Access Keys

Cybercrime advice | Internet Crime

Personal

More topics >

Cybercrime

There’s no doubt that for those of us who use the Internet every day, it has made our lives much easier. Unfortunately however, the same is also true for criminals. The way that we share and store so much personal information online means that it has never been easier for criminals to gain access to that information and then use it to carry out various activities that help them to make money whilst causing harm and loss to others.

What is cybercrime?

‘Cybercrime’ is a blanket term that covers a wide range of criminal activities that are carried out using computers and the Internet. It is a term we hear a lot in the media, and there is no doubt that it is a growing problem globally and here in the UK; for businesses and individuals alike.

In February 2011, the UK government commissioned a report that suggested cybercrime was costing the UK economy £27 billion pounds a year. Most of that cost, £21 billion, affected businesses through activities such as intellectual property theft, industrial espionage, online theft and theft of customer data. The report also suggested that cybercrime cost the Government £2.2 billion and UK citizens £1.3 billion. The Government is taking the problem seriously and has committed £650 million to a strategy over the next four years to deal with the problem.  You can read more about the report on the Cabinet Office website.

However, it is important not to get carried away by the dangers we might face when we use the Internet for business or pleasure. It is possible for us to use the Internet quite confidently and safely, providing that we take a few sensible precautions.

The information in this section outlines some of the types of activities under the term ‘cybercrime’ that might affect you as an individual, and will help you to take the necessary steps to protect your identity and your computer as you use the Internet every day.

How to avoid becoming a victim of cybercrime

Please read our section on ‘Avoiding cybercrime’ to learn more about the different activities covered by the term ‘cybercrime’ and find out how to protect yourself and your computer by taking a few simple steps.

Further information

If you have been a victim of cybercrime, the following organisations offers further advice on what action you should take:

Getsafeonline – victim support: http://www.getsafeonline.org/nqcontent.cfm?a_id=1171
 
Police Central e-Crime unit: http://www.met.police.uk/pceu/cyber_crime.html
 
e-Crime Wales: https://www.ecrimewales.com/server.php?show=nav.8858&cdt=20110915163852

This personal information might also be of interest: Identity theft
This business information might also be of interest: Cybercrime, Identity theft

Avoiding cybercrime

The term ‘cybercrime’ covers a wide range of activities that are carried out against businesses and individuals using computers and the Internet.

The main activities that affect individuals are:

  • Computer misuse (including hacking, spam email, Trojans, viruses, botnets etc.)
  • Financial fraud (including scams, online theft, phishing etc.)
  • Identity theft and identity fraud
  • Offences against the person (including cyberbullying, hate crimes, child sexual abuse content)

General tips to help you avoid becoming a victim of cybercrime

  • Treat all unsolicited emails (especially those from unknown senders) with caution and never click on links from such emails to visit unknown web sites - these could contain links to code that could affect your computer.
  • Don’t open attachments in emails that you’re not expecting – they could contain a virus or code that would enable someone to control your computer.
  • Don’t share files or programs with other users.
  • Don’t use free software unless you know it’s reputable and safe.
  • Install anti-virus software, keep it up-to-date and run regular security scans.
  • Install the latest security updates, also known as patches.
  • Install and learn how to use a personal firewall.
  • Be careful not to share personal information such as address information, bank details, telephone numbers, date of birth etc. on social networking sites and other websites that do not use encryption to secure the information you publish.
  • Do not use the same password across multiple websites. Although this makes it more difficult to manage your online accounts it is worth the effort, you can also use password management software and encryption to make this easier.

Further information on protecting yourself from specific types of cybercrime

We have information on how to protect yourself from Trojans, viruses, botnets and hoax emails.

You can also find information about phishing and how to protect yourself plus specific advice about identity theft.

For information on how to protect your computer visit:www.getsafeonline.org.uk

 

What to do if you become a victim of cybercime

There are a number of organisations who provide specialist information about cybercrime, including scams and online fraud:

Getsafeonline provides detailed advice on how to rectify common online security problems, and how to report cybercrime.

Action Fraud - if you have been a victim of online fraud you can report it to Action Fraud.  They also provide a number of support resources as well as tips to avoid becoming a victim of cybercrime.

This business information might also be of interest: Cybercrime

What is phishing?

Phishing is the name given to the practice of sending emails at random claiming to come from a genuine company operating on the Internet, in an attempt to trick customers of that company into disclosing information at a bogus website operated by fraudsters. These emails usually claim that it is necessary to "update" or "verify" your customer account information and they urge people to click on a link from the email.

