Discerning Novel Value Chains in Financial Malware: On the Economic Incentives and Criminal Business Models in Financial Malware Schemes

Discerning Novel Value Chains in Financial Malware: On the Economic Incentives and Criminal Business Models in Financial Malware Schemes

van Wegberg, R.S.
Klievink, A.J.
van Eeten, M.J.G.

2017

Fraud with online payment services is an ongoing problem, with significant financial-economic and societal impact. One of the main modus operandi is financial malware that compromises consumer and corporate devices, thereby potentially undermining the security of critical financial systems. Recent research into the underground economy has shown that cybercriminals are organised around highly specialised tasks, such as pay-perinstall markets for infected machines, malware-as-a-service and money mule recruitment. Setting up a successful financial malware scheme requires the aligning of many moving parts. Analysing how cybercrime groups acquire, combine and align these parts into value chains can greatly benefit from existing insights into the economics of online crime. Using transaction cost economics, this paper illustrates the business model behind financial malware and presents three novel value chains therein. For this purpose, we use a conceptual synthesis of the state-of-the-art of the literature on financial malware, underground markets and (cyber)crime economics, as well as today’s banking practice.

Human & Operational Modelling
NO - Networked Organisations
ELSS - Earth, Life and Social Sciences
Informatics
Cybercrime
Financial malware
Transaction cost economics
Value chain
Underground markets
Vertical integration

http://resolver.tudelft.nl/uuid:fb83bfc6-9dcf-4d2e-b3af-c367ec2a3e3e

https://doi.org/10.1007/s10610-017-9336-3

745325

European Journal on Criminal Policy and Research, 1-11

Online first

article