Viruses, worms, and Trojan horses: Serious crimes, nuisance, or both?

Social Science Computer Review

Volumn 25, Issue 1, 2007, Pages 78-98

  Hughes, Lorine A ^a,b   DeLone, Gregory J ^a  

^a UNIVERSITY OF NEBRASKA AT OMAHA   (United States)

^b 310 NE Hall ^*  (United States)

Author keywords

Computer crime; Cybercrime; Malware; Trojan horses; Viruses; Worms

Indexed keywords

EID: 33846081431     PISSN: 08944393     EISSN: 15528286     Source Type: Journal    
DOI: 10.1177/0894439306292346     Document Type: Article

References (71)

1. Adams, J. M. (1996). Controlling cyberspace: Applying the Computer Fraud and Abuse Act to the Internet. Computer and High Technology Law Journal, 12, 403-434.
2. Anderson, R. (2001, December). Why information security is hard: An economic perspective. Paper presented at the 17th Annual Computer Security Applications, New Orleans, LA.
3. Baker, G. D. (1993). Trespassers will be prosecuted: Computer crime in the 1990s. Computer/Law Journal, 12, 61-100.
4. Barrett, N. (2003). Students delete history. Retrieved November 5, 2005, from http://www.vnunet.com/itweek/comment/2086036/students-delete-history
5. Campbell, K., Gordon, L. A., Loeb, M. P., & Zhou, L. (2003). The economic cost of publicly announced information security breaches: Empirical evidence from the stock market. Journal of Computer Security, 11, 431-448.
6. Central Intelligence Agency. (2005). The world factbook. Retrieved July 26, 2005, from http://www.cia.gov/cia/publications/factbook/rankorder/2153rank. html
7. Colombell, M. R. (2002). The legislative response to the evolution of computer viruses. Richmond Journal of Law and Technology, 8. Retrieved October 28, 2005, from http://law.richmond.edu/jolt/v8i3/article18.html
8. Computer Crime and Intellectual Property Section. (2005). Computer crime. Retrieved June 28, 2005, from http://www.usdoj.gov/criminal/cybercrime/ compcrime.html
9. Davis, B. S. (1994). It's virus season again, has your computer been vaccinated? A survey of computer crime legislation as a response to malevolent software. Washington University Law Quarterly, 72, 411-440.
10. Day, J. C., Janus, A., & Davis, J. (2005). Computer and Internet use in the United States: 2003. Current population reports. Washington, DC: U.S. Census Bureau.
11. Denning, D. E. (2000, Autumn). Cyberterrorism: The logic bomb versus the truck bomb. Global Dialogue, pp. 29-37.
12. Denning, P. J. (1990). The Internet worm. In P. J. Denning (Ed.), Computers under attack: Intruders, worms, and viruses (pp. 193-200). New York: Addison-Wesley.
13. Dickey, K. (2003). Tales of Trojan horses: Why you should beware of those bearing gifts. Avoid & Defeat Viruses, 9, 12-16. Retrieved October 2, 2005, from http://www.smartcomputing.com/editorial/article.asp?article=articles/ archive/l0902/03l02/03l02.asp
14. Dyson, J. (2005). What me worry (about the Warhol worm)? Retrieved July 18, 2005, from http://www.treachery.net/%7Ejdyson/what_me_worry.html
15. Furnell, S. (2002). Cybercrime: Vandalizing the information society. Boston: Addison-Wesley.
16. Gemignani, M. (1990). Viruses and criminal law. In P. J. Denning (Ed.), Computers under attack: Intruders, worms, and viruses (pp. 489-494). New York: Addison-Wesley.
17. Gordon, L. W., Loeb, M. P., Lucyshyn, W., & Richardson, R. (2005). 2005 CSI/FBI computer crime and security survey. San Francisco: Computer Security Institute.
18. Gordon, S., Ford, R., & Wells, J. (1997, October). Hoaxes & hypes. Paper presented at the 7th Virus Bulletin International Conference, San Francisco.
19. Hansen, R. L. (1990). The Computer Virus Eradication Act of 1989: The war against computer crime continues. Software Law Journal, 3, 717-753.
20. Hollinger, R. C. (Ed.). (1997). Crime, deviance and the computer. Aldershot, UK: Dartmouth.
