A Data Analytics Approach to the Cybercrime Underground Economy

0
460
A Data Analytics Approach to the Cybercrime Underground Economy

A Data Analytics Approach to the Cybercrime Underground Economy

Abstract

A Data Analytics Approach to the Cybercrime Underground Economy.Despite the rapid escalation of cyber threats, there has still been little research into the foundations of the subject or methodologies that could serve to guide information systems researchers and practitioners who deal with cybersecurity. In addition, little is known about crime-as-a-service (CaaS), a criminal business model that underpins the cybercrime underground. This research gap and the practical cybercrime problems we face have motivated us to investigate the cybercrime underground economy by taking a data analytics approach from a design science perspective. To achieve this goal, we: (1) propose a data analysis framework for analyzing the cybercrime underground; (2) propose CaaS and crimeware definitions; (3) propose an associated classification model, and (4) develop an example application to demonstrate how the proposed framework and classification model could be implemented in practice. We then use this application to investigate the cybercrime underground economy by analyzing a large data set obtained from the online hacking community. By taking a design science research approach, this paper contributes to the design artifacts, foundations, and methodologies in this area. Moreover, it provides useful practical insights to practitioners by suggesting guidelines as to how governments and organizations in all industries can prepare for attacks by the cybercrime underground.

 

Conclusion 

A Data Analytics Approach to the Cybercrime Underground Economy,To wind up, malware’s main objective is to deliver and hide malicious program, then to steal data and extort money. Now this black market has flourished that much that many cybercriminals are creating kits they can sell to new incomers in the underground economy of black market money. It helps all inexperienced new virus attackers with less technical knowledge to cause attacks without too much problem. It may continue to process itself in 2013 and even beyond to keep on one step further of the everchanging approaches, which businesses use technology.