Keeping Young People Off The Dark Web

UK police are looking to cybersecurity firms to help implement a strategy of steering youngsters away from a life in online crime. 

The National Crime Agency's Prevent campaign sits within the wider five-year UK National Cyber Security Strategy of 2016-2021. The NCA's scheme aims to point teenagers towards careers in cybersecurity rather than following a path that may lead them towards more serious offending.

Cyber Security Challenge is running the programme in partnership with the UK's National Crime Agency.

"The Prevent strategy is new," Jez Rogers, a police cyber prevention officer from the South East Regional Organised Crime Unit told The Register.

"As a team we are only about six months old. We and the national network are still finding our feet. Our primary audience is 13 to 19 years old as the average age of arrest for cybercrime is 17 (one in four teenagers have committed some form of cybercrime)."

One key aspect of the scheme is organising "cybercrime intervention workshops", a day-long event for young hackers who are straying into criminality. The focus is on showing youngsters that there's a lucrative legitimate career for their interests and skills if they change tack.

A spokeswoman for Cyber Security Challenge said that so far three workshops each with about a dozen youngsters have been run nationally (two in Bristol and one in Newcastle). Only one girl has featured among the groups so far. Most of the youngsters have strayed into criminality after getting involved in the shadier aspects of gaming, some have committed hacks against their school's systems and others have engaged in lower-level forms of other online criminality or hacktivism. Attendees under 18 are accompanied on the day by a parent or guardian.

The common thread is youngsters who have shown technical talent and interest in computers but poor judgment. It hasn't reached this stage as yet but Cyber Security Challenge wants the scheme to be regarded as an alternative to a police caution for minor offending and comparable to workshops for adult drivers who commit speeding offences.

"The numbers of young people 'on our books', as in managed offenders, is low, however through referrals our interventions are gathering pace," Rogers told us.

"In essence we will identify, intervene, divert, and if necessary manage, those with cyber talent. We are aiming to educate young people, even those that are on the cusp, or committing lower-level offences against the Computer Misuse Act, to turn them away from the 'dark side' and illuminate the positive opportunities that exist for their talents as long as they wear a 'white hat'."

He added: "We preach the expected global shortfall figures for cyber security professionals by 2022 as a potential motivator."
The shortfall in skilled infosec professionals is expected to reach 1.8 million worldwide by 2022, or 350,000 in Europe, according to infosec training and professional certification org (ISC)2.

Rogers wants to draw attention to the scheme as well as canvass for assistance from private sector firms.

"We are a little 'chicken and egg' but we do need industry to step up to provide mentorships/apprenticeships/work experience and the like to show positive diversions and pathways for those young people we deal with." 

The Register

You Might Also Read: 

Training Young Hackers To Stop Cybercrime:

« Iran Targets Kurds With Spyware
The Human Factor Is Essential To Eliminating Bias in Artificial Intelligence »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

ProfitBricks

ProfitBricks

ProfitBricks is a secure cloud computing infrastructure-as-a-service (IaaS) solution.

IGX Global

IGX Global

IGX Global is a provider of information network and security integration services and products.

SysTools

SysTools

SysTools provides a range of services including data recovery, digital forensics, and cloud backup solutions.

Braintrace

Braintrace

Braintrace’s services include Managed Detection and Response (MDR), Managed SIEM, SIEM-as-a-Service, SOC-as-a-Service, Advisory Services, and Incident Response.

OXO Cybersecurity Lab

OXO Cybersecurity Lab

OXO Cybersecurity Lab is the first dedicated cybersecurity incubator in the Central & Eastern Europe region.

Blu Venture Investors (BVI)

Blu Venture Investors (BVI)

Blu Venture Investors is a venture capital firm that supports early stage companies with a focus on technology in diverse domains including cybersecurity, IoT, defense and homeland security.

Suridata

Suridata

Suridata’s SaaS Security platform enables organizations to secure the use of SaaS applications.

Blacksands

Blacksands

Blacksands is a leader in network architecture, identity & services management, threat analysis, industrial IoT architecture, and invisible dynamic networks.

NewAE Technology

NewAE Technology

NewAE Technology is revolutionizing the hardware security market by making every engineer and designer aware of side-channel power analysis and glitching as important attack vectors.

NorthStar

NorthStar

NorthStar provide the visibility needed to track and reduce risk through risk-based vulnerability management and vulnerability exploit prediction.

Custard Technical Services

Custard Technical Services

Custard provide Network Security for all types of businesses across many industries, helping to keep them safe and secure.

Oligo Security

Oligo Security

Oligo aims to streamline the usage of open source by making it secure and easy to protect. Through focusing developers on the relevant vulnerabilities we make the fixing process significantly shorter.

RB42

RB42

RB42 (formerly Nexa Technologies) provide cyber defense solutions (ComUnity, secure and encrypted messaging, detection of interception tools, etc) and cyber defense consultancy service.

Domotz

Domotz

Domotz enables IT teams to monitor and manage their networks remotely, while ensuring that the security and the operational efficiency of their organizations are properly maintained.

Alchemy Security Consulting

Alchemy Security Consulting

Alchemy Security Consulting specialise in offensive and defensive cyber security. We find the weak link in your security so you can patch it up fast and avoid being hacked.

Fairly AI

Fairly AI

Fairly AI is on a mission to democratize safe, secure, and compliant AI across the enterprise.