21. Hollinger, R. C., & Lanza-Kaduce, L. (1988). The process of criminalization: The case of computer crime laws. Criminology, 26, 101-126.
22. Jacobson, H., & Green, R. (2002). Computer crimes. American Criminal Law Review, 39, 273-325.
23. Kaspersky Lab. (2005). History of malicious programs. Retrieved November 1, 2005, from http://www.viruslist.com/en/viruses/encyclopedia?chapter=153311030
24. Keizer, G. (2004). Sasser worm impacted businesses around the world. Retrieved November 28, 2005, from http://www.techweb.com/wire/26804909
25. Kumar, V. A. (2004). Sophistication in distributed denial-of-service attacks on the Internet. Current Science, 87, 885-888.
26. Lemos, R. (2001). Attack knocks out Microsoft Web sites. CNet%20News.com. Retrieved July 27, 2005, from http://news.com.com/ Attack+knocks+out+Microsoft+Web+sites/2100-1001_3-251573.html
27. Livingston, B. (2001). We can prevent those distributed denial of service attacks with "egress filtering." Retrieved October 5, 2005, from http://archives.cnn.com/2000/TECH/computing/03/01/prevent.ddos.idg/
28. Marion, C. C. (1989). Computer viruses and the law. Dikinson Law Review, 93, 625-642.
29. May, M. (2004). Federal computer crime laws. The SANS Institute. Retrieved October 7, 2005, from http://www.sans.org/rr/whitepapers/legal/1446. php
30. McCall, C. (1988). Computer crime statutes: Are they bridging the gap between law and technology? Criminal Justice Journal, 11, 203-233.
31. McCollum, T. (2003). Super worms could pose new security threats. IT Audit, 6. Retrieved November 28, 2005, from http://www.theiia.org/itaudit/index. cfm?fuseaction=forum&fid=5435
32. Microsoft TechNet. (2004). The antivirus defense-in-depth guide. Retrieved October 2, 2005, from http://www.microsoft.com/technet/security/ topics/serversecurity/avdind_2.mspx
33. Montana, J. C. (2000). Viruses and the law: Why the law is ineffective. Information Management Journal, 34, 57-60.
34. Montz, L. B. (1990). The worm case: From indictment to verdict. In P. J. Denning (Ed.), Computers under attack: Intruders, worms, and viruses (pp. 260-263). New York: Addison-Wesley.
35. National Infrastructure Protection Center. (2001). Cyber protests: The threat to the U.S. information infrastructure. Retrieved October 27, 2005, from http://www.au.af.mil/au/awc/awcgate/nipc/cyberprotests.pdf
36. The nutty professors. (2003). Crypt Newsletter. Retrieved July 16, 2005, from http://www.soci.niu.edu/%7Ecrypt/other/quant.htm
37. Parker, D. B. (1976). Crime by computer. New York: Scribner.
38. Pethia, R. D. (2003). Viruses and worms: What can we do about them? Testimony before the House Committee on Government Reform, Subcommittee on Technology, Information Policy, Intergovernmental Relation and the Census. Retrieved September 16, 2003, from http://www.cert.org/congressional_testimony/ Pethia-Testimony-9-10-2003/
39. Pew Internet & American Life Project. (2005). Online activities - Daily. Retrieved September 30, 2005, from http://www.pewInternet.org/trends/ Daily_Activities_8.05.05.htm
40. Powell, B. (2005). Is cybersecurity a public good? Evidence from the financial services industry (Paper 57). Oakland, CA: The Independent Institute.
41. Raskin, X., & Schaldach-Paiva, J. (1996). Computer crimes. American Criminal Law Review, 33, 541-573.
42. Ratliff, E. (2005, October 10). The zombie hunters: On the trail of cyberextortionist. The New Yorker, pp. 44-49.
43. Schmalleger, F. (2006). Criminal law today: An introduction with capstone cases (3rd ed.). Upper Saddle River, NJ: Pearson/Prentice Hall.
44. Shimeall, T., Williams, P., & Dunlevy, C. (2001-2002). Countering cyber war. NATO Review, 49, 16-18. Retrieved July 16, 2005, from http://www.cert.org/archive/pdf/counter_cyberwar.pdf
45. Smith, G. (1998). An electronic Pearl Harbor? Not likely. Issues in Science and Technology, 15, 68-73.
46. Smith, R. G., Grabosky, P., & Urbas, G. (2004). Cyber criminals on trial. Cambridge, UK: Cambridge University Press.
