Computer misuse act (1990)

Section 1

Unauthorised access to computer material, punishable by 6 months in prison or a fine not exceeding level 5 on the standard scale ( currently £5000 )

Section 1 examples

Picking a computer that you can access and attacking it to see if you can identify vulnerabilities or compromise the host.

Section 2

Unauthorised access with intent to commit or facilitate commission of further offences, punishable by 6 months / maximum fine on summary conviction or 5 years / fine on indictment.

Section 2 examples

A hacker breaks into a computer system and used the compromised system as a springboard to break into other systems and does not alter any files or access any information on the original system.

Section 3

Unauthorised modification or computer material, subject to the same sentences as section 2 offences.

Section 3 examples

A hacker breaks into a computer system and gains access to confidential financial records. At this point he changes all account details to those that would financially benefit him (therefore modifying the data in the database)

Section 3A

This section was added to the Computer Misuse Act by the Police and Justice act (2006).

Making, supplying or obtaining material that could be used in computer misuse offences

Making

This includes the writing or creation of computer viruses, worms, Trojans, malware or malicious scripts etc.

Supplying

This part covers the distribution of any of the above material, whether you have created it yourself or obtained it from elsewhere.

It is an offence to supply or distribute these files to others.

Obtaining

If you purposely obtain malicious files such as computer viruses or scripts that you know could be used to damage computer systems then you have committed an offence under the CMA.

Section 3ZA

Serious damage to national infrastructure. For Example, power stations or other government stuff.

Tags