemployed

11 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 11 What Is Computer Forensics? Forensics Use of science to obtain data for use by legal system Computer forensics Identification, collection, examination, and preservation of digitally recorded data Easy to damage data during process Deleted data not really gone System de-allocates space on disk Data still resides there until over-written Software tools can read de-allocated space

12 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 12 Computer Forensics, continued Data may be hidden in many locations on network Files can be disguised by name and type Steganography Messages hid by encoding them in files Hidden in essential overhead data Programs for finding steganography are not effective

13 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 13 Organizational Responses to a Suspected Computer Crime Treat like any other security incident Develop incident response plan Actions should depend upon nature of crime Contain, eradicate, and recover Preserve evidence for prosecution May have to allow attack to continue to gather evidence Balance liability against need to know full nature of attack

14 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 14 The Sarbanes-Oxley Act of 2002 (US) Revision of Exchange Act of 1934 Enacted to prevent corporate fraud Requires management: Create internal controls for production of financial statements Issue statement attesting to control activities External auditor must issue opinion on quality of controls Exposes both management and external auditor to financial and criminal liability Goal was to upgrade financial reporting

15 © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 15 The Sarbanes-Oxley Act of 2002 (US) Intended to improve trust in financial reports More than 15 percent of IS will be diverted to SOx compliance No one knows exactly what is necessary for compliance Act requires external auditors become more independent Act is vague and is often given broadest possible interpretation Potential for millions of dollars to be wasted in compliance Implications for Canada: If a company is listed on the US stock marked it is subject to US laws

Download ppt "© 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke Slide 1 Chapter Extension 24 Computer Crime and Forensics."

Similar presentations

Chapter 11: Computer Crime, Fraud, Ethics, and Privacy

Chapter 11: Computer Crime, Fraud, Ethics, and Privacy
2 Issues of the information age Computer _______ and mistakes –Preventing computer related waste & mistakes Computer crime –Computer as tool to commit.

2 Issues of the information age Computer _______ and mistakes –Preventing computer related waste & mistakes Computer crime –Computer as tool to commit.
Fundamentals of Information Systems, Second Edition 1 Security, Privacy, and Ethical Issues in Information Systems and the Internet Chapter 9.

Fundamentals of Information Systems, Second Edition 1 Security, Privacy, and Ethical Issues in Information Systems and the Internet Chapter 9.
Chapter 5 Computer Fraud Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 5-1.

Chapter 5 Computer Fraud Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 5-1.
Computer Forensics By: Stephanie DeRoche Benjamin K. Ertley.

Computer Forensics By: Stephanie DeRoche Benjamin K. Ertley.
Chapter Extension 24 Computer Crime and Forensics © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke.

Chapter Extension 24 Computer Crime and Forensics © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke.
Class 11: Information Systems Ethics and Crime MIS 2101: Management Information Systems Based on material from Information Systems Today: Managing in the.

Class 11: Information Systems Ethics and Crime MIS 2101: Management Information Systems Based on material from Information Systems Today: Managing in the.
Auditing Computer-Based Information Systems

Auditing Computer-Based Information Systems
Forensic and Investigative Accounting Chapter 15 Cybercrime Management: Legal Issues © 2007 CCH. All Rights Reserved. 4025 W. Peterson Ave. Chicago, IL.

Forensic and Investigative Accounting Chapter 15 Cybercrime Management: Legal Issues © 2007 CCH. All Rights Reserved W. Peterson Ave. Chicago, IL.
Chapter 9: Privacy, Crime, and Security

Chapter 9: Privacy, Crime, and Security
Forensic and Investigative Accounting Chapter 16 Cybercrime Loss Valuations © 2011 CCH. All Rights Reserved. 4025 W. Peterson Ave. Chicago, IL 60646-6085.

Forensic and Investigative Accounting Chapter 16 Cybercrime Loss Valuations © 2011 CCH. All Rights Reserved W. Peterson Ave. Chicago, IL
CERT ® System and Network Security Practices Presented by Julia H. Allen at the NCISSE 2001: 5th National Colloquium for Information Systems Security Education,

CERT ® System and Network Security Practices Presented by Julia H. Allen at the NCISSE 2001: 5th National Colloquium for Information Systems Security Education,
MIS PERSONAL, LEGAL, ETHICAL, AND ORGANIZATIONAL ISSUES OF INFORMATION SYSTEMS CHAPTER 4 Hossein BIDGOLI Phishing Email that bites Paying for Privacy Pirates.

MIS PERSONAL, LEGAL, ETHICAL, AND ORGANIZATIONAL ISSUES OF INFORMATION SYSTEMS CHAPTER 4 Hossein BIDGOLI Phishing that bites Paying for Privacy Pirates.
© 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke

© 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Chapter Extension 1 Information Systems for Collaboration © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke.

Chapter Extension 1 Information Systems for Collaboration © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke.
Technology for Computer Forensics by Alicia Castro.

Technology for Computer Forensics by Alicia Castro.
Information Technology for the Health Professions, 2/e By Lillian Burke and Barbara Weill ©2005 Pearson Education, Inc. Pearson Prentice Hall Upper Saddle.

Information Technology for the Health Professions, 2/e By Lillian Burke and Barbara Weill ©2005 Pearson Education, Inc. Pearson Prentice Hall Upper Saddle.
OVERVIEW OF COMPUTER CRIME LEGISLATION IN HAWAII

OVERVIEW OF COMPUTER CRIME LEGISLATION IN HAWAII

Similar presentations

Ads by Google