Hacker hunters need to develop new techniques to take on the latest generation of sophisticated and better-organized cyber criminals. That's what U.S. Federal Bureau of Investigation Director Robert Mueller told attendees of the RSA Conference 2006 in San Jose, California, Wednesday.
In particular, the FBI must work with corporations and international law enforcement to help combat online criminal acts that are seldom reported, Mueller said in a keynote address. These acts are increasingly being perpetrated by organized groups of criminals, operating across international borders, the FBI believes.
"Increasingly our cyberthreats originate outside of the United States," he said. "The once-clear divisions of jurisdiction and responsibility between agencies [and nations] … have been rendered obsolete by the fluid and far-reaching nature of today's threats."
Over the past few years, the FBI has taken steps to better coordinate cyber crime investigations within the U.S.. Four years ago, it created its own Cyber Division, and the law enforcement agency has set up specially trained cyber squads in each of its 56 field offices across the U.S., Mueller said.
The FBI now has more flexibility to work with international law enforcement and is working to build relationships with those foreign agencies by putting operatives "on the ground" in countries that may be hotbeds for cyber crime. These countries include places such as Estonia and Romania, said Steven Martinez, the deputy assistant director for the FBI's Cyber Division, who spoke after Mueller.
While the U.S. is now working with other countries on formal and treaty-level arrangements to speed up cooperation, FBI agents are also working hard to develop direct ties to their counterparts in other countries, Martinez said. "You build those relationships," he said. "Then when you have larger problems come down the line, it's not the first time you've seen each other."
But the FBI's relationships with corporations and consumers, the most common victims of cyber criminals, are also key to many of the FBI's investigations, Mueller said. "Information sharing is a two-way street," he said. "We recognize that in certain areas we lack the expertise that you possess."
One example of this type of information sharing occurred shortly after Hurricane Katrina hit the Gulf Coast in the U.S. last year. Within days, fraudsters had set up bogus Web sites soliciting money under the guise of providing disaster relief. The FBI worked with organizations such as the Red Cross, eBay Inc. and MasterCard International Inc. to help shut down the phony sites, and ultimately it referred 100 such cases to local authorities, according to Mueller.
Mueller also cited an FBI-backed initiative called IntraGuard, where 3,000 members -- from Fortune 500 companies to small family-owned businesses -- can share information with law enforcement on the latest cyber threats.
Additionally, the FBI has helped establish an Internet Crime Complaint Center (http://www.ic3.gov/) where about 18,000 "Internet-related consumer complaints" are logged each month, he said.
Still, most law enforcement experts agree that the vast majority of cybercrimes go unreported to law enforcement, with fears of reprisals or adverse publicity creating what Mueller called a "code of silence."
"You may believe that notifying authorities may adversely impact your position in the marketplace," he told the RSA Conference audience of computer security experts and vendors. But companies need to take a wider view of the situation, he said.
"Maintaining a code of silence will not benefit you or your company in the long run," Mueller said. "Our safely lies not only in protecting our own interest, but our critical infrastructure as a whole."