ABSTRACT
To prevent, deter, and fight cybercrime, the underlying cyberthreats and the nature of cyberattacks should be well understood. If justice wants to pursue cybercriminals, it is not sufficient merely to know the motivations and general means of operating of cybercriminals; it is also necessary to recognize and monitor illicit activities and have the means to identify and pursue criminals involved in these activities. To accomplish this, it is important to possess appropriate means in each of the organisational, legal, procedural, technical, and human domains. Key assumptions related to this are that:
• There exist channels for recognizing and reporting cybercrimes; • This is supported by an appropriate legal framework and organizational
structures; • The structures, procedures, staff and tools employed in IT-based inves-
tigations are useable and practical; • The cooperation and sharing between the different elements of the
police services and the justice system are effective and efficient at both the national and international levels.
