Computer Crime Responsibilities and Incidents

Questions and Answers

What ethical challenges arise from spreading false information on social media?

Facilitating accurate information dissemination

Improving user engagement and satisfaction

Creating ethical dilemmas and misinformation (correct)

Enhancing public discourse and dialogue

What is a major concern regarding excessive government surveillance?

Infringement on civil liberties and freedom of expression (correct)

Reduction of crime rates

Increased citizen security

Promotion of transparency in government

Which of the following best describes the implications of employee monitoring?

Improvement of employee satisfaction

Elimination of workplace conflicts

Balancing productivity with privacy rights (correct)

Enhancement of employee creativity

What is an ethical concern linked to job displacement due to automation?

Moral and social concerns about replacing human workers

How do manipulative design practices in digital platforms primarily affect users?

They are designed to maximize user engagement and can lead to digital addiction

Which core ethical principle emphasizes taking accountability for one’s actions and shared content?

Responsibility

What is one of the guiding values specifically related to maintaining user privacy?

Security

Which ethical dilemma involves the discussion of whether to report or exploit vulnerabilities?

Cybersecurity Threats

Which of the following best describes the impact of AI and automation concerning hiring practices?

Reinforces existing biases

What issue is exacerbated by limited access to technology and the internet in marginalized communities?

Digital Divide

Which ethical practices are prioritized under the guiding values concerning digital practices?

Respect, honesty, and transparency

What is a major consequence of software piracy?

Violation of intellectual property rights

How do rapid technological advancements relate to ethical concerns?

They offer new challenges and opportunities for ethical dilemmas.

Which of the following strategies is NOT effective in reducing online credit card fraud?

Implementing open-source security protocols

What is the primary focus of a security policy?

To define security requirements and expected behaviors

Which type of motivation is characterized by engaging in an activity for its own sake?

Intrinsic Motivation

What does risk assessment primarily involve?

Identifying security-related investments and threats

What is a primary responsibility of a firm in dealing with computer crime?

Prosecute criminals

Which of the following is an example of extrinsic motivation?

Completing a project for a bonus

Which factor contributes to the increasing prevalence of computer incidents?

Reliance on commercial software

Which component is a part of the response plan during a security breach?

Incident notification

What type of malicious code disguises itself as something else?

Trojan Horse

What role does encryption technology play in online credit card security?

Secures data during transmission

Which of the following is a characteristic of a botnet?

A group of compromised computers controlled without owners' knowledge

Which statement about computer forensics is true?

It combines law and computer science to preserve data integrity.

What distinguishes spear-phishing from other types of phishing?

Targeted fraudulent emails

Which type of attacker is financially motivated in their criminal activities?

Common Criminals

What does the CAN-SPAM Act permit regarding unsolicited emails?

Spam is allowed if it meets basic legal requirements

What is the main function of a Logic Bomb?

To execute on a specific trigger

Which of the following needs are at the base of Maslow's Hierarchy of Needs?

Physiological Needs

What is a characteristic of Herzberg's motivational factors?

Lead to job satisfaction

What does McGregor's Theory Y assume about employees?

They are self-motivated and creative

Which of the following factors is NOT considered a hygiene factor in Herzberg's Two-Factor Model?

Recognition

In Maslow's Hierarchy, which need relates to feelings of love and friendship?

Belonging Needs

What is the primary concern associated with sharing personal data without consent?

Potential harm or mistrust

Which aspect does not characterize Theory X in McGregor's model?

Assumes workers are self-directed

Which of the following is NOT a suggested solution to algorithmic bias in AI?

Increasing reliance on single-source data

What is a primary function of hygiene factors in Herzberg's Two-Factor Model?

Prevent job dissatisfaction

What is the focus of Maslow’s self-actualization need?

Personal growth and fulfillment

What is a common impact of cyberbullying?

Emotional distress

What is the main suggested approach to address job displacement due to AI?

Focusing on retraining programs

Which of the following describes the term 'digital addiction'?

Mental health issues from excessive technology use

What is an effective solution for combating the spread of false information online?

Increasing platform accountability

What is the primary risk associated with neglecting security protocols?

Exposing data to risks

What best describes the issue of piracy?

Unauthorized use of copyrighted materials

Study Notes

Firm's Responsibilities Regarding Computer Crime

• Prosecute criminals involved in computer crimes
• Maintain a low public profile to avoid negative publicity
• Inform affected customers of the incident
• Allocate resources to protect against further computer crime
• Address software susceptible to hacking
• Manage increased costs associated with security safeguards

Prevalence of Computer Incidents

• Increasing complexity of computer systems with more entry points
• Cloud computing: Data and software storage via the internet
• Virtualization software: Running multiple virtual machines on a single computer
• High expectations from users regarding online services
• Expansion and changes in systems with new technology
• Bring Your Own Device (BYOD) policies that allow personal devices access to company resources
• Reliance on commercial software with exploitable vulnerabilities
• Zero-day attacks: Attacks leveraging vulnerabilities before patches are released

Types of Exploits

• Virus: Malicious code disguised as legitimate software
• Worm: Self-replicating harmful programs
• Logic Bomb: Code that executes on a specific trigger
• Spam: Unsolicited bulk emails
• Trojan Horse: Malicious code hidden within a legitimate program
• CAPTCHA: Test to distinguish between humans and bots
• DDoS Attack: Flood of requests to overwhelm a target site
• Rootkit: Allows unauthorized access to a system
• Phishing: Fraudulent emails to extract personal information

CAN-SPAM Act

• Allows spam under specific legal requirements
• Prohibits the use of deceptive practices in spam

Botnet

• A group of compromised computers controlled without the owner’s knowledge
• Used for spam distribution and delivering malicious code

