A cybercriminal in the UK has been arrested for phishing attacks and theft of virtual goods from players of the online game, Runescape. As described in this online news story, the capture of this digital thief is the first of its kind. The case represents collaboration between the owners of the website and the e-crime’s unit of the real world British Police. 

The crimes started with phishing attacks within the game, taking the victims to a webpage where they were prompted to enter their gaming account and login information. The crook then had access to their account and accumulated virtual wealth, including gold, weaponry and characters. Some of the gamers had earned their online possessions over lengthy periods of time, and it represented an investment not only of subscription to the gaming site but their own work. Therefore, to the victims and the police, the “e treasure” has real world value.

I’m surprised at some of the comments left on the website where the article is posted. If we consider the thief used some of the standard weapons of the cybercriminal to achieve these thefts (phishing, identity theft, black market sales of stolen goods, etc.) it’s clear to me that he/she were engaged in aggressive theft and pursuit of financial gain.  Many of the readers are unhappy that the real world police spend their time investigating crimes where no “real money” or property was stolen. I’m afraid I have to disagree, since the criminal who dabbles in Runescape theft is a step away from stealing other online information and materials. Given the potential for real world financial harm, cybercrime is most definitely real world crime.