Computer crime
What Is Computer Crime?
Computer crime is a category of illegal activity in which a computer, network, or digital device serves as the primary tool, the primary target, or both. The term encompasses a wide spectrum of offenses: unauthorized access to systems, theft or destruction of data, financial fraud conducted through digital channels, and the creation or deployment of software designed to disrupt or damage computing infrastructure. Academic and legal frameworks often divide computer crime into two broad groups: offenses that are purely technical in nature, such as exploiting a software vulnerability to gain unauthorized access, and offenses in which digital tools amplify traditional criminal activities, such as fraud, extortion, or harassment. The field intersects computer security, law, criminology, and digital forensics.
Research into computer crime has grown substantially since the 1980s, when early network intrusions and virus outbreaks drew attention from both law enforcement and the technical community. The Springer Journal of Computer Virology and Hacking Techniques has published foundational work on classifying cybercrime and establishing precise definitions for legal and technical purposes.
Malware and Malicious Software
A large proportion of computer crime is enabled by malware, a class of software written to perform unauthorized, harmful actions on a target system. Computer viruses attach copies of their code to legitimate programs and spread when those programs are executed, modifying or destroying data as a side effect. Computer worms propagate autonomously across networks without requiring a host file, consuming bandwidth and installing additional payloads. Botnets are networks of compromised machines, often in the thousands or millions, controlled by an operator through a command-and-control infrastructure; these networks are used to launch distributed denial-of-service attacks, distribute spam, or conduct credential theft at scale. Privacy-invasive software, including spyware and stalkerware, monitors user activity, captures keystrokes, or exfiltrates sensitive data without the user's knowledge. The NIST National Vulnerability Database maintains a continuously updated catalog of software vulnerabilities that malware authors exploit to gain initial access.
Cybercrime Detection
Detecting computer crime involves both technical monitoring of network and system behavior and forensic analysis of compromised systems after an incident. Intrusion detection systems analyze traffic patterns and log entries for signatures or statistical anomalies that indicate unauthorized activity. Endpoint detection and response platforms monitor process behavior in real time, flagging actions such as unexpected code injection, lateral movement across a network, or large-scale file encryption consistent with ransomware. Digital forensics practitioners apply chain-of-custody procedures to disk images and memory captures to recover deleted files, reconstruct timelines, and preserve evidence in a form admissible in court. Machine learning approaches have been applied to network flow classification and malware analysis, as documented in IEEE Xplore publications on intrusion detection, with neural network models showing improved accuracy on novel attack variants.
Cyberethics and Legal Frameworks
Computer crime operates within a complex legal and ethical context. In the United States, the Computer Fraud and Abuse Act (CFAA) of 1986 established federal jurisdiction over unauthorized computer access, and subsequent amendments expanded its scope as online commerce grew. Internationally, the Budapest Convention on Cybercrime, adopted by the Council of Europe in 2001, provides a treaty framework for cross-border cooperation in investigating and prosecuting offenses. Cyberethics, a sub-field that examines the moral dimensions of digital behavior, addresses questions about what constitutes harm in networked environments, the ethics of security research, and the boundaries of acceptable use. Unsolicited bulk email, commonly called spam, occupies a legal gray zone in many jurisdictions, addressed through statutes such as the U.S. CAN-SPAM Act and similar national legislation.
Applications
Computer crime countermeasures and detection methods have applications in a wide range of domains, including:
- Financial services, where fraud detection systems flag anomalous transactions in real time
- Critical infrastructure, where control system security programs protect power grids and water treatment facilities
- Digital rights management, where technical controls limit unauthorized copying of protected content
- Law enforcement, where digital forensics tools recover evidence from seized devices
- Corporate security, where threat intelligence programs track active criminal infrastructure