|
Our Mission
The FBI's Washington Field Office Infrastructure Protection
and Computer Intrusion Squad (WFO IPCIS) is responsible for investigating
unauthorized intrusions into major computer networks belonging
to telecommunications providers, private corporations, United
States Government agencies, and public and private educational
facilities. The squad also investigates the illegal interception
of signals (cable and satellite signal theft) and infringement
of copyright laws related to software. As part of its ongoing
mission to prevent cyber-based crime and improve the security
stature of private and public networks, WFO's IPCIS works with
industry to assess the potential damage a network intrusion may
inflict upon the Washington D.C. area telecommunications infrastructure.
Current Trends
In recent years, the number of illegal computer intrusions
have grown rapidly. As a result, the number of open investigations
assigned to WFO's IPCIS has grown considerably. Some recent trends
associated with these intrusions are:
- An increasing number of juveniles who are responsible for
serious network intrusions costing tens of thousands of dollars;
- an increasing number of employees, former employees and contractors
using their trusted relationships to harm their current or former
employer; and
- a rise in the sophistication and complexity of intrusions.
Due to these and other factors, the network security manager's
job has become ever more important in maintining the integrity
of the organization's computer network.
Illegal computer network intrusions not only inflict financial
harm, but may have disasterous results in terms of loss of customer
confidence, downstream liability, and the diversion of valuable
resources to address the intrusions.
Hence, the FBI is aggressively addressing those complaints
that the United States Attorneys consider prosecutable under
federal law. The FBI will also work with local and international
law enforcement agencies to solve computer intrusions where applicable.
Due to the serious nature of these crimes, their potentially
devastating cost, and the large number of private and government
institutions who place their dependence upon computer networks
for business and communications, the WFO IPCIS is dedicated to
investigating suspected instances of unauthorized computer intrusion
and aggressively pursuing those responsible.
Provided are some tips to assist you in minimizing
your potential vulnerability
- Maintain backups of all original Operating System Software;
- maintain backups of ALL important data;
- maintain a solid, well thought out corporate security plan;
- accepted and practiced by all employees
- involving all necessary levels of your organization
- install sufficient software to recognize attacks and track/audit
defensive steps;
- ensure audit trails are turned on;
- consider placing a warning banner on your system to notify
unauthorized users they may be subject to monitoring and data
residing on the system is subject to review;
- routinely test network for vulnerabilities;
- change log-ins/passwords frequently, especially when employees
change jobs;
- require use of passwords containing alpha-numeric character
combinations and /or one-time tokens;
- cancel log-ins/passwords when employees leave the organization;
and
- minimize the number of modems on the system.
- If You Become a Victim... the following
steps may help reduce the negative effects of such an incident:
- Respond quickly. This will greatly reduce potential damage
and monetary losses;
- consider activating Caller ID on inbound lines;
- have pre-established points of contact for the General Counsel,
Emergency Response Personnel, Law Enforcement, etc...;
- appoint one person to handle potential evidence. Establish
a chain-of-custody;
- do not "duel" with the hacker. This typically invites
more attacks;
- do not use your network's E-mail functions to discuss the
incident. The mail server may have been compromised; and
- lastly, if you reside within the Washington, D.C. Metropolitan,
contact the WFO IPCIS.
- If You Contact the WFO IPCIS...
After receiving a report of an intrusion, the WFO IPCIS will
employ various resources to address the incident. However, the
WFO IPCIS is also limited in what it may provide you as a victim.
What the FBI Will Do for You
- Provide combined technical expertise and
investigative experience;
- provide national and international coverage;
- apply traditional investigative techniques;
- provide long-term commitment of resources;
- integrate Law Enforcement and National Security
concerns;
- coordinate the investigation with other agencies
with similar investigations; and
- provide a deterrent effect.
|
- What the FBI Will Not Do for You
- Assume responsibility for your system's continued
operation;
- provide information about the case beyond
the victim's right to know;
- share corporate proprietary information with
other victims;
- become involved in civil litigation;
- keep you fully apprised of the ongoing investigation
as it relates to evidence gathering, identification of those
responsible and prosecution;
- provide access to national security information
or intelligence gathering techniques;
- provide information to the media about ongoing
cases;
- eliminate the threat of any future intrusions.
|
Back
to top of page
|
WFO Infrastructure Protection and
Computer Intrusion Squad |
|