Introduction

In preceding chapters, we defined cybercrime and discussed the people who perpetrate it, and we explored the computer and networking basics that form the foundation required to understand technically sophisticated cybercrimes. Then we looked at the various types of network intrusions and attacks and discussed basic computer and network security concepts. Security is the key to preventing or, failing that, detecting network-related criminal activity.

Cybercrime is possible because computers and networks are not properly secured. Law enforcement officers know that most criminals look for easy prey that is, pickpockets look for victims who fail to secure their wallets or purses, and burglars hit the residences and businesses that take fewer steps to secure their property. It should come as no surprise that cybercriminals do the same. Most attacks against computer systems and networks exploit well-known vulnerabilities vulnerabilities that, in many cases, can be fixed with a simple patch or configuration change. Often, applying these simple security measures costs nothing. Yet computer users and network administrators are as lax in protecting their valuable data as many citizens are in protecting their personal property. The fact that these known exploits still work most of the time shows that most individuals and companies are not performing due diligence in protecting their IT assets before connecting them to the Internet.

There are many reasons for this behavior, including:

• The average computer user s lack of knowledge of security issues

• Busy network professionals lack of time (the I really meant to get around to it syndrome)

• Psychological denial that...