US Supreme Court Cybersecurity Decision

mgorman · ‎06-03-2021

Interesting decision in which the US Supreme court ruled that using a database you have access to for unauthorized reasons is NOT a violation of the US Cybercrime law. The comments attributed to Amy Coney Barrett on criminalizing commonplace activities is a shocking misunderstanding of intent, and I would look forward to an opinion on someone better qualified to describe the text as well. She, and they, seem to be stating that the computer itself, or the application itself, is what is to be protected, not the information within. That could decriminalize a huge amount of insider activity, including insider for profit, where people get a job for the sole purpose of extracting information, so what if they get caught and fired? If they can't be prosecuted, and they are making more through whoever paid them for the information, that is a low risk action.

https://www.cnn.com/2021/06/03/politics/supreme-court-cybercrime-law-case/index.html

AndreaMoore · ‎06-03-2021

Thank you for this post letting us know about this Supreme Court decision. We value your opinion and discussion on this.

We look forward to further discussion on this topic!

ISC2 Community Manager

tmekelburg1 · ‎06-03-2021

Employees can still be fired and prosecuted by State and Local laws, just not the CFAA. I am surprised on such a literal meaning the Supreme Court took but there are advocates for the other side saying it was too broad for today's environment anyway.