Abuse reporting and the fight against cybercrime

Mohammad Hanif Jhaveri, Feyzullah Cetin, Carlos Gañán, Tyler Moore, Michel Van Eeten

Research output: Contribution to journalArticleScientificpeer-review

25 Citations (Scopus)


Cybercriminal activity has exploded in the past decade, with diverse threats ranging from phishing attacks to botnets and drive-by-downloads afflicting millions of computers worldwide. In response, a volunteer defense has emerged, led by security companies, infrastructure operators, and vigilantes. This reactionary force does not concern itself with making proactive upgrades to the cyber infrastructure. Instead, it operates on the front lines by remediating infections as they appear. We construct a model of the abuse reporting infrastructure in order to explain how voluntary action against cybercrime functions today, in hopes of improving our understanding of what works and how to make remediation more effective in the future. We examine the incentives to participate among data contributors, affected resource owners, and intermediaries. Finally, we present a series of key attributes that differ among voluntary actions to investigate further through experimentation, pointing toward a research agenda that could establish causality between interventions and outcomes.
Original languageEnglish
Article number68
Pages (from-to)1-27
Number of pages27
JournalACM Computing Surveys (CSUR)
Issue number4
Publication statusPublished - 2017


Dive into the research topics of 'Abuse reporting and the fight against cybercrime'. Together they form a unique fingerprint.

Cite this