Overcoming the insider

Willison, Robert; Siponen, Mikko T.

doi:10.1145/1562164.1562198

Cited by 82 publications

(9 citation statements)

References 2 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In a similar fashion to other industries, the copyright industries are involved in an evolutionary arms race in the protection of intellectual property (IP) from release groups-as industry develops new technologies to prevent the illicit copying of their IP, crackers soon develop methods to circumvent them (Goode and Cruise 2006, 173). 3 Scholars have suggested methods of protecting industry from insider leaks of IP (Willison and Siponen 2009;Willison 2006;Willison and Backhouse 2006;Stephenson 2005), as well as developments in Digital Rights Management (DRM) technologies-tools used to ensure copyright compliance (Hunter 2004). Scholars have also developed formalized theoretical frameworks for studying piracy, with the intention of seeking methods to reduce opportunities for individuals to offend (Holsapple et al 2008;Willison and Siponen 2008).…”

Section: Introductionmentioning

confidence: 99%

Overcoming the Warez Paradox: Online Piracy Groups and Situational Crime Prevention

Basamanowicz

Bouchard

2011

Policy & Internet

View full text Add to dashboard Cite

US federal law enforcement operations occurring between 2001 and 2005 attempted to disrupt the online piracy scene, targeting copyright piracy rings known as 'warez groups'. Previous work on warez groups has demonstrated a paradoxical situation where attempts to curtail warez group activities through policing and advancements in DRM only further encourage such groups to crack and distribute content. This study collected data on 93 convictions from these policing operations to construct a crime script of these groups' motivations and modus operandi in the release process. The results confirm previous findings that attempts to disrupt the activities of warez groups are counterproductive. To avoid the paradox, this study suggests that industry account for the motivations and modus operandi of these groups by creating DRM technologies which allow un-cracked content to seep through the testing step of the script, thereby placing a group's ability to obtain prestige at risk. Law enforcement should focus on apprehending crackers, as they are the most significant step in the release process.

show abstract

Section: Introductionmentioning

confidence: 99%

Overcoming the Warez Paradox: Online Piracy Groups and Situational Crime Prevention

Basamanowicz

Bouchard

2011

Policy & Internet

View full text Add to dashboard Cite

show abstract

“…Additionally, SCP is widely used to combat non-traditional crimes such as wildlife crime (Pires and Clarke 2011;Kurland et al 2017;Moreto and Gau 2017;Burton et al 2020), terrorism (Clarke and Newman 2009;Mandala and Freilich 2018;Freilich et al 2019), and maritime piracy (Shane et al 2015(Shane et al , 2018. Given the successful implementation of SCP by many governments and its wide adoption in dealing with a variety of traditional and non-traditional crimes, it is unsurprising that there is growing interests in using SCP to prevent cybercrimes (Willison 2000;Beebe and Rao 2005;Willison and Siponen 2009;Hinduja and Kooi 2013;Padayachee 2015;Ho et al 2022). Brewer et al (2019) argue that it is unclear whether SCP interventions can prevent cybercrime effectively.…”

Section: Research Development Of Place Managersmentioning

confidence: 99%

Utilizing cyberplace managers to prevent and control cybercrimes: a vignette experimental study

Gilmour

Mazerolle

et al. 2023

Secur J

View full text Add to dashboard Cite

Place management is central to Routine Activities Theory and proactive utilization of place managers is one of 25 Situational Crime Prevention techniques. Yet little is known about the effectiveness of using place managers to prevent cybercrimes. This paper uses a vignette experimental survey of 213 cybersecurity professionals to explore their perceptions of cybercrime prevention. We find that organizations that partner with and proactively utilize cybersecurity professionals as place managers are perceived as more effective in controlling cybercrimes than those organizations that do not specifically assign professionals to proactively prevent and control cybercrimes. We conclude that assigned cyberplace managers are more likely to use their cyber skills and knowledge than those who lack the time and space to utilize their cyber expertise.

show abstract

“…Based on the matrix of 25 techniques (Cornish & Clarke, 2003), some authors developed an adapted version for insider incidents. With the help of a crime script, a theoretical paper suggests a set of measures aimed mainly at increasing the effort insiders must make and the risk they must take to cause an incident, such as using passwords for specific programs and auditing computer logs (Willison & Siponen, 2009). Building on this work, another theoretical paper proposes a broad list of security measures for 22 of the 25 techniques.…”

Section: Insiders Insider Incidents and Cyber Security Measuresmentioning

confidence: 99%

Insider threats among Dutch SMEs: Nature and extent of incidents, and cyber security measures

Moneva

Leukfeldt

2023

Journal of Criminology

View full text Add to dashboard Cite

Insider threats represent a latent risk to all organizations, whether they are large companies or SMEs. Insiders, the individuals with privileged access to the assets of organizations, can compromise their proper functioning and cause serious consequences that can be direct—such as financial—or indirect—such as reputational. Insider incidents can have a negative impact on SMEs, as their resources are often limited, making it paramount to implement adequate cyber security measures. Despite its indisputable relevance, the empirical study of insider incidents from a criminological point of view has received little attention. This paper presents the results of an exploratory study that aims to understand the nature and extent of three type of insider incidents—malicious, negligent, and well-meaning—and how they are related to the adoption of cyber security measures. To that end, we administered a questionnaire among a panel of 496 Dutch SME entrepreneurs and managers and analyzed the results quantitatively and qualitatively. The results show that although the prevalence of insider incidents is relatively low among Dutch SMEs, few organizations report a disproportionate number of incidents that often entail serious consequences. A regression model shows that there are cyber security measures related to both higher and lower incident likelihood. The implications of these findings for the cyber security policies of SMEs are discussed.

show abstract

Overcoming the insider

Cited by 82 publications

References 2 publications

Overcoming the Warez Paradox: Online Piracy Groups and Situational Crime Prevention

Overcoming the Warez Paradox: Online Piracy Groups and Situational Crime Prevention

Utilizing cyberplace managers to prevent and control cybercrimes: a vignette experimental study

Insider threats among Dutch SMEs: Nature and extent of incidents, and cyber security measures

Contact Info

Product

Resources

About