Cybercrime

Phishing is a form of social engineering and a scam where attackers deceive people into revealing sensitive information or installing malware such as viruses, worms, adware, or ransomware. Phishing attacks have become increasingly sophisticated and often transparently mirror the site being targeted, allowing the attacker to observe everything while the victim navigates the site, and traverses any additional security boundaries with the victim. As of 2020, it is the most common type of cybercrime, with the Federal Bureau of Investigation's Internet Crime Complaint Center reporting more incident

thumb|An email inbox containing a large amount of spam messages

Malware (a portmanteau of malicious software) is any software intentionally designed to cause disruption to a computer, server, client, or computer network, leak private information, gain unauthorized access to information or systems, deprive access to information, or which unknowingly interferes with the user's computer security and privacy. Researchers tend to classify malware into one or more sub-types (i.e. computer viruses, worms, Trojan horses, logic bombs, ransomware, spyware, adware, rogue software, wipers and keyloggers).

Cyberbullying (cyberharassment or online bullying/harassment) is a form of bullying or harassment using electronic means. Since the 2000s, it has become increasingly common, especially among teenagers and adolescents, due to young people's increased use of social media. Related issues include online/internet harassment and trolling. In 2015, according to cyberbullying statistics from the i-Safe Foundation, over half of adolescents and teens had been bullied online, and about the same number had engaged in cyberbullying. Both the bully and the victim are negatively affected, and the intensity,

Cybercrime encompasses a wide range of criminal activities that are carried out using digital devices and/or networks. It has been variously defined as "a crime committed on a computer network, especially the Internet; Cybercriminals may exploit vulnerabilities in computer systems and networks to gain unauthorized access, steal sensitive information, disrupt services, and cause financial or reputational harm to individuals, organizations, and governments.

ransomware cyberattack

thumb|Cyberwarfare specialists of the United States Army's 782nd Military Intelligence Battalion (Cyber) supporting the [[3rd Brigade Combat Team, 1st Cavalry Division during a training exercise in 2019]]

information security concept: psychological manipulation of people into performing actions or divulging confidential information

urban legend about the existence of a game on the Russophonic internet that allegedly incites teenagers to commit suicide

program that records the keys struck on a keyboard

A cyberattack (or cyber attack) occurs when there is an unauthorized action against computer infrastructure that compromises the confidentiality, integrity, or availability of its content.

thumb|A fictional example of a doxing post on social media. In this case, the victim's personal name and address are shown.

Cyberterrorism is the use of the Internet to conduct violent acts that result in, or threaten, the loss of life or significant bodily harm, in order to achieve political or ideological gains through threat or intimidation. Emerging alongside the development of information technology, cyberterrorism involves acts of deliberate, large-scale disruption of computer networks, especially of personal computers attached to the Internet by means of tools such as computer viruses, computer worms, phishing, malicious software, hardware methods, and programming scripts can all be forms of internet terrori

Cyberstalking is the use of the Internet or other electronic means to stalk or harass an individual, group, or organization. It may include false accusations, defamation, slander and libel. It may also include monitoring, identity theft, threats, vandalism, solicitation for sex, doxing, or blackmail. These unwanted behaviors are perpetrated online and cause intrusion into an individual's digital life as well as negatively impact a victim's mental and emotional well-being, as well as their sense of safety and security online.

family of encrypting ransomware discovered in 2016

computer hacker with malicious intent

The CryptoLocker ransomware attack was a cyberattack using the CryptoLocker ransomware that occurred from 5 September 2013 to late May 2014. The attack utilized a trojan that targeted computers running on Microsoft Windows, and was believed to have first been posted to the Internet on 5 September 2013. It propagated via infected email attachments, and via an existing Gameover ZeuS botnet. When activated, the malware encrypted certain types of files stored on local and mounted network drives using RSA public-key cryptography, with the private key stored only on the malware's control servers. Th

thumb|right|240px|An incorrectly entered URL could lead to a website operated by a cybersquatter. Typosquatting, also called URL hijacking, a sting site, a cousin domain, or a fake URL, is a form of cybersquatting, and possibly brandjacking which relies on mistakes such as typos made by Internet users when inputting a website address into a web browser. A user accidentally entering an incorrect website address may be led to any URL, including an alternative website owned by a cybersquatter.

act of obtaining secrets and information using methods on the Internet, networks or individual computers

thumb|right|An example of a scareware popup Scareware is a form of malware which uses social engineering to cause shock, anxiety, or the perception of a threat in order to manipulate users into buying unwanted software (or other products). Scareware is part of a class of malicious software that includes rogue security software, ransomware and other scam software that tricks users into believing their computer is infected with a virus, then suggests that they download and pay for fake antivirus software to remove it. Usually the virus is fictional and the software is non-functional or malware i

term

international treaty seeking to address Internet and computer crime (cybercrime) by harmonizing national laws, improving investigative techniques, and increasing cooperation among nations.

