U.S. flag

An official website of the United States government, Department of Justice.

NCJRS Virtual Library

The Virtual Library houses over 235,000 criminal justice resources, including all known OJP works.
Click here to search the NCJRS Virtual Library

"Between the Risk and the Reality Falls the Shadow": Evidence and Urban Legends in Computer Fraud (With Apologies to T.S. Eliot)(From Crime and the Internet, P 44-58, 2001, David S. Wall, ed. -- See NCJ-213504)

NCJ Number
213508
Author(s)
Michael Levi
Date Published
2001
Length
15 pages
Annotation
This chapter compares the risks and realities that underlie the "urban legends" about the Internet and its users and abusers.
Abstract
Although computer security will continue to be a major concern, fears about computer-related fraud do not warrant diverting resources from other types of fraud or other types of computer crime. Only after compiling a reasonable amount of data on various types of computer crime and how it is perpetrated can there be rational decisions about the resources committed to each type of computer-related crime. The chapter argues that computer users must inform themselves about how the manner in which they use the Internet affects their risk for becoming a fraud victim. Users also need a more sophisticated understanding of the relationship between the hypothetical potential for computer-related fraud and its actual prevalence. Fraud is not the only subject of urban legends about computer-related crime. In fact, most of the urban legends pertain to the exploits of hackers/crackers, who have used their computer skills to access data and information intended only for authorized users. The difficulties in documenting the actual incidence of various types of computer crime are that victims have not been surveyed about their victimization; and when they are, they do not respond when asked, do not mention all of their experiences, or are unaware of their victimization. A British Audit Commission surveyed all local authorities and National Health Service bodies in England and Wales to determine their experience of all forms of information technology fraud. Although the response rate from each sector or all together was not reported, the proportion of respondents who were victims increased from 36 percent in 1994 to 45 percent in 1997. 4 notes and 22 references