Answer:

Introduction  

Cybercrimes are criminal activities based on a computer, networked device or a network, including both state and non-state actors engaged in activities like espionage and financial theft. Today, they have rapidly evolved with the advent of the internet and technology, posing threats to individuals and organisations. 

Body

Different types of cyber-crimes affecting individuals and organisations

Cyber Crimes Affecting Individuals:

• Identity Theft: Criminals steal personal information for illegal activities, primarily financial fraud. Eg: Resecurity’s report recently revealed that personal data of approximately 81.5 crore Indians has been exposed on the dark web.
• Cyberstalking: Involves the use of internet services to stalk or harass individuals, often leading to real-world harm. Eg: In 2012, a Mumbai-based lawyer named Pallavi Purkayastha was tragically murdered by her security guard, who had stalked her online and was aware of her activities.
• Phishing: This involves sending fraudulent emails that appear to be from reputable sources with the intent to collect sensitive data. Eg: The infamous “Nigerian Prince” scams, where people receive emails claiming they’ve inherited large sums of money but need to provide bank details first.
• Malware Attacks: These are software-based attacks designed to damage or gain unauthorised access to computer systems. Eg: The WannaCry ransomware attack in 2017 impacted more than 200,000 computers across 150 countries, locking users out of their systems.
• Cyberbullying: This involves harassing or intimidating individuals online, often via social media. Eg: The tragic case of Megan Meier, who took her own life after being bullied online, drew worldwide attention to the dangers of cyberbullying.

Cyber Crimes Affecting Organisations:

• Ransomware Attacks: Criminals encrypt an organisation’s data and demand a ransom for decryption keys. Eg: The Colonial Pipeline attack in 2021 disrupted fuel supply across the eastern U.S., costing the company millions in ransom.
• Denial-of-Service Attacks: These attacks flood servers with traffic, making websites or services unavailable. Eg: The 2016 Dyn cyberattack affected major sites like Twitter, Amazon, and Netflix, causing widespread service outages.
• Data Breaches: This involves unauthorised access to sensitive data. Example: Recent data breach of around 81.5 million Indians from Indian Council of Medical Research.
• Intellectual Property Theft: Stealing a company’s intellectual assets, such as trade secrets, patents, or copyrighted material. Eg: The Google vs. Uber lawsuit where Uber was accused of stealing Google’s self-driving car technology.
• Espionage: This involves gaining unauthorised access to confidential information from government agencies or rival companies. Eg: The 2014 Sony Pictures hack, attributed to North Korea, was a classic case of cyber espionage, aiming to prevent the release of a film.

Preventive Measures which should be taken against them 

For Individuals:

• Online Caution: Be vigilant about the kind of information one shares online to avoid becoming a victim. Eg: After the Snapchat data leak, users have become more cautious about sharing their locations or sensitive information.
• Strong Passwords: Adopting a robust password policy can protect individuals against unauthorised access. Eg: Post the Yahoo email breach, users were advised to use passwords containing a mix of letters, numbers, and symbols to improve security.
• Phishing Awareness: individuals should always verify the credentials of email senders and the URLs before clicking. Eg: The Reserve Bank of India frequently issues warnings against phishing scams that imitate bank communication.
• Software Updates: Updating one’s OS and security software can protect against malware attacks. Eg: After the WannaCry ransomware attack, Microsoft issued a critical update that users were advised to install immediately.
• Use Security Software: Comprehensive security software can provide an additional layer of protection. Eg: Following the Pegasus spyware incident, many Indian users turned to security solutions like Norton and McAfee.

For Organisations:

• Cybersecurity Policy: Having a well-defined cybersecurity policy can set the baseline for protective measures. Eg: Post the Equifax breach, companies worldwide revamped their cybersecurity policies to include multi-factor authentication.
• Employee Training: Staff should be regularly updated on cybersecurity protocols. Eg: Wipro conducts periodic ‘Cybersecurity Drills’ to educate employees about potential threats.
• Software Updates: Organisations must ensure all systems are updated to protect against vulnerabilities. Eg: After the Heartbleed bug was discovered, Indian tech companies rushed to update their OpenSSL software.
• Firewalls and Security Tools: Organisations should utilise advanced firewall systems and other security tools. Eg: Zoho Corp uses advanced firewalls and intrusion detection systems to protect client data.
• Incident Response Plan: Organisations having a contingency plan can minimise damage during a cyber incident. Eg: After the ransomware attack on its systems, Apollo Hospitals activated its incident response team, which helped in faster recovery.

Conclusion

In the digital age, the threat of cyber crime looms large, but effective preventive measures offer a strong line of defence. By staying educated and vigilant, both individuals and organizations can significantly mitigate risks, fostering a safer and more secure online environment for all.

DOWNLOAD PDF