The Australian High Tech Crime Centre (AHTCC) are hosted by the Australian Federal Police (AFP) at their headquarters in Canberra. Under the auspices of the AFP, the AHTCC is party to the formal Joint Operating Arrangement established between the AFP, the Australian Security Intelligence Organisation and the Computer Network Vulnerability Team of the Australian Signals Directorate.
The AHTCC is an Australian-wide policing initiative to coordinate the efforts of Australian law enforcement in combating serious, complex and multi-jurisdictional Internet-based crimes, particularly those beyond the capability of individual police agencies in Australia. Other roles include protecting the information infrastructure of Australia, and providing information to other law enforcement to help combat online crime.
Technological advancements, and greater internet accessibility, has seen a growth in cyber criminality. The Australian Federal Police have established the Australian High Tech Crime Centre to prevent such crimes from occurring in the digital space. State and community police work in corporation with the AFP to combat cyber crime.
Technology and its advancements, including greater and broader internet accessibility, have boosted cybercrime. The AFP established the AHTCC to cease and prevent online fraudulent behaviour. State and community police work incorporation with the AFP to combat digital crime.
AHTCC was established in July 2003, to investigate online fraudulent matters and is currently directed by Kevin Zuccato. The AHTCC, today, continues to fight against cybercrime. Commonwealth Laws outline the Cybercrime regulations in Australia [1]
Cybercrime is defined by the AFP as “crimes directed at computers or other information communications technologies (ICTs) (such as computer intrusions and denial of service attacks), and crimes where computers or ICTs are an integral part of an offence (such as online fraud)”. [2]
Digital attacks are often conducted by cyber adversaries, who are individuals or groups of people that specialize in conducting cyberattacks, online crime and malicious activity. [1] Their activities destroy online businesses and networks and can compromise public or private data. [1]
Malicious cyber activity is a risk for organisations and governments, including but not limited to, businesses that hold public data. In 1991, the World-wide-web was developed and shared. This allowed crime to occur through the internet, as well as offline. Online interactions and user relationships have heightened the ability of cybercrime to manifest and spread. [3]
AHTCC's main role is to ‘discover levels of online criminal activity’ and to undertake necessary measures to prevent or combat digital crime (Platypus, 2009, p. 7). [3] AHTCC has partnered with large corporations, and work's alongside Australia's policing system to effectively manage web-based criminal schemes. [3] The AFP conduct initiatives, like publishing reports that detail how the public should prevent cybercrime. These reports educate businesses on the possible threats of online transactions, customer communications, and other digital tools. The AHTCC's website has a section for victims of digital offences to report and request help from the federal police. [3]
Notably, AHTCC has mitigated online criminality and effectively maintained a high level of mediation for cybercrime prevention. The AHTCC deals with different groups of cybercrime including but not limited to, hackers, viruses, scammers, identity thieves, and online terrorists. [3] In 2008, the AFP launched the High Tech Crimes Operations (HTCO) to investigate Child sex crimes and digital acts of child exploitation. [3] The exploitation of children online continues to be an issue globally. [1]
The AFP has several organisations that deal with online criminality. The Australian Cyber Security Centre (ACSC), which is operated by the Australian Government, specialises in digital safety and security and works closely with the AHTCC to fight cybercrime. [4] The ACSC allows the public and private to join forces to resolving cyber threats and possible attacks. The AFP also work with Defense Signals Directorate (DSD) and the Australian Security Intelligence Organization (ASIO) to effectively manage cyber-attacks that would harm Australia's business environment and public sphere. [4]
The AHTCC was established in 2003, as a response to the rapid rise in digital usage and technological capabilities. The growth in Internet potential provided new capacities for criminals to engage in online fraudulent activities. Cybercrime has been existent since 1978 when the internet was first established and dispersed. Security systems have realised the need for continuous data moderation, and the monitoring of user activity online and offline. [5] With the rise of e-commerce transactions a ‘dark’ web/ ‘black market’ has emerged and targets users of internet.
