Published online by Cambridge University Press: 31 January 2019
This chapter presents our definitions of the main concepts of the study, namely “cybercrime” as well as “impact,” “harms” and “costs” (of cybercrime), along with our justifications for our choices.
CYBERCRIME
Following the approach adopted by legal texts, policy documents and other studies (e.g., UNODC, 2013), the present project does not define cybercrime per se, but rather identifies specific acts that constitute cybercrime. Specifically, and unlike most other studies on the cost and impact of cybercrime, we have developed a “technology-neutral” typology of cybercrime, i.e., a typology that is independent of the specific techniques used by cybercriminals. The typology largely draws from the Council of Europe's Convention on Cybercrime, and the Belgian act on cybercrime, but also incorporates the insights from the academic literature on the topic. The typology entails five types of cybercrime that might target businesses:
A. Illegal access to IT systems
B. Cyber espionage
C. Data or system interference
D. Cyber extortion
E. Internet fraud
The first three types belong to the category of “computer-integrity crimes” (Gordon & Ford, 2006: 14) and the latter two largely to the category of “computer-assisted crimes” (Wall, 2007: 50). Our conceptualization of the three computer-integrity crimes is based upon the Council of Europe's Convention and Belgian cybercrime law. In fact, the incidents of illegal access to IT systems, cyber espionage and data/system interference, correspond, respectively, to the offences of “illegal access” (art. 2), “illegal interference” (art. 4) and “data” and “system interference” (art. 5–6) in the Convention. The type “cyber extortion” has no direct correspondence in the Convention; it is rather the cyber version of a standard offence in Belgian and other national criminal laws. The last type, “internet fraud,” draws from the offence of computer-related fraud defined by the Convention (Council of Europe, 2001: 6; art. 8) as well as two other more traditional types of fraud that frequently target businesses online.
ILLEGAL ACCESS TO IT SYSTEMS
This first type is comprised of illegal access to IT systems. The generic term “IT system” exemplifies the technology-neutral way in which the survey is draft ed. Following the Council of Europe's 2001 convention, an IT system is conceived as “any device or a group of interconnected or related devices, one or more of which, pursuant to a program, performs automatic processing of data” (Convention on Cybercrime, 2001, art. 1, a).
To save this book to your Kindle, first ensure [email protected] is added to your Approved Personal Document E-mail List under your Personal Document Settings on the Manage Your Content and Devices page of your Amazon account. Then enter the ‘name’ part of your Kindle email address below. Find out more about saving to your Kindle.
Note you can select to save to either the @free.kindle.com or @kindle.com variations. ‘@free.kindle.com’ emails are free but can only be saved to your device when it is connected to wi-fi. ‘@kindle.com’ emails can be delivered even when you are not connected to wi-fi, but note that service fees apply.
Find out more about the Kindle Personal Document Service.
To save content items to your account, please confirm that you agree to abide by our usage policies. If this is the first time you use this feature, you will be asked to authorise Cambridge Core to connect with your account. Find out more about saving content to Dropbox.
To save content items to your account, please confirm that you agree to abide by our usage policies. If this is the first time you use this feature, you will be asked to authorise Cambridge Core to connect with your account. Find out more about saving content to Google Drive.