Unsuspecting users will click on a web link in an email, which then takes them to a fake web site where they enter their name, password, credit card details etc., unaware that this personal information is going straight to a criminal gang. Although there are safeguards in both the processes that banks use and the email and web browsing software, many people still fall for these scams.

How can I protect myself against phishing scams?

The key thing is to always be suspicious of all unsolicited or unexpected emails you receive, even if they appear to originate from a trusted source. Although your bank may contact you by email, they will never ask you to reconfirm your login or security password information by clicking on a link in an email and visiting a web site. Stop to think about how your bank normally communicates with you and never disclose your password in full or personal information.

Further information

For more information on phishing visit: www.banksafeonline.org.uk/phishing_explained.html

To view a list of the latest phishing emails sorted by bank, please visit:
www.banksafeonline.org.uk/phishing_examples.html

Detailed advice on how to protect your computer is available on www.getsafeonline.org.uk.

This personal information might also be of interest: Online banking, Viruses

Protect yourself from phishing

The safest thing is to ignore any invitation to click a link, but instead browse directly to the website you know belongs to the organisation in question. This may take a little more time, but is the safest method.

Once there you will quickly see whether the message in the email was genuine or not. Many email programs now include a feature which pops up a warning of fake addresses when you hover the mouse over a link in an email. If you see this warning, don’t click the link, just delete the email.

The latest version of web browsers like Internet Explorer, Chrome and Firefox can also check the address of a website against a database of known bad sites and warn you if you’re about to visit a fake one.

How to protect yourself from phishing

To protect yourself from phishing attacks, follow these simple rules:

  • Never open emails from people you don’t know. Delete them and empty the bin.
  • Never reply to phishing emails. No real financial institution will ever ask you for your credentials in an email.
  • Check the web site address when you are buying something over the Internet - open a browser window and use a search engine to find the site. If the addresses don’t match, it's probable that the site you are about to visit is fake.
  • Check your bank and credit card statements carefully and report any unfamiliar transactions.
  • Use a personal firewall.
  • Use anti-virus software and update it at least daily or each time your computer is switched on.
  • Install software that looks for Trojans and deletes them.
  • Only download software from reputable sources. Free games and screensavers might be hiding Trojan software.
This personal information might also be of interest: Online banking, Viruses

What are botnets?

Botnets, also known as zombie armies, are groups of computers on the Internet, under the control of criminals. Each computer in the botnet has been infected by malicious software, but usually the owners have no idea, since the criminals control the computers remotely and silently. Once your computer has been compromised, it is known as a bot (a software robot) or a zombie, and the criminal controlling it is known as a BotHerder.

BotHerders use botnets to carry out all kinds of criminal activities - to send out email spam, to distribute malicious software (malware), to commit fraud and, of course, to infect more computers and make more botnets.

Between 50% and 80% of all spam is sent by zombie computers. This allows spammers to avoid detection and of course the owners of zombies pay for their Internet connections too. This spam also furthers the spread of Trojan horses, malicious programs which allow the criminals to take control of a computer.

Examples of Botnets

There are a number of examples of botnets, including:

Denial of service attacks

Botnets can also be used to conduct distributed denial-of-service (DoS) attacks (the co-ordinated flooding of target web sites). Making thousands of simultaneous requests to a web site will result in the site crashing and legitimate users will be unable to access the site.

Installing a key logger

Some malware programs also install a key logger, which intercepts your keystrokes when you type a password, credit card number, or other information that may exploited. This information is transmitted to the criminal silently and automatically, enabling credit card fraud and other theft.

Banking Trojans

Banking Trojans infect your web browser and ‘piggy-back’ when you log in to your bank. They can then modify or insert transactions in a fashion invisible to both you and the bank.

This business information might also be of interest: Cybercrime

What are Trojans?

Trojans take their name from the term 'Trojan Horse' and are a type of computer virus which can be installed on your computer without you realising. Trojans can be capable of installing a "keystroke logger", which captures all of the keystrokes entered into a computer keyboard. Some specifically seek to capture passwords entered at certain web sites, by capturing keystrokes or taking screen shots of sites you visit. This information is then sent to the fraudsters over the Internet.

