May’s meeting information is as follows:
Date: Wednesday May 14, 2014
Time: 8:00 AM to 9:00 AM EDT (Doors open at 7:45am for Networking with peers)
Hosted By: MSU Federal Credit Union, Farm Lane Branch
4825 E. Mt. Hope Road
East Lansing, MI 48824
Topic: “The Process and Dynamics of Stolen Data Markets”
Since the TJX corporation revealed a massive data breach in 2007, incidents of mass data compromise have grabbed media attention. The substantial loss of customer data and resulting fraud have seemingly become more common, including the announcement of the Target and Neiman Marcus compromises in 2013. The substantive quantity of data acquired through these breaches facilitates a secondary market for the resale of personal data to cybercriminals around the world. There are, however, few empirically-derived estimates of the profit margins and economy for stolen data. Research infrequently provides actual metrics on the costs of products and few have identified the organizational practices of actors within the markets. As a result, there is a great deal of speculation about the relationships between buyers, sellers, moderators, and others who facilitate transactions. This presentation will consider these issues using analyses generated from a sample of threads from 13 Russian and English language forums involved in the sale of stolen data. Estimates for the advertised price of data will be presented, along with an assessment of the social and market conditions that appear to affect the listed prices. The organizational composition of the market will also be explored to assess the network relationships that support this market.
Bio: Thomas J. Holt, Ph.D., Associate Professor
Thomas Holt is an Associate Professor in the School of Criminal Justice at Michigan State University specializing in cybercrime, policing, and policy. He received his Ph. D. in Criminology and Criminal Justice from the University of Missouri-Saint Louis in 2005. He has published extensively on cybercrime and cyberterror with over 35 peer-reviewed articles in outlets such as Crime and Delinquency, Sexual Abuse, the Journal of Criminal Justice, Terrorism and Political Violence, and Deviant Behavior. He has published multiple edited books, including Corporate Hacking and Technology-Driven Crime with coeditor Bernadette Schell (2011), Crime On-Line: Correlates, Causes and Context, now in its 2nd Edition, and is a co-author of Digital Crime and Digital Terror, 2nd edition (2010). He has also received multiple grants from the National Institute of Justice and the National Science Foundation to examine the social and technical drivers of Russian malware writers, data thieves, and hackers using on-line data. He has given multiple presentations on computer crime and hacking at academic and professional conferences, as well as hacker conferences across the country including Defcon and HOPE.