We all approach the cybercrime issue with a very unrealistic attitude that the cybercriminal is a geek who really does not understand what they are doing. To most people the cybercriminal is just in it for the fun.
Compound that with our own attitude of
- we are too small to be a target,
- it won’t happen to me and
- we have nothing worth stealing
And you can see why we have a problem.
Cybercrime perpetrated on the digital world is no longer hap hazard or uncoordinated.
The cybercrime gangs are well organised, exceptionally well run and ruthless in who and what they target. In most situations the main cybercrime gangs are better run and managed than the small and medium business and large Organisations that they target.
What most people do not realise is that most of the high level cybercrime gangs have the same principles as everyone else who is using the digital world.
Make as much as they can!
Make it as fast as possible!
They steal, destroy and manipulate the normal users of the digital world because there is little or no perceived repercussions if they get caught.
The difference is that they know so much more about the digital world than we ever will. They also know how to exploit our vulnerabilities.
Most of the criminal enterprises have a similar structure to every other business.
They have a management team, they have marketing and sales, they have advertising and sales, they deliver products to their clients and they use research and development to create more product.
Their clients are the 12 – 24 year old wanna be hackers who think they would like the glamorous world of a cybercriminal.
Their product is automated systems that gather data and probe exploits on anyone or anything that is connected to the digital world.
They then feed that information back to the command and control systems to create better and more complex systems that are easy for the wanna bes to use.
When it comes to making money they have the same attitude as most SME’s. Make more than you spend.
Apart for the fact that you do not get fired and the retirement plan for the bottom level of the organisation is not very good. Once in the gang, the smallest stuff up and you could be found in the lake face down or even worse never found at all.
If you understand the cybercrime business then you have a better chance of protecting yourself against it.
Roger Smith is the CEO of R & I ICT Consulting Services, Amazon #1 selling author on Cybercrime, author of the Digital Security Toolbox and author of the SME digital security framework. He is a Speaker, Author, Teacher and educator on cybercrime and how to protect yourself from the digital world.