Slashdot Mirror

← Back to Stories (view on slashdot.org)

Fighting Online Extortion

Posted by CmdrTaco on from the more-common-than-we-think dept.

prostoalex writes "Information Week talks about those mornings, when an owner of an online business receives an e-mail message with his customer accounts and other personal information quoted, and extortionist asking for certain amount of money to be transferred to a foreign bank. Although 70% of the businesses surveyed for the article claim they never had to deal with extortion on the Internet, the article claims those small businesses who think they are not interesting for extortionists, are in for a surprise."

2 of 116 comments (clear)

  1. Once again, a bad summary. by damiangerous · · Score: 4, Informative
    Although 70% of the businesses surveyed for the article claim they never had to deal with extortion on the Internet,

    No, it doesn't say that at all. It says:

    "According to Carnegie Mellon's survey, 70% of those threatened with extortion say the attempts were unsuccessful."
    It does talk about how many businesses have had to deal with 'cyberextortion', and that percentage is just over half of the submitter's claims:
    "17% of the 100 companies surveyed say they've been the target of some form of cyberextortion."
    1. Re:Once again, a bad summary. by dema · · Score: 4, Informative

      If you look at the chart on the left side of the screen, you'll see the question: Has your company or any employee been the target of cyberextortion?. And, as indicated in the pie chart, 70% of those surveyed said No, just as the poster indicated. And in reference to the story only being about DDoSing, if you read the whole article you see:

      Cyberextortion mostly travels under the radar, but not always. Earlier this year, Myron Tereshchuk, 42, of Maryland, pleaded guilty to one count of attempting to extort $17 million from intellectual-property company MicroPatent LLC. He faces up to 20 years in jail. Tereshchuk threatened to leak confidential information and launch denial-of-service attacks against intellectual-property attorneys worldwide if he wasn't paid.

      In January, Thomas Ray, 25, of Mississippi, was indicted for allegedly claiming to have found a security flaw in Best Buy Co.'s systems and threatening to expose and exploit that flaw unless he was paid $2.5 million. A trial is expected this fall. And last year, Kazakhstan hacker Oleg Zezev was sentenced to 51 months for illegally entering Bloomberg L.P.'s systems and threatening to disclose the break-in if he wasn't paid $200,000.

      The first one threatened DDoSing in addition to leaking info, and the other examples had nothing to do with DDoS.