Skip to main content

Is it Safe?

“Is it safe?” The famous line from a scene in the film, “Marathon Man” and a question which reflects the dangerously’ joined-up’ nature of world in which we live today.

Next month sees the 6th international ecrime congress in London, an annual event which gives business, finance, government and law enforcement an opportunity to discuss the new threats and challenges presented by the growing influence of serious and organised crime in cyberspace.

And the internet, “Is it safe?” Certainly not and the statistics argue that while in some areas, the risk of crime is being reduced through the introduction of new technical measures and policies, elsewhere and under the extreme pressures of criminal interests, new leaks are appearing in the collective firewall, which may become a flood if not acted upon quickly.

This year, even David Davis, the Conservative, Shadow Home Secretary, will be joining the directors of the FBI, US Secret Service, NATO and the likes of PayPal, Lloyds TSB and Unilever in London to reflect on a shared problem which threatens the world’s most advanced economies.

Over the last twelve months, leading UK banks such as Barclays, have been increasingly successful in reducing online fraud but corporate losses from computer crime have reportedly doubled and the incidence of identity theft among the broader population continues to rise dramatically with criminals increasingly focusing on individuals in cases of financial fraud rather than a business.

As business continues to develop their security counter-measures to deal with the more common, asymmetric, ‘mass-attack vector’, whether this has been a consequence of ‘spamming’, ‘phishing’, ‘Bot-nets’, ‘Denial of Service’ and all manner of other exploits, organized crime groups have been busily refining their activities. This, in turn, has led to the appearance of new tools and techniques to develop ‘Under the Radar’ targeted attacks on individuals and organizations, ‘neither broadly distributed nor unique in nature’ and displaying a much improved use of social engineering tactics.

Identity theft and what is being called, “data indifference”, continues to be a significant and steadily growing problem, whether this lies in the almost regular loss of confidential personal data by large companies and government agencies, such as HMRC or at the more sophisticated end of the spectrum, advanced identity theft from persistent bots and new exploits that seek to compromise home routers.

Compromised ‘Bot’ networks of personal computers continue to make headlines in greater and greater numbers and with increasing sophistication and effectiveness. Last month, in the United States, one hacker pleaded guilty to creating a network of more than 400,000 computers, which included those belonging to the country’s Defense Information Security Agency and in April of 2007, Estonia, the former Soviet Baltic republic was paralysed by an unprecedented online attack from networks in Russia. Estonian MP Silvar Meikar, a member of the country’s defence committee will be describing this attack at the ecrime congress.

Earlier this month, reported that Russia has now passed China to become the largest generator of spyware and malicious code and in terms of the source of criminal exploits. But Russia and China are not the only problem. IBM’s X-Force reports that the United States and Germany were the only two countries consistently among the top three hosting sources for each classification of “unwanted” Internet content monitored throughout 2007 and that the former “Far outpaces other countries as the primary hosting source of adult, socially deviant and criminal content on the Internet.”

The urgent question we need to answer, whether this be at conference, government, business or law-enforcement level, , surrounds the fundamental questions of online safety and data security. In concert with the clear and present danger from international and domestic terrorism, which sucks the funds away from the fight against ecrime, does any effective counter-measure solution exist to challenge the threat from the organised crime interests which are starting to dominate the trade routes of the internet much like the pirates of the Caribbean once did in the past?

Without a doubt, every country requires more resources and an urgent requirement that government treats the problem more seriously than it has in the past but I’m not convinced this will ever happen until the problem , like the Elephant in the living room, becomes too large to ignore.

Pandora’s Box has been opened and no single country is strong enough to close it. As an analogy, it’s really no different to the debate on tighter European immigration and border controls because the internet is as open and porous as the borders of Europe and the legislation is only as strong as the will and resources of the poorest country. And without the cooperation of Russia and China any proposal remains of academic interest only.

So what can we do to fight the threat? Buy shares in information security companies perhaps because business and finance is largely on its own, as is the man in the street. Unless there is a truly joined-up and international initiative to tackle the growing problem of organised crime online, involving significant funding, resources, legislation and most of all will, at every level, we will have to accept that millions of people and businesses will be robbed and duped and conned as an integral benefit of the internet’s total cost of ownership. After all, if the FBI only has a team of 100 officers tasked to deal with all cyber crime offences and Interpol has perhaps only three in EMEA, the level of priority and the scale of the challenge now facing our joined-up and interdependent economies becomes depressingly clear.

Popular posts from this blog

Median Saleh

I mentioned in the last post, the 1981 expedition that took in Median Saleh, the ruined Nabatean city in Saudi Arabia

A temple carved from the rock from Petra's sister city.

By coincidence, one of the most important train stations on the Hejaz railway sat next to the ruins and when Lawrence of Arabia blew the line in 1917, the trains were trapped there and are still there today, gathering dust and with "Krupp" on the engine casings.

One of the trains, sitting where T.E. Lawrence left themwith Dr Paul Garnett as the passenger

Below, you can see one of the fortified train stations that Lawrence attacked along the Hejaz railway between Damascus and Medina.

More photos Medain Saleh can be found on THIS Site - Apparently you can catch a tourist bus these days, rather different from risking life and limb to cross an unfriendly Saudi Arabia twenty years ago!
A Christmas Tale

It’s pitch blackness in places along the sea wall this evening and I'm momentarily startled by a small dog with orange flashing yuletide antlers along the way. I’m the only person crazy enough to be running and I know the route well enough to negotiate it in the dark, part of my Christmas exercise regime and a good way of relieving stress.

Why stress you might ask. After all, it is Christmas Day.

True but I’ve just spent over two hours assembling the giant Playmobil ‘Pony Farm’ set when most other fathers should be asleep in front of the television.

I was warned that the Playmobil ‘Pirate Ship’ had driven some fathers to drink or suicide and now I understand why. If your eyesight isn’t perfect or if you’ve had a few drinks with your Christmas lunch then it’s a challenge best left until Boxing day but not an option if you happen to have a nine year old daughter who wants it ready to take horses by tea time.

Perhaps I should stick to technology but then, the instruc…

A Matter of Drones - Simon Moores for The Guardian

I have a drone on my airfield” – a statement that welcomes passengers to the latest dimension in air-travel disruption. Words of despair from the chief operating officer of Gatwick airport in the busiest travel week of the year. Elsewhere, many thousands of stranded and inconvenienced passengers turned in frustration to social media in an expression of crowd-sourced outrage.

How could this happen? Why is it still happening over 12 hours after Gatwick’s runways were closed to aircraft, why is an intruder drone – or even two of them – suspended in the bright blue sky above the airport, apparently visible to security staff and police who remain quite unable to locate its source of radio control?

Meanwhile, the UK Civil Aviation Authority, overtaken by both the technology and events, is reduced to sending out desperate tweets warning that an airport incursion is a criminal offence and that drone users should follow their new code of conduct. Yet this is not an unforeseen event. It was i…