Sentences for cyber crime and snooping to be tougher across EU

STRASBOURG, France Thu Jul 4, 2013 1:13pm EDT

A man types on a computer keyboard in Warsaw in this February 28, 2013 illustration file picture. REUTERS/Kacper Pempel/Files

A man types on a computer keyboard in Warsaw in this February 28, 2013 illustration file picture.

Credit: Reuters/Kacper Pempel/Files

Related Topics

STRASBOURG, France (Reuters) - EU lawmakers agreed on Thursday to toughen criminal penalties across the European Union for cyber attacks, especially those that include harming critical national infrastructure and hijacking computers to steal sensitive data.

The 28 EU member states currently have a patchwork of varying tariffs for cyber crime.

The decision mandates national maximum sentences of at least two years in prison for attempting to illegally access information systems.

The maximum penalty for attacks against infrastructure such as power plants, transport, or government networks will be set at five years or more, higher than the current tariff in most member states.

The decision also increases the penalties for illegally intercepting communications, or producing and selling tools to do this.

Cyber criminals often infect computers to form armies of zombie PCs known as "botnets" by sending spam emails containing malicious links and attachments, and by infecting legitimate websites with computer viruses.

Some botnet creators rent or sell infected machines on underground markets to other cyber criminals looking to engage in a wide variety of activities including credit card theft and attacks on government websites.

In June, Microsoft helped to break up one of the world's largest cyber crime botnets, believed to have stolen more than $500 million from bank accounts.

Under the new EU rules, companies that benefit from botnets or hire hackers to steal secrets will be liable for any offences committed on their behalf.

The European Parliament in Strasbourg voted 541 to 91 with nine abstentions on the proposal by the European Commission, the EU executive. However, Denmark has chosen to opt out of the rules, wanting to keep its own system in place.

EU governments now have two years to translate the decision into national law.

(Reporting by Ethan Bilby in Brussels; Editing by Kevin Liffey)

FILED UNDER:
We welcome comments that advance the story through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can flag it to our editors by using the report abuse links. Views expressed in the comments do not represent those of Reuters. For more information on our comment policy, see http://blogs.reuters.com/fulldisclosure/2010/09/27/toward-a-more-thoughtful-conversation-on-stories/
Comments (2)
Rhino1 wrote:
Great!

I hope you apply that to the NSA, CIA, FBI…

As it turns out, they are the worst cyber terrorists of all.

Jul 07, 2013 6:50am EDT  --  Report as abuse
dkn111 wrote:
I guess the next step is to bring charges against Obama…..

Jul 07, 2013 3:58pm EDT  --  Report as abuse
This discussion is now closed. We welcome comments on our articles for a limited period after their publication.