Computer fraud is any kind of fraud that is committed by means of a computer system. It typically involves making illicit financial transfers through computer commands. Organizations who use computer operations that would be attractive to acquisitive criminals must take steps to protect their operations from criminal use. The first step is a computer security audit that identifies every point of possible vulnerability within the organization's computer system. The audit should also recommend steps for protecting vulnerable aspects of the system. One prevention measure is to ensure that unauthorized individuals do not enter the building or the room where the terminal is located. Access- control techniques include passwords or other codes. Computer virus protection is a specialized operation and requires the use of experts in this field. All messages sent either internally around a computer network or to external counter parties should be protected by encryption and by message authentication. No computer system is secure unless the system user has a contingency plan in the event of an accident such as a fire or a long-term power outage. The article includes case studies of actual computer fraud. 6 references