Although computer security will continue to be a major concern, fears about computer-related fraud do not warrant diverting resources from other types of fraud or other types of computer crime. Only after compiling a reasonable amount of data on various types of computer crime and how it is perpetrated can there be rational decisions about the resources committed to each type of computer-related crime. The chapter argues that computer users must inform themselves about how the manner in which they use the Internet affects their risk for becoming a fraud victim. Users also need a more sophisticated understanding of the relationship between the hypothetical potential for computer-related fraud and its actual prevalence. Fraud is not the only subject of urban legends about computer-related crime. In fact, most of the urban legends pertain to the exploits of hackers/crackers, who have used their computer skills to access data and information intended only for authorized users. The difficulties in documenting the actual incidence of various types of computer crime are that victims have not been surveyed about their victimization; and when they are, they do not respond when asked, do not mention all of their experiences, or are unaware of their victimization. A British Audit Commission surveyed all local authorities and National Health Service bodies in England and Wales to determine their experience of all forms of information technology fraud. Although the response rate from each sector or all together was not reported, the proportion of respondents who were victims increased from 36 percent in 1994 to 45 percent in 1997. 4 notes and 22 references