In 2003, at the beginning of the AHTCC, the centre had a budget of $4 million per annum and was operated by 13 staff, currently, the AFP has 258 staff working in technology and innovation and 319 in the security sector, with a total of 6695 staff across the board. [1]
The AHTCC and the AFP have adapted their work in line with the rise in web use. In 1991, the police were able to make video and audio records of interviews, as a new wave of digital records emerged. [2] To this day, the AFP is extremely present online, focusing on detecting criminals before they know they have been detected (AFP, 2020). [1] Cybercrime prevention is an expensive exercise for the AFP. As of 2013, there were an estimated 10 billion devices connected to the internet, and with this increasing digital usage, comes more targeted attacks and criminal possibilities. [5] The security software company, Symantec Corporation, estimates that, in 2010, cybercrime cost US$388 billion in losses, globally. (Weber, 2014, p. 54). [5]
The Cybercrime Act was introduced by the Australian Government in 2001, outlining online offences prohibited. Statistically, cybercrime is significantly impacting Australians. In 2015, 1 in 4 Australians reported being victims of Identity theft (Veda Report, 2015). [6] In 2015, Australia had a significant data breach from overseas, an Australian Insurance company was the target of a cyberattack, in which criminals gained access to prohibited government systems and compromised the finances of notable businesses, damaging Australia's security systems. The AFP solved this. [6] The AFP is working closely with Australians to avoid cybercrime. “Veda’s research from 2015 found that 95% of Australians were taking some kind of active precaution to protect their identity” (Veda Report, 2015). [6]
Australia follows the Commonwealth cybercrime regime, a legislative system that formed the CyberCrime Act 2011, [5] an Act that considered computer crimes, traditional offline offences committed online, digital data misuse and other internet criminality. This Act has been amended, in 2012 it was changed to the Cybercrime Amendment Act, expanding its definition of cyber offences, as the online criminal possibilities broadened. [7]
However, the current cybercrime policies in Australia, do not acknowledge ‘computer fraud’ as a criminal offence under the commonwealth law. ‘Given the borderless nature of cybercrime, it is an oversight to not have a national approach to computer related fraud’ (Weber, p. 68). [5]
Cybercrime takes numerous forms, including identity theft, digital scams, hacking, online fraud, and phishing. It is the role of the AHTCC in conjunction with the AFP and several other government corporations, to prevent and reduce criminal behaviour online.
The AFP is in a partnership with the Virtual Global Taskforce (VGT), which includes major countries and organisations, who join forces in combating cybercrime. [3] Globally, they tackle international digital offences. Cybercrime is not just personal account hacking, but can involve breaching security of government cooperation's and networks, having a broader national impact. [5]
The Australian Government established The Australian Cybercrime Online Reporting Network (ACORN) to allow victims of cybercrime to report the occurrences and likewise for organisations. In 2015, ACORN recorded 39, 491 cybercrime incidents, and similarly, "Australian Federal Police (AFP) Commander David McLean reported that, in one month alone, over 3,500 people had contacted police about perceived cyber-crime" (Broadhurst, 2017). [7]
There is widespread dissemination of pornographic content on the internet. User anonymity is used to conduct this behaviour, as tracing the criminal behind the crime is difficult. Some estimates suggest that 20,000 images of child porn are posted online each week (Broadhurst, 2017). [7] Importantly, the AHTCC is taking effect against child abuse material, which has continued to circulate on the internet. The Australian police are focusing closely on child predators, targeting criminals that are a threat to society, to keep the online community safe and free from malicious and dangerous offences. [3] Users who access and choose to view illegal content online are considered in the eyes of the Australian Law, as guilty as those who publish the footage, and thus are not free from prosecution themselves. Educating the public on these offences is part of the Australian Government security initiatives. [3]
Technologies are helping the AFP combat cybercrime. In April 2016, The Australian Prime Minister allocated resources and financial expenditure of A$230 million to fund cybercrime and security measures under the AHTCC operations. [2] Funding is important for the safety of businesses and individuals. [3]
The Australian Federal Police established the AHTCC to effectively control and manage cybercrime. The AFP has thus far, been successful in this field. According to the AFP, ‘over the past two years, more than 300 Australians have been arrested and charged in relation to the online sexual exploitation of children’ and concurrently, children posed as a risk to criminals were freed from danger and educated (AFP, 2020). [1] A large part of cybercrime is Pedophilia. Organisations of International pedophiles use digital devices and platforms to exploit children, through strategies like webcams and online mechanisms like anonymity.