### Types of Phishing

• Spear phishing: Targeted fraudulent emails
• Smishing: Fraudulent text messages
• Vishing: Fraudulent voice messages

Types of Perpetrators

• Thrill seekers: Driven by a desire for a challenge
• Common criminals: Motivated by financial gain
• Industrial spies: Seeking competitive advantages
• Terrorists: Aiming to cause destruction
• Hackers: Wanting to test system limitations
• Script kiddies: Inexperienced hackers using pre-made tools
• Malicious insiders: Employees or contractors causing harm
• Negligent insiders: Causing harm due to negligence
• Hacktivists: Motivated politically or socially
• Cyberterrorists: Seeking intimidation or coercion

Strategies to Reduce Online Credit Card Fraud

• Encryption technologies
• Address verification with issuing banks
• Obtaining card verification value (CVV)
• Transaction risk scoring software
• Using smart cards with encrypted data updates

Trustworthy Computing

• Secure, private, and reliable computing based on sound practices

Risk Assessment

• Assessing internal and external security risks
• Identifying investments for likely and severe threats
• Key terms:
  • Asset (hardware, software, systems, databases)
  • Loss event (negative impacts on assets)

Security Policy

• Defines security requirements, controls, and sanctions
• Clarifies responsibilities and expected behaviors
• Focuses on actions to take, not technical guidelines

Establishing a Security Policy

• Key areas: emails, wireless devices, VPNs (Virtual Private Networks)
• VPN: Encrypts data during transmission

Prevention

• Corporate firewalls and intrusion detection systems
• Antivirus software to detect viruses
• Safeguards against malicious insider threats
• Conduct regular IT security audits
• Collaboration with government agencies

Response Plan

• Incident notification to appropriate parties
• Incident containment, determining if systems should be shut down
• Eradication, using logs and backups to resolve
• Follow-up by analyzing breaches, reviewing responses and assessing financial damages

Computer Forensics

• Combines law and computer science
• Identifies, gathers, examines, and preserves data
• Ensures data integrity for legal proceedings

Summary of Lecture on Motivation

• High performance comes from motivated individuals prepared to exercise discretionary effort
• Motivation is a psychological process that drives, guides, and maintains goal-oriented behavior

Types of Motivation

• Intrinsic Motivation: Engaging in a behavior due to inherent satisfaction
• Extrinsic Motivation: Engaging in a behavior to earn a reward or avoid punishment

Maslow's Hierarchy of Needs

• Physiological: Basic needs (food, water, sleep)
• Safety: Security, stability, health
• Belonging: Friendship, love, social connection
• Esteem: Respect, recognition, self-esteem
• Self-Actualization: Reaching one's full potential

Herzberg's Two-Factor Model

• Hygiene Factors: Prevent dissatisfaction but don't directly motivate
• Motivational Factors: Lead to job satisfaction and motivation

Summary of Lecture on Ethical Problems in the IT Field

Invasion of Privacy

• Unauthorized access, use, or sharing of personal information
• Solution: Strong security measures (encryption, secure servers, regular audits)

Sharing Personal Data Without Consent

• Disclosing personal information without permission
• Solution: Clear and user-friendly consent forms

Algorithmic Bias in AI

• Discriminatory outcomes from AI systems due to biased data
• Solution: Use diverse datasets, implement fairness checks, ethical AI practices, diverse teams

Cyberbullying

• Online harassment leading to emotional distress
• Solution: Educate on online safety, stricter policies, reporting tools

AI and Job Displacement

• Automation leading to job loss and economic inequality
• Solution: Retraining programs, ethical AI development, policies for a fair transition

Digital Addiction and Overuse of Technology

• Excessive use of IT platforms causing mental health issues and reduced productivity
• Solution: Promote ethical platform design, encourage screen time management, protect vulnerable users

Spread of False or Misleading Information Online

• Proliferation of misinformation and disinformation on social platforms
• Solution: Strengthen media literacy, increase platform accountability, fact-checking initiatives

Neglecting Security Protocols

• Ignoring security measures, delaying updates, exposing data to risks
• Solution: Regular audits, timely updates, employee training, advanced cybersecurity tools

Piracy

• Unauthorized use of copyrighted content, causing financial losses
• Solution: Enforce copyrights, provide legal alternatives, educating the public

Deepfakes and Synthetic Media

• Realistic AI-generated content for malicious purposes
• Solution: Develop detection technologies, educate on risks, enforce legal accountability

Surveillance and Government Oversight

• Governments engaging in practices that violate civil liberties
• Excessive surveillance

Unequal Access / The Digital Divide

• Limited access to technology and the internet exacerbates social inequality
• Limited opportunities due to the digital divide restricting education and economic advancement

Intellectual Property Infringement

• Software piracy (unauthorized copying/sharing of software)
• Patent disputes (conflicts over ownership/infringement of intellectual property)

Misinformation and Disinformation

• Spreading false information on social media, creating ethical challenges
• Role of platforms in combating misinformation and disinformation

Employee Monitoring

• Monitoring employee activities (emails, browsing history, movements) for productivity
• Balancing productivity with employee privacy rights

Summary of Lecture on Navigating the Ethical Landscape of the Digital Age

• Addresses complex ethical challenges of the digital era, including:
• Privacy violations, cybersecurity threats, algorithmic bias, the digital divide, intellectual property infringement
• Misinformation, employee monitoring, and government surveillance
• Emphasizes the need for thoughtful strategies to address these issues and promote ethical practices in technology use

Description

This quiz covers a company's responsibilities in addressing computer crimes and the increasing prevalence of computer incidents. Topics include prosecution of criminals, customer communication, and the challenges posed by emerging technologies. Test your knowledge on safeguarding practices and incident management.