FBI asks for more private-sector help reporting cybercrime cases

FBI director talks about the agency's work to track down cybercriminals, but says it needs helps from private sector.

The FBI is working hard to track down cybercriminals, but the bureau needs help from the private sector, FBI Director Robert Mueller told attendees Thursday at the RSA Conference in San Francisco.

RSA Conference 2010

For all the latest news, podcasts and more direct info from the show floor in San Francisco, visit our RSA Conference 2010 special news coverage page.
"We cannot act as if we're not aware of the problem. Maintaining a code of silence will not benefit you or your clients in the long run," he said in urging a public-private partnership to fight cybercrime.

Mueller said the National Cyber Investigative Joint Task Force, which has 17 law enforcement and intelligence agencies, aims to "predict and prevent what is on the horizon." The task force has separate teams focused on specific threats, including one that investigates botnets.

"We are reverse-engineering those botnets with an eye toward disrupting them," he said, citing this week's takedown of the Mariposa botnet, malware which infected an estimated 12.7 million computers in more than 190 countries, as an example of the group's work and the need for global cooperation.

The FBI has more than 60 offices around the world and special agents embedded with police in Romania and elsewhere, he said. Last fall, agents worked with Egyptian authorities to dismantle an intrusion and money-laundering scam. The FBI also worked with other international partners to dismantle DarkMarket, an online market of stolen financial data, he said.

Mueller also referred to the investigation of a major breach of a financial firm -- presumably RBS WorldPay -- in which the attackers broke through an encrypted system to steal account numbers and PIN codes. The crime ring created fake ATM cards, recruited money mules around the world and in 24 hours stole more than $9 million from thousands of ATMs.

He called the attack "revolutionary," but said that the victim company greatly helped the investigation by coming forward. The FBI dispatched mobile "cyberaction teams" and worked closely with their counterparts overseas to investigate and ultimately apprehend the top three hackers behind the attack, Mueller said.

"If this company had not come forward, we would not have been able to stop these individuals from hitting the next victim," Mueller said.

RSA Conference 2010 Twitter updates

For up-to-the-minute RSA news and show information updates, be sure to check out the SearchSecurity.com Twitter.
While there's been a "great divide" between investigators and network security teams, it doesn't have to be that way, he said. "We in the FBI understand that you have practical concerns about reporting breaches of security," such as competitive or privacy fears.

"We do not want you to feel victimized a second time by an investigation," he said, adding that the FBI will minimize disruption to a business during an investigation, work to maintain business confidentiality, and share attack information as soon as possible.

"No one country, company, or agency can stop cybercrime ... we must find those responsible. The only way to do that is by standing together," Mueller said.

After Mueller's speech, one conference attendee making his exit said that he was disappointed the FBI director didn't mention the role of InfraGard, which is an information-sharing partnership between the FBI and the private sector. "We're supposed to be the eyes and the ears [of the FBI]," said the attendee, who is involved in a local InfraGard chapter.

Dig deeper on Information Security Laws, Investigations and Ethics

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchConsumerization

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly

Close