Email attack ruling disputed

Crown Prosecution Service to challenge court’s decision on ‘unauthorised modification’ to system

Written by Daniel Thomas

Computing, 04 May 2006

The government is to appeal against a court ruling made last year that exposed serious holes in UK laws aimed at protecting businesses and individuals from cyber criminals.

The Crown Prosecution Service (CPS) will next week challenge the original decision made by District Judge Kenneth Grant that saw a teenager acquitted after allegedly crashing his former employer’s computer systems by sending five million emails.

During last year’s hearing at Wimbledon Magistrates’ Court, the judge ruled the teenager had not made an ‘unauthorised modification’ to systems under the Computer Misuse Act because the company’s email server had been set up specifically to receive emails.

But the CPS will argue at the Court of Appeal that deliberate acts such as distributed denial of service (DDoS) attacks should be treated as unauthorised, regardless of whether a system is set up to receive emails or data requests.

If the CPS is successful the teenager could be retried or the ruling could automatically become part of case law and used in future prosecutions.

Clive Gringras, partner at law firm Olswang, says it is critical that last year’s ruling is overturned. If the ruling were allowed to stand it could leave the UK susceptible to a growth in DDoS attacks.

‘It is a loophole that needs to be closed. DDoS and mail bombing software works by sending tiny firecrackers, rather than a big bomb, to bring down the system,’ said Gringras.

‘What is needed is a general restatement of where the legislation stands.’

If these kinds of acts are allowed to be continued unpunished, the UK could become a breeding ground for international crime gangs that use DDoS attacks to blackmail ecommerce firms, he says.

The government is also trying to strengthen computer misuse laws by introducing a clause to the Police and Justice Bill, which will explicitly classify denial of service attacks as a crime.

Institute of Directors senior policy adviser Jim Norton has welcomed the decision by the CPS. He says DDoS attacks are an increasing and worrying problem for businesses.

‘We would welcome clarification under the old law and would also like to see it tidied up with new ones,’ said Norton.

What do you think? Email us at: feedback@computing.co.uk

Tags:

reader comments

related articles

 

Business IT defences at risk

Law changes put ethical hackers at disadvantage, warn security experts 10 Jan 2008

Internet

Computer Misuse Act changes take effect

New powers will increase maximum jail sentences for hackers 01 Oct 2008

Government

Lose data and you go to jail

Act amendments could mean jail terms for losing or trading in data 08 May 2008

related whitepapers

today's top stories

The Industry View

Why the ‘e’ in e-Crime?

This week the Home Office announced the creation of the new Police Central e-crime Unit (PCeU). The PCeU promises to tackle cyber... 02 Oct 2008

Small Business Focus

National Identity Fraud Prevention Week

Every Monday seems to mark the beginning of a new awareness drive and this week’s theme has particular importance to small businesses... 06 Oct 2008

Communications

Wanted: a viable model for fibre

While other European countries are pressing ahead with fibre rollouts, progress in the UK is being held back as the debate over who will foot the bill drags on, writes Dave Bailey 02 Oct 2008

Software

ITIL tools add lustre to Technicolor helpdesk

Centralising IT support helped to improve the service to 6,000 users in 58 locations at the film processing firm 02 Oct 2008

Communications

Computing podcast - Next-generation broadband Britain; and we report from Gartner's IT security summit

In our latest podcast, we discuss the hurdles that a national fibre-optic network must overcome, and look at the issues discussed at the recent IT security conference 02 Oct 2008

> More news

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Jobs

Related jobs

Job of the week

> More IT vacancies

Job alerts

  • Latest jobs to your inbox
Sign up here

Find your next job

Advertisement

White papers

Search white papers

Top categories

VPN, Extranet and Intranet Solutions

WAN/ LAN Solutions

Network Security

Interoperability-Connectivity

Grid/ Utility Computing

Latest poll

Who should pay for the rollout of next-generation broadband?

Who should pay for the rollout of next-generation broadband?

A UK high-speed fibre network could cost up to £30bn - who should fund it?

Previous poll results

> More polls

Latest audio and video articles

Podcast imageAudio

Computing podcast - Next-generation broadband Britain; and we report from Gartner's IT security summit

In our latest podcast, we discuss the hurdles that a national fibre-optic network must overcome, and look at the issues discussed at the recent IT security conference 02 Oct 2008

Ethernet cableVideo

Is high-speed Ethernet ready to roll?

What are the prospects for the next generation of the networking technology? 26 Sep 2008

> More audio and video

Latest in-depth articles

Basketball player performing a slam dunkFeatures

Agility brings results - innovation in software development

Companies are increasingly moving away from rigid programming methodologies and adopting more agile approaches that aim to deliver small gains in rapid succession 01 Oct 2008

Co-op storeAnalysis

Computing Awards: Innovative project of the year shortlist

As part of our build-up to the Computing Awards for Excellence, which take place at London’s Battersea Park events arena on 5 November, we turn the spotlight on the nominations for Innovative Project of the Year 01 Oct 2008

> More in depth articles

Advertisement

Primary Navigation