Affiliation:
1. The University of Queensland, Australia
2. Australian Catholic University, Australia
Abstract
Loss of control over one’s identity through identity usurpation, or identity theft, results in victimization characterized by multiple species of harm: material harms such as financial loss; medical harms such as psychological distress and consequential physiological illness; and moral harms such as infringement of autonomy. Digital data breaches are a common means by which identity can be usurped and laws have been enacted requiring data-holders to notify data subjects when their personal information held on digital databases has been compromised. The intention is that victims should then be able to undertake their own mitigation measures. This paper explores the efficacy of this approach as a solution and argues that this policy – particularly in the light of new digital criminal methodologies – creates a conflict of victims’ interests. It is an unintended outcome of policy that exacerbates, rather than resolves, identity usurpation and associated victimization in the digital environment.
Subject
Law,Sociology and Political Science
Reference92 articles.
1. Accenture (2021) 2021 cyber threat intelligence report. Available at: https://www.accenture.com/us-en/insights/security/cyber-threat-intelligence-report-2021 (accessed 15 July 2021).
2. A taxonomy of cyber-harms: Defining the impacts of cyber-attacks and understanding how they propagate
3. Ransomware threat success factors, taxonomy, and countermeasures: A survey and research directions
4. Regulatory Sanctions and Reputational Damage in Financial Markets
5. Australian Cyber Security Centre (2021) Ransomware. Available at: https://www.cyber.gov.au/ransomware (accessed 3 July 2022).