The AFP's budget is extensive, to cover a vast number of cybercrime cases and solutions. In 2014, An online Russian crime syndicate hacked Australian companies and accessed 500,000 Australian's financial details. [8] The AHTCC arrested members of the gang, with seven criminals being in Victoria and thirteen in Spain. [8] The AHTCC was responsible for combating this fraudulent activity effectively, avoiding the major crime from damaging the Australian economy and the broader national impact. The AHTCC is capable of managing domestic and international cybercrime and will work alongside large nations to develop plans of combat. [8]
Recently, the AHTCC was highly successful in a case known as ‘Operation Carpo’, whereby a Western Australian man was prosecuted for withholding 56,000 credit card details, 53,000 usernames and passwords and 110,000 domain names. [3] The success of this case, prevented several other organised cybercrime's in Australia (AFP). [1]
Australia is facing an increase in cyber criminality because of new technologies that can be defeated and maliciously targeted. The Australian Government continues to develop and improve its digital infrastructure and security, but loopholes are discovered by crime groups. In Australia, there is wealth and a high use of digital devices, which attracts criminality to our organisations and businesses. [2] Further, there is a lack of information reported about cybercrime, which proposes difficulty for government bodies, like the AHTCC, to investigate and resolve the problem. [2]
As technology continues to dominate the marketplace, the AHTCC will be vitally needed. The AFP will always require investigatory teams, such as the AHTCC to mitigate cyber criminality. The AFP declare that “Our ongoing commitment is to stay at least one step ahead of the criminals who are involved in any form of online crime” (AFP, 2020). [1]
The Government, in 2016, introduced the Cyber Security Strategy, worth more than $230 million, to improve and maintain nation-wide digital security. [7] One of the initiatives of this program was to increase the number of cyber security workers, and equip more professionals with the necessary tools and skills to uphold these qualifications. Institutions were set up to offer cybersecurity courses, and to ensure Australia remains at the front line with digital crime and technological advancements. [1]
The director of AHTCC, Kevin Zuccato, works nationally with other countries to establish cyber-security on a global scale. The AHTCC is part of the Strategic Alliance Cyber Crime Working Group, which focuses on transnational cybercrime and building strong global relationships between countries and governments to combat world-wide cyber-attacks together. [5]
The Australian Government has also implemented numerous measures and strategies to prevent cybercrime, including, but not limited to, risk reduction protocols, multi-stakeholder approaches to internet governing, internet neutrality, supporting human rights online, improve connectivity, technology innovation and digital-ready workforces. [5]
All cyber defenders must work closely together to minimise cyber criminality. [1] To do so, Australians and their businesses must report any security breached incidents to the Australian Federal Police, who will provide advice and assistance in preventing such crimes from occurring in the future. Further, the AFP requires the reporting of cybercrime offences as it provides needed information in order to seize all criminal behaviour online. [6]
In law, fraud is intentional deception to secure unfair or unlawful gain, or to deprive a victim of a legal right. Fraud can violate civil law or criminal law, or it may cause no loss of money, property, or legal right but still be an element of another civil or criminal wrong. The purpose of fraud may be monetary gain or other benefits, for example by obtaining a passport, travel document, or driver's license, or mortgage fraud, where the perpetrator may attempt to qualify for a mortgage by way of false statements.