creating an email spam or phishing messages with a forged sender identity or address

Series of cyberattacks conducted by Anonymous

Crimeware is a class of malware designed specifically to automate cybercrime.

type of fraud and confidence trick

Russian hacker group

human trafficking and online scam enterprises

Cryptojacking is the act of exploiting a computer to mine cryptocurrencies, often through websites, against the user's will or while the user is unaware. One notable piece of software used for cryptojacking was Coinhive, which was used in over two-thirds of cryptojacks before its March 2019 shutdown. The cryptocurrencies mined the most often are privacy coins—coins with hidden transaction histories—such as Monero and Zcash.

LockBit is a cybercriminal group proposing ransomware as a service (RaaS). Software developed by the group (also called ransomware) enables malicious actors who are willing to pay for using it to carry out attacks in two tactics where they not only encrypt the victim's data and demand payment of a ransom, but also threaten to leak it publicly if their demands are not met.

US federal law enforcement agency that reports directly to the Secretary of the Air Force

Lapsus$, stylised as LAPSUS$ and classified by Microsoft as Strawberry Tempest and more recently identified as or a part of ShinyHunters, is an international extortion-focused hacker group known for its various cyberattacks against companies and government agencies. The group was active in several countries, and has had its members arrested in Brazil and the UK in 2022. According to City of London Police at least two of the members were teenagers.

Brandjacking is an activity whereby someone acquires or otherwise assumes the online identity of another entity for the purposes of acquiring that person's or business's brand equity. The term combines the notions of 'branding' and 'hijacking', and has been used since at least 2007 when it appeared in Business Week referencing the term used in a publication by the firm MarkMonitor (MarkMonitor and its PR firm, the Zeno Group, coined the phrase; MarkMonitor registered "BrandJacking Index" as a trademark, but not the term "brandjacking" on its own). The tactic is often associated with use of ind

social website located in South Korea

In computing, infostealers are a form of malicious software created to breach computer systems to steal sensitive information, such as login details, financial information, and other personally identifiable information. The stolen information is then packaged, sent to the attacker, and often traded on illicit markets to other cybercriminals.

PhishTank is an anti-phishing site.

business model for cyber criminals

Russian ISP openly engaged in criminal activities

REvil (Ransomware Evil; also known as Sodinokibi) was a Russia-based or Russian-speaking private ransomware-as-a-service (RaaS) operation. After an attack, REvil would threaten to publish the information on their page Happy Blog unless the ransom was received. In a high profile case, REvil attacked a supplier of the tech giant Apple and stole confidential schematics of their upcoming products. In January 2022, the Russian Federal Security Service said they had dismantled REvil and charged several of its members.

International treaty on computer crime

international police operation targeting darknet markets operators such as Silk Road

thumb|The logo of Megalian.com Megalia () was a feminist movement on the South Korean Internet. It is most well known for the "mirroring" strategy that participants (Megalians) claimed to have used to defamiliarize misogynist ideas. Megalians mirrored the style of misogynist content but reversed gender roles, intending to provoke laughter or outrage.

Non-governmental internet organization of South Korea to promote Korean culture and history

change in the registration of a domain name without permission of the original registrant

thumb Tabnabbing is a computer exploit and phishing attack, which persuades users to submit their login details and passwords to popular websites by impersonating those sites and convincing the user that the site is genuine. The attack's name was coined in early 2010 by Aza Raskin, a security researcher and design expert. The attack takes advantage of user trust and inattention to detail in regard to tabs, and the ability of browsers to navigate across a page's origin in inactive tabs a long time after the page is loaded. Tabnabbing is different from most phishing attacks in that the user no l

South Korean website

person who makes abusive or aggressive posts on the internet while concealing their identity

multinational law enforcement operation culminating in 2017

knowledge of end users about the cyber security threats and the risks their actions may introduce

Gayfemboy is a malware strain that infects corporate electronics including those from DrayTek, TP-Link, Raisecom, and Cisco by utilizing CVEs. It has affected companies in Brazil, France, Germany, Israel, Mexico, the United States, Switzerland, and Vietnam, and is impacting sectors such as construction, manufacturing, technology, and media/communications.

Canadian video distributor accused of child pornography

1996 consensual homicide incident

unique form of child abuse

internet hosting service used by cyber-criminal enterprises