| Previous research indicates that the actions of computers hackers have become frequent and costly, yet many victims choose not to report security violations to the police. This study uses Turk's Theory of Norms Violation (1966) to explain and predict how organizational responses to network intrusion affect the criminalization process. A purposive sample of 145 security professionals belonging to the American Society for Industrial Security (ASIS) International was developed to collect data about organizational perceptions of hackers. Members living in Michigan were mailed a questionnaire and 19 usable responses were returned. Organizations were found to have experienced network intrusions committed by unknown individuals, with network attack being the most common form of victimization. Turk's premises failed to predict the propensity of organizations to criminalize offenders. Results suggest that organizations are keen to work with authorities to reduce cyber crime, an observation that should encourage both groups to seek closer cooperation in the future. |