Trojans are malicious programs which look innocent, fool you into accepting them, and then more or less take over your computer. You can go on using your PC or laptop while a criminal is also using it, remotely, for his illegal purposes. The criminals have also designed programs called “rootkits”, which hide the fact that your computer has been compromised, so your anti-virus software never spots the Trojan infection.

 

How do Trojans get on your computer?

So, how do Trojans get on to your computer in the first place? Many are sent via email attachment, masquerading as a legitimate piece of software. When you open the attachment, the Trojan silently installs itself on your computer. In most cases, there is no indication this has occurred, and you innocently play the game or enjoy the new screensaver before sending it on to the next victim in the chain. Instant messaging systems carry the same sorts of risks as email – files shared this way can just as easily carry a Trojan.

Typically the fraudsters send out emails at random to get people to click on a link from the email and visit a malicious website where vulnerabilities in the web browser are exploited to install the Trojan. The emails are normally related to Internet banking and try and dupe people into visiting clicking on the link to the malicious web site with a variety of excuses.

Even regular web browsing can pose a risk. Every day more and more websites are infected with malicious software without the site owner’s knowledge. Just visiting an infected site can result in your computer being infected in turn, and perhaps becoming part of a botnet.

Of course free software and even shareware software can also be infected. That exciting new game, screensaver or utility program can hide a Trojan program ready to infect your PC.

Social networking sites like Facebook are another rich opportunity for criminals, who dupe people into sending infected movies, pictures and web links to their friends.

Firewalls, up to date antivirus software and anti-spyware programmes all provide the best defence from Trojans so it is important you use these to protect your computer.

Further information

Find out more about Trojans, visit: www.banksafeonline.org.uk/trojans_explained.html

Read our guide on how to avoid becoming a victim of cybercrime

This personal information might also be of interest: Online banking, Online safety, Viruses
This business information might also be of interest: Viruses

Internet Safety

The internet is a great place to spend time in, socialising with friends and shopping online as well as doing research and online banking. However it is also a great place for criminals looking to hijack your computer, steal your identity, and ultimately steal from you. Knowthenet covers a wide range of information on internet safety, computer security, how to protect your computer, keep your family and kids safe online.

 Online criminals can get to you in a number of ways including:

  • Infect your computer with spyware to steal your identity
  • Rip you off, steal your identity and make you fall for scams
  • Mess up your computer with popups and viruses
  • Take over your computer and use it to attack other people
  • Hit you with spam and scam emails
  • Con you into visiting fake websites and handing over personal information
  • Hack into your wireless network
  • Use email and chat to bully, con or cheat you

You need to protect your privacy, your cash, your reputation and your computer. It is better to stop a problem before it happens than try to fix it afterwards. Protecting yourself is easier than you think.

Further information on internet safety

For more, independent online safety advice, please visit: www.getsafeonline.org

For specific information about online safety for children please visit http://www.thinkuknow.co.uk/

This personal information might also be of interest: Online safety

Latest online scams

Avoid becoming a victim of cybercrime, keep up to date with the latest scams. Here are some useful places to start:

 

Victim of an online scam?

If you have been a victim of cybercrime, the following organisations offers further advice on what action you should take:

Action Fraud - report a scam or fraud: http://www.actionfraud.org.uk/report_fraud

Getsafeonline – victim support: http://www.getsafeonline.org/nqcontent.cfm?a_id=1171

Police Central e-Crime unit: http://www.met.police.uk/pceu/cyber_crime.html

e-Crime Wales: https://www.ecrimewales.com/server.php?show=nav.8858&cdt=20110915163852

This personal information might also be of interest: Scams
This business information might also be of interest: Cybercrime

How useful was this article?

Nominet is constantly striving to improve the level of knowledge on this site. Your feedback is appreciated.

Topic areas

accidental outlaw

Recommended video

  • Inside the mind of a scammer
    How scammers prey on people online - a video from knowthenet
  • Inside the mind of a scammer
    How scammers prey on people online - a video from knowthenet
  • Inside the mind of a scammer
    How scammers prey on people online - a video from knowthenet
  • Inside the mind of a scammer
    How scammers prey on people online - a video from knowthenet
  • Inside the mind of a scammer
    How scammers prey on people online - a video from knowthenet
  • Inside the mind of a scammer
    How scammers prey on people online - a video from knowthenet
  • Inside the mind of a scammer
    How scammers prey on people online - a video from knowthenet
  • Inside the mind of a scammer
    How scammers prey on people online - a video from knowthenet

Recommended links