Identity theft, identity piracy or identity infringement occurs when someone uses another's personal identifying information, like their name, identifying number, or credit card number, without their permission, to commit fraud or other crimes. The term identity theft was coined in 1964. Since that time, the definition of identity theft has been legally defined throughout both the U.K. and the U.S. as the theft of personally identifiable information. Identity theft deliberately uses someone else's identity as a method to gain financial advantages or obtain credit and other benefits. The person whose identity has been stolen may suffer adverse consequences, especially if they are falsely held responsible for the perpetrator's actions. Personally identifiable information generally includes a person's name, date of birth, social security number, driver's license number, bank account or credit card numbers, PINs, electronic signatures, fingerprints, passwords, or any other information that can be used to access a person's financial resources.
The Australian Federal Police (AFP) is the national and principal federal law enforcement agency of the Australian Government with the unique role of investigating crime and protecting the national security of the Commonwealth of Australia. The AFP is an independent agency of the Attorney-General's Department and is responsible to the Attorney-General and accountable to the Parliament of Australia. As of October 2019 the Commissioner of the Australian Federal Police is Reece Kershaw, formerly the Northern Territory Police Commissioner.
Cybercrime encompasses a wide range of criminal activities that are carried out using digital devices and/or networks. These crimes involve the use of technology to commit fraud, identity theft, data breaches, computer viruses, scams, and expanded upon in other malicious acts. Cybercriminals exploit vulnerabilities in computer systems and networks to gain unauthorized access, steal sensitive information, disrupt services, and cause financial or reputational harm to individuals, organizations, and governments.
Bank fraud is the use of potentially illegal means to obtain money, assets, or other property owned or held by a financial institution, or to obtain money from depositors by fraudulently posing as a bank or other financial institution. In many instances, bank fraud is a criminal offence.
The Computer Misuse Act 1990 is an act of the Parliament of the United Kingdom, introduced partly in response to the decision in R v Gold & Schifreen (1988) 1 AC 1063. Critics of the bill complained that it was introduced hastily, was poorly thought out, and that intention was often difficult to prove, with the bill inadequately differentiating "joyriding" hackers like Gold and Schifreen from serious computer criminals. The Act has nonetheless become a model from which several other countries, including Canada and the Republic of Ireland, have drawn inspiration when subsequently drafting their own information security laws, as it is seen "as a robust and flexible piece of legislation in terms of dealing with cybercrime". Several amendments have been passed to keep the Act up to date.
The Australian Intelligence Community (AIC) and the National Intelligence Community (NIC) or National Security Community of the Australian Government are the collectives of statutory intelligence agencies, policy departments, and other government agencies concerned with protecting and advancing the national security and national interests of the Commonwealth of Australia. The intelligence and security agencies of the Australian Government have evolved since the Second World War and the Cold War and saw transformation and expansion during the Global War on Terrorism with military deployments in Afghanistan, Iraq and against ISIS in Syria. Key international and national security issues for the Australian Intelligence Community include terrorism and violent extremism, cybersecurity, transnational crime, the rise of China, and Pacific regional security.
The Convention on Cybercrime, also known as the Budapest Convention on Cybercrime or the Budapest Convention, is the first international treaty seeking to address Internet and computer crime (cybercrime) by harmonizing national laws, improving investigative techniques, and increasing cooperation among nations. It was drawn up by the Council of Europe in Strasbourg, France, with the active participation of the Council of Europe's observer states Canada, Japan, the Philippines, South Africa and the United States.
Internet safety, also known as online safety, cyber safety and electronic safety (e-safety), refers to the policies, practices and processes that reduce the harms to people that are enabled by the (mis)use of information technology.
Internet police is a generic term for police and government agencies, departments and other organizations in charge of policing the Internet in a number of countries. The major purposes of Internet police, depending on the state, are fighting cybercrime, as well as censorship and propaganda.
Cyber crime, or computer crime, refers to any crime that involves a computer and a network. The computer may have been used in the commission of a crime, or it may be the target. Netcrime refers, more precisely, to criminal exploitation of the Internet. Issues surrounding this type of crime have become high-profile, particularly those surrounding hacking, copyright infringement, identity theft, child pornography, and child grooming. There are also problems of privacy when confidential information is lost or intercepted, lawfully or otherwise.
