University of Twente Student Theses
Human Resource Management In Cybercriminal Organizations: An Exploratory Analysis
Hasper, J.H. (2024) Human Resource Management In Cybercriminal Organizations: An Exploratory Analysis.
|
PDF
1MB |
| Abstract: | This thesis explores the topic of human resource management (HRM) in cybercriminal organizations. From a business perspective, HRM is recognized for its role in value creation through means such as talent management and employee development. As a result, HRM processes and their involvement in organizational performance in a conventional setting have led to the topic being well-documented in literature. The HRM processes in criminal organizations, particularly those engaging in cybercrime, remain largely unexplored. This study aims to aid in filling this gap by investigating the HRM processes in cybercriminal organizations, focusing on the benefits the members of such organizations receive and how cybercriminal groups recruit, select, and retain new members with specialized skills. To gain a better understanding of the workings of HRM processes and organizational structure in cybercriminal organizations, a systematic literature review was conducted. The review found that some of the most common methods of recruiting new members to cybercriminal organizations include posting vacancies on hacker forums and personal referrals. Furthermore, the review identified six main organizational structures within cybercriminal groups. These structures vary in their level of organization and coordination, often possessing a hierarchical nature similar to that of traditional organizations. The thesis further explored HRM processes within cybercriminal organizations through a textual analysis of leaked messages from the Russia-based ransomware group “Conti". The analysis of the Conti leaks provided details regarding the roles and compensation of various members. Comparison between the salaries earned by Conti members and that of Russian citizens working in comparable sectors displayed the profitability of working for a cybercriminal organization. The multiple interviews and types of training applicants must go through before being full-fledged members are discussed as well. Other findings include the use of cryptocurrency for salary distribution and the monetary bonuses Conti awards for exceptional performance. To conclude, cybercriminal organizations such as Conti employ certain sophisticated HRM strategies, similar to traditional organizations. These strategies include offering competitive compensation and having structured recruitment processes. Significant differences have been identified as well, such as maintaining anonymity during all communication through the usage of aliases. A better understanding of these HRM practices can aid law enforcement agencies to disrupt cybercriminal operations more effectively. The research suggests that the high-level compensation and recruitment practices are flaws that can be exploited to redirect talent to legal employment opportunities. |
| Item Type: | Essay (Master) |
| Faculty: | BMS: Behavioural, Management and Social Sciences |
| Subject: | 85 business administration, organizational science |
| Programme: | Business Administration MSc (60644) |
| Link to this item: | https://purl.utwente.nl/essays/101586 |
| Export this item as: | BibTeX EndNote HTML Citation Reference Manager |
Show download statistics for this publication
Show download statistics for this publicationRepository Staff Only: item control page