47. Sokolik, S. L. (1980). Computer crime - The need for deterrent legislation. Computer/Law Journal, 2, 353-383.
48. Spafford, E. H. (1990). Crisis and aftermath. In P. J. Denning (Ed.), Computers under attack: Intruders, worms, and viruses (pp. 223-243). New York: Addison-Wesley.
49. Stambaugh, H., Beaupre, D., Icove, D. J., Baker, R., Cassaday, W., & Williams, W. P. (2000). State and local law enforcement needs to combat electronic crime. In Research in brief (pp. 1-6). Washington, DC: U.S. Department of Justice, National Institute of Justice, Office of Justice Programs.
50. Staniford, S., Grim, G., & Jonkman, R. (2001). Flash worms: Thirty seconds to infect the Internet. Silicon defense. Retrieved July 18, 2005, from http://richie.idc.ul.ie/eoin/SILICON%2520DEFENSE%2520- %2520Flash%2520Worm%2520Analysis.htm
51. Stephenson, P. (2000). Investigating computer-related crime. Boca Raton, FL: CRC.
52. Symantec. (2004). Symantec Internet security threat report: Trends for January 1, 2004-June 30, 2004 (Vol. 6). Cupertino, CA: Author.
53. Symantec. (2005a). Security risks. Retrieved October 5, 2005, from http://securityresponse.symantec.com/avcenter/security_risks/
54. Symantec. (2005b). Symantec Internet security threat report: Trends for January 05-June 05 (Vol. 8). Cupertino, CA: Author.
55. Taber, J. K. (1980). A survey of computer crime studies. Computer/Law Journal, 2, 275-327.
56. Taylor, R. W., Caeti, T. J., Fritsch, E. J., & Liederbach, J. (2005). Digital crime and digital terrorism. Upper Saddle River, NJ: Prentice Hall.
57. Timeline. (2005). CBSNews. Retrieved November 28, 2005, from http://www.cbsnews.com/htdocs/cyber_crime/timeline.html
58. Tramontana, J. (1990). Computer viruses: Is there a legal antibiotic? Rutgers Computer and Technology Law Journal, 16, 253-381.
59. Trend Micro. (2002). The real cost of a virus outbreak: Why is antivirus needed? Retrieved July 16, 2005, from http://www.go-red.com/pdf/ white_paper_realcost.pdf
60. U.S. Department of Commerce. (2004). A nation online: Entering the broadband age. Retrieved November 6, 2006, from http://www.ntia.doc.gov/reports/ anol/NationOnlineBroadband04.htm
61. U.S. Department of Justice. (2000). National incident-based reporting system volume 1: Data collection guidelines. Washington, DC: U.S. Department of Justice, Federal Bureau of Investigation, Criminal Justice Information Services Division, Uniform Crime Reporting Program.
62. Vamosi, R. (2004). Does a virus gang own the Internet? CNET Reviews. Retrieved June 27, 2005, from http://reviews.cnet.com/4520-3513_7-5133725.html
63. Vmyths.com. (2003). Truth about computer hysteria. Rhode Island Soft Systems, Inc. Retrieved November 3, 2005, from http://www.vmyths.com/
64. Wall, D. S. (1998). Policing and the regulation of the Internet. Criminal Law Review,(Special Edition 1998), 79-91.
65. Wall, D. S. (2001). Cybercrimes and the Internet. In D. S. Wall (Ed.), Crime and the Internet (pp. 1-17). London: Routledge.
66. Wall, D. S. (2002). Insecurity and the policing of cyberspace. In A. Crawford (Ed.), Crime and insecurity: The governance of safety in Europe (pp. 186-209). Portland, OR: Willan.
67. Wall, D. S. (2003). Cyberspace crime. Aldershot, UK: Dartmouth.
68. Weaver, N. C. (2005). Warhol worms: The potential for very fast Internet plagues. Retrieved July 18, 2005, from http://www.cs.berkeley.edu/%7Enweaver/ warhol.html
69. Wolfgang, M. E., Figlio, R. M., & Sellin, T. (1972). Delinquency in a birth cohort. Chicago: University of Chicago Press.
70. Yasin, R. (2001). Tools stunt DoS attacks: Monitors dam packet floods at ISP routers. InternetWeek. Retrieved July 27, 2005, from http://internetweek. cmp.com/newsleads01/lead020501.htm
71. Young, L. F. (1995). Combating unauthorized Internet access. Jurimetrics Journal, 35, 257-261.