There is no commonly agreed single definition of “cybercrime”. It refers to illegal internet-mediated activities that often take place in global electronic networks. Cybercrime is "international" or "transnational" – there are ‘no cyber-borders between countries'. International cybercrimes often challenge the effectiveness of domestic and international law, and law enforcement. Because existing laws in many countries are not tailored to deal with cybercrime, criminals increasingly conduct crimes on the Internet in order to take advantages of the less severe punishments or difficulties of being traced.
The Trojan horse defense is a technologically based take on the classic SODDI defense, believed to have surfaced in the UK in 2003. The defense typically involves defendant denial of responsibility for (i) the presence of cyber contraband on the defendant's computer system; or (ii) commission of a cybercrime via the defendant's computer, on the basis that a malware or on some other perpetrator using such malware, was responsible for the commission of the offence in question.
The Microsoft Digital Crimes Unit (DCU) is a Microsoft sponsored team of international legal and internet security experts employing the latest tools and technologies to stop or interfere with cybercrime and cyber threats. The Microsoft Digital Crimes Unit was assembled in 2008. In 2013, a Cybercrime center for the DCU was opened in Redmond, Washington. There are about 100 members of the DCU stationed just in Redmond, Washington at the original Cybercrime Center. Members of the DCU include lawyers, data scientists, investigators, forensic analysts, and engineers. The DCU has international offices located in major cities such as: Beijing, Berlin, Bogota, Delhi, Dublin, Hong Kong, Sydney, and Washington, D.C. The DCU's main focuses are child protection, copyright infringement and malware crimes. The DCU must work closely with law enforcement to ensure the perpetrators are punished to the full extent of the law. The DCU has taken down many major botnets such as the Citadel, Rustock, and Zeus. Around the world malware has cost users about $113 billion and the DCU's jobs is to shut them down in accordance with the law.
The Garda National Economic Crime Bureau – informally known as the Fraud Squad – is a specialised division of Ireland's national police force, the Garda Síochána, that investigates economic crimes. The Bureau operates as part of the Garda Special Crime Operations branch and works alongside other sections of the force, as well as the external Office of the Director of Corporate Enforcement (ODCE), an agency tasked with investigating white-collar crime. The Economic Crime Bureau is responsible for the investigation of serious financial fraud and corruption. It was established in April 1996 and is based at Harcourt Square, Dublin 2. The GNECB is headed by an officer of Detective Chief Superintendent rank, who reports to the Assistant Commissioner of Special Crime Operations.
Operation Tovar was an international collaborative operation carried out by law enforcement agencies from multiple countries against the Gameover ZeuS botnet, which was believed by the investigators to have been used in bank fraud and the distribution of the CryptoLocker ransomware.
The following outline is provided as an overview of and topical guide to computer security:
The Australian Cyber Security Centre (ACSC), the successor to the Cyber Security Operations Centre, is the Australian Government's lead agency for cyber security. The ACSC is part of the Australian Signals Directorate and is based at the Australian Security Intelligence Organisation headquarters in Brindabella Business Park in Canberra. The Centre is overseen by the Cyber Security Operations Board and is the joint responsibility of the Minister for Defence.
Ghana has one of the highest rates of cybercrime in the world, ranking 7th in a 2008 Internet Crime Survey. The most popular form of cybercrime in Ghana is cyberfraud and is typically achieved via credit card fraud. However, recent decreases in universal credit card usage has seen the expansion of other cybercrimes such as blackmail and hacking. This growth in crime has warranted a government response, with policies specifically addressing the cyberspace being developed. This has necessitated various studies including a cyber security maturity study which was inaugurated by the Ministry of Communications and conducted by the Global Cyber Security Capacity Center (GCSCC) of the University of Oxford in collaboration with the World Bank.
Cybersex trafficking, live streaming sexual abuse, webcam sex tourism/abuse or ICTs -facilitated sexual exploitation is a cybercrime involving sex trafficking and the live streaming of coerced sexual acts and/or rape on webcam.