Denial of service attackers face 10 years in jail

UK computer crime laws updated

By Andy McCue, 10 November 2006 12:05

NEWS

Denial of service attackers now face up to 10 years in jail with updated computer crime laws coming into force this week as part of the new Police and Justice Act 2006.

The long-overdue updating of the 1990 Computer Misuse Act also increases the sentence for hacking a computer from a maximum of six months to two years' imprisonment.

Section three of the 1990 CMA is replaced by section 34 of the Police and Justice Act 2006, which now more explicitly covers denial of service attacks as "unauthorised acts with intent to impair operation of a computer".

The act says a person is guilty of an offence if at the time of any attack they have the intent to impair the operation of any computer, prevent or hinder access to any program or data held on a computer, or impair the operation of a program or the reliability of data.

You whatÂ…?

Bust through tech jargon with silicon.com's security Cheat Sheets:

♦ Computer Misuse Act
♦ Social engineering
♦ Virus names and alerts
♦ Phishing
♦ Spyware

Confusion had arisen over whether denial of service attacks were covered in the original CMA in the case of a teenager originally cleared in 2005 of crashing the email server of his former employer by overwhelming it with an 'email bomb' containing millions of messages.

That ruling was later overturned and David Lennon was found guilty earlier this year of breaking the CMA, and was sentenced to a two-month curfew.

The new law also makes it an offence to supply or make available any software or tools that could be used to commit hacking or denial of service attacks, and those found guilty under this section of the act face up to two years in jail.

As part of the Police and Justice Act 2006 the police IT organisation Pito has been abolished and its functions will be taken over by the new National Policing Improvement Agency.

New powers under the Act will give police the right to access passenger and crew data on any journeys within the UK or arriving in the UK.

Comments

There are 3 comments. Join the discussion

  1. 1. Simon

    "The new law also makes it an offence to supply or make available any software or tools that could be used to commit hacking or denial of service attacks ..."

    Well that's a bit vague and wide ranging ! It includes every operating system (Windows, Mac, Linux) and just about every tool used by network professionals to do their job.

    I think we can look forward to a few cases brought by 'commercial interests' with a view to seeing off some competition.

  2. 2. Richard

    How to give myself up?

    "...impair the operation of any computer, prevent or hinder access to any program or data held on a computer..."

    So far this morning I'm guilty of:

    - Switching a PC Off;
    - Slowing a PC into power-saving mode;
    - Deleting data files;
    - Uninstalling a program;
    - etc. etc.

    Will my 10 year sentences run concurrently or do I no longer need to worry about my lack of a pension?

  3. 3. Jon

    It will be fantastic when Microsoft gets dragged into court for putting someone's computer into the "reduced functionality" state...

Post your comment

In order to post a comment you need to be registered and logged in.

Log in or create your silicon.com account below

Will not be displayed with your comment

By signing up for this service, you indicate that you agree to our Terms and Conditions and have read and understood our Privacy Policy.

Questions about membership? Find the answers in the Membership FAQ