Skip to section navigation
Skip to page content

RAND > Topics >

Cybercrime

Featured

A wide range of computer security threats exists—including faulty software, password trafficking and fraud, and hostile groups intending to inflict damage—and awareness of these threats varies. RAND has conducted research to measure and increase understanding of the impact of cybercrime on businesses and governments and has addressed such issues as the pros and cons of counterattack, the value of deterrence and vigilance, and actions that can be taken in the face of cyberattack.

Report

U.S. Weapons Are the Main Source of Illegal Arms on the Dark Web

Jul 19, 2017

Sixty percent of weapons on sale on the dark web come from the United States. This illicit market for firearms, explosives, and ammunition can anonymously arm criminals, terrorists, and others.
Commentary

Equifax and the Data-Breach Era

Oct 18, 2017

The personal and financial data of almost 146 million U.S. consumers has been compromised by the Equifax breach, the latest in a long line of high-profile hacks. Do consumers worry enough about such breaches? And what options are available to Congress?

Explore Cybercrime

Commentary

Examining the Weak Spots in Tech's Supply Chain Armor

When an attack on the supply chain occurs, manufacturers and purchasers should be better positioned to respond and recover. Even the simplest devices can rely on parts from multiple suppliers, which may have their own suppliers and so on. But every supplier, no matter how small, represents a potential weak link in the chain.

Oct 16, 2018
Commentary

Have a Victim Response Plan for Data Breaches

In a large data breach, there could be a real risk to victims' financial or personal security. Though responsible organizations should do everything in their power to ensure data is protected in the first place, they also should prepare a plan to ensure prompt victim response.

Oct 2, 2018
Report

Report

Developing Cybersecurity Capacity: A proof-of-concept implementation guide

This document is a proof-of-concept operational toolbox designed to facilitate the development of national-level cybersecurity capacity building programmes and of holistic policy and investment strategies to tackle challenges in the cyber domain.

Aug 2, 2018
Commentary

What Do Meltdown, Spectre, and RyzenFall Mean for the Future of Cybersecurity?

Unlike most previous cyber threats, a new wave of vulnerabilities attack a computer's hardware, rather than its software. What does this mean for cybersecurity as a whole?

May 3, 2018
Report

Identifying Law Enforcement Needs for Access to Digital Evidence in Remote Data Centers

Researchers discuss the challenge of accessing data in remote data centers, summarize the discussion of an expert panel, and provide a list of needs identified and prioritized by the panel to inform concerned communities and stakeholders.

Apr 23, 2018
Multimedia

Data Thieves: The Motivations of Cyber Threat Actors and Their Use and Monetization of Stolen Data

An overview of testimony by Lillian Ablon presented before the House Financial Services Committee, Subcommittee on Terrorism and Illicit Finance.

Mar 15, 2018
Testimony

A Close Look at Data Thieves

What do cyberattackers do with the data they steal? And how do they monetize it? Grouping hackers by their goals, motivations, and capabilities can shed light on these questions.

Mar 15, 2018
Brochure

A focus on cybersecurity

Cybersecurity has risen to become a prominent issue of national and global security for governments and international organisations worldwide. A focus on cybersecurity looks at the issues and details RAND Europe's expertise and work in the area.

Feb 15, 2018
Commentary

Why the 2018 Winter Olympics Are the Perfect Storm for Cyberattacks

The Olympic Games could invite the most severe cyber threats to a major sporting event in recent years. The location of the Games and increased connectivity, both among the public and infrastructure, make them a prime target for cyberattacks.

Feb 12, 2018
Commentary

Bitcoin and the Dark Web: The New Terrorist Threat?

Bitcoin has become the prominent currency of the dark web, which is often used to buy illegal goods, such as weapons and drugs. Anecdotal evidence suggests terrorists are using cryptocurrency and the dark web, but further investigation is needed.

Jan 22, 2018
Report

Report

Estimating the Global Cost of Cyber Risk: Methodology and Examples

This report shares a transparent and adaptable methodology for estimating present and future global costs of cyber risk. The report has a companion Excel-based modeling and simulation platform that allows users to alter assumptions.

Jan 15, 2018
Tool

Estimating the Global Cost of Cyber Risk Calculator

This Excel-based modeling and simulation tool estimates present and future global costs of cyber attacks and incidents. Users can also alter assumptions to investigate a wide variety of research questions.

Jan 15, 2018
Report

Law Enforcement Cyber Center: Final Technical Report

Cybercrime is a challenge for local and state law enforcement. The Law Enforcement Cyber Center (LECC) was established to provide a resource to combat cybercrime. This report summarizes the LECC's activities and provides recommendations.

Jan 15, 2018
Commentary

Fake Voices Will Become Worryingly Accurate

New technology can convincingly fake the human voice and create security nightmares. Considering the widespread distrust of the media, institutions, and expert gatekeepers, audio fakery could start wars.

Jan 8, 2018
Commentary

Smart Toys May Pose Risks

Parents shouldn't avoid buying smart toys during the holidays, particularly if these devices top children's Christmas lists. But parents should definitely be wary of the security and privacy risks that smart toys can pose.

Dec 21, 2017
Commentary

The WannaCry Cyber Attack Could Be the First of Many If the NHS Takes No Action

In the UK, the National Health Service (NHS) was one of the organizations most severely affected by the WannaCry ransomware. The NHS and other public sector organizations need to improve their cybersecurity processes and quickly before a more severe cyber attack takes place.

Dec 1, 2017
Commentary

It's Time for the International Community to Get Serious About Vulnerability Equities

Multiple countries around the world are likely discovering, retaining and exploiting zero-day vulnerabilities without a process to properly consider the trade-offs. This needs to change. It’s time for the international community to get serious about vulnerability equities.

Nov 15, 2017
Multimedia

Equifax and the Data-Breach Era: How Worried Should We Be?

Large-scale data breaches like those of Equifax and OPM compromised the personal data of millions of people. What can be done to improve the response to such breaches? In this October 26th congressional briefing, Lillian Ablon and Sina Beaghley address victim and lawmaker reactions, national security implications, and considerations for policymakers.

Oct 26, 2017
Commentary

How to Help Small Businesses Deal with Cyber Threats

Small businesses are especially vulnerable to cyber threats. What can be done to provide small businesses the security to continue to prosper, while enhancing America's cybersecurity workforce and making the economy more secure?

Sep 15, 2017

1
2
3
4
5
6
7
8
9
Next

RAND Topic:
Cybercrime

Topic Synonyms:
Computer Crime

Research conducted by