Under the Corporate Radar: Examining Insider Business Cybercrime Victimization through an Application of Routine Activities Theory

Williams, Matthew Leighton; Levi, Michael; Burnap, Pete; Gundur, R.V.

doi:10.1080/01639625.2018.1461786

Cited by 65 publications

(50 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We have applied the theoretical framework of RAT and the elements of VIVA to analyze the impact of businesses' online activities and cybersecurity measures, as indicators of various forms of capable guardianship and suitability of crime targets, on cybercrime victimization, as suggested in previous research (e.g., Miró Llinares and Johnson, 2017;Newman and Clarke, 2003;Williams et al, 2019;Yar, 2005). We have combined the use of modeling approaches traditionally used to study cybercrime victimization (i.e., logistic regression models for binary victimization outcomes, see Bossler et al, 2012;Leukfeldt and Yar, 2016;Williams et al, 2019) with novel approaches to analyze the negative impact and harms of cybercrime victimization on organizations (e.g., Paoli et al, 2018) and the number of crimes suffered by businesses and charities. This gives us information not only about the likelihood of organizations reporting falling victim to at least one cybersecurity breach, but also the likelihood of suffering the negative consequences of such criminal activities, and the number of crimes they may face.…”

Section: Discussionmentioning

confidence: 99%

“…In the case of private organizations this is even more likely to be the case, given that details of organizations' revenues are often publicly available. Others argue, however, that in cyberspace the 'value' is frequently an expression of information as a route to financial gain (Wall, 2007;Yar, 2005), and Williams et al (2019) found that organizations with confidential customer information were more likely to suffer insider business cybercrime victimization. Our model results show that those organizations that store personal information suffer more cyber-attacks, although this variable does not predict the negative impacts of cybercrime (e.g., loss of access to files, systems corrupted, stopped staff from carrying out their daily work).…”

Section: Discussionmentioning

confidence: 99%

“…(see Leukfeldt and Yar, 2016;Wall, 2007;Williams et al, 2019). Various measures of online presence (use of social media, websites, and institutional email addresses, amongst others) are used as indicators of the companies' 'visibility' to the general public (Miró Llinares, 2015;Newman and Clarke, 2003).…”

Section: Predictorsmentioning

confidence: 99%

See 2 more Smart Citations

The Dynamics of Business, Cybersecurity and Cyber-victimization: Foregrounding the Internal Guardian in Prevention

Buil‐Gil¹,

Lord²,

Barrett³

2020

Preprint

View full text Add to dashboard Cite

Private organizations suffer great losses due to cybersecurity incidents, and they invest increasing resources to prevent attacks, but little is known about the effectiveness of cybersecurity measures for prevention. Based on the framework of Routine Activity Theory, this paper analyzes the impact of companies’ online activities and cybersecurity measures on victimization. Our analysis of the UK Cybersecurity Breaches Survey shows that the most promising ways to minimize cyber-attacks and their impacts is to invest in in-house cybersecurity human resources and enhance the employees’ online self-protection by providing cybersecurity training, rather than just basic software protection and guidance about strong passwords.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Discussionmentioning

confidence: 99%

See 1 more Smart Citation

The Dynamics of Business, Cybersecurity and Cyber-victimization: Foregrounding the Internal Guardian in Prevention

Buil‐Gil¹,

Lord²,

Barrett³

2020

Preprint

View full text Add to dashboard Cite

show abstract

“…This raises the question as to whether cybercrime is a component of white collar crime; or conversely, whether the increasing use of computers in the workplace means that we should rethink this taxonomy, perhaps even classifying white collar crime as a class of cybercrime. The increasing prevalence of digital technology means more offending in the workplace is likely to involve computers [6], [7]. Workplace offenders may not necessarily be of high social status, but the availability of new technologies provides many opportunities for innovation at work, both criminal and legitimate.…”

Section: A Cybercrime In the Workplace-a Form Of White Collar Crime?mentioning

confidence: 99%

Inside out: Characterising Cybercrimes Committed Inside and Outside the Workplace

Hutchings

Collier

2019

2019 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)

View full text Add to dashboard Cite

This comparison of cybercrime offenders within and outside the workplace reveals they display very different types of offending behaviour, involving different demographics, initiation pathways, and types of offence. The Cambridge Computer Crime Database (CCCD) is a database of open source information about cybercrime arrests and prosecutions in the United Kingdom. This study analyses data from the CCCD spanning nine years, from 1 January 2010 to 31 December 2018. Insiders are more likely to be older, and commit less-technical offences, primarily data and system breaches. They are less likely to offend with others, the offences are less likely to be international in nature, and they are less likely to receive a custodial sentence. Most alleged offenders are men, but women are more likely to offend within their occupation than outside the workplace. Of those that offend in the workplace, the largest group consists of police officers or police staff. This is likely to reflect differences in the type of organisations that pursue criminal action against insiders. We draw on a strain theory framework to argue that these findings accord with different kinds of strain and differing reactions to strain. The data for crimes outside the workplace support a 'subcultural' pattern of adaptation to strain, with offenders tending to be younger, male and linked to co-offenders. The findings relating to insiders support an opportunity model of crime, with inter-workplace variation in opportunities, working cultures and sources of strain present in different workplaces. Index Terms-Computer crime, white collar crime, cybercrime, offending in the workplace

show abstract

“…The detection rate in the United States is even lower based on estimates of the magnitude of white-collar crime by the National White-Collar Crime Center (Huff et al, 2010) and the Association of Certified Fraud Examiners (ACFE, 2008, 2014, 2016). Offenders tend to move under the radar (Williams, 2019).…”

Section: Introductionmentioning

confidence: 99%

Filling the Gap in White-Collar Crime Detection Between Government and Governance: The Role of Investigative Journalists and Fraud Examiners

Gottschalk

2020

Journal of White Collar and Corporate Crime

View full text Add to dashboard Cite

This article suggests that investigative journalists in the media and fraud examiners in private investigations have the potential of filling some of the detection gap. Based on the theory of crime signal detection, this article suggests that investigative journalists are in the position of detecting white-collar crime scandals as they rely on tips and whistleblowing. Empirical evidence from Norway documents that the media disclose a significant fraction of crime stories that later result in prosecution and conviction of white-collar offenders. Empirical evidence from Norway does not document any contribution from fraud examiners in private policing of economic crime, as they typically conclude with misconduct, but no crime, often to the satisfaction of their clients.

show abstract

Under the Corporate Radar: Examining Insider Business Cybercrime Victimization through an Application of Routine Activities Theory

Cited by 65 publications

References 26 publications

The Dynamics of Business, Cybersecurity and Cyber-victimization: Foregrounding the Internal Guardian in Prevention

The Dynamics of Business, Cybersecurity and Cyber-victimization: Foregrounding the Internal Guardian in Prevention

Inside out: Characterising Cybercrimes Committed Inside and Outside the Workplace

Filling the Gap in White-Collar Crime Detection Between Government and Governance: The Role of Investigative Journalists and Fraud Examiners

Contact Info

Product

Resources

About