Kaspersky Lab publishes paper entitled 'Cybercrime and the Law: a review of UK computer crime legislation'

The first piece of legislation designed to address the issue of illicit use of computing technology was the Computer Misuse Act (1990). The rapid evolution of both technologies and the cybercrime business led to new laws subsequently being introduced: the Privacy and Electronic Regulations (a 2003 EC directive), the Police and Justice Act (2006), and the Serious Crime Act (2007).

'One of the most serious limitations of cybercrime legislation is that it cannot tackle the global nature of cybercrime on its own,' comments the author of the paper, David Emm, a member of the Global Research and Analysis Team at Kaspersky Lab.

The European Convention on Cybercrime was introduced in 2001 in an attempt to create an international framework to deal with cybercrime. However, several states which are leading sources of computer attacks have not signed the Convention.

It is also clear that laws designed to address individual types of criminal activity cannot solve the problem of cybercrime. Police involvement is essential: the National Hi-Tech Crime Unit was founded in 2001, and in 2006, its responsibilities were passed to the Serious Organised Crime Agency. In 2009, the Police Central ecrime Unit was founded in order to co-ordinate the fight against cybercrime.

Emm adds: 'Effectively combating cybercrime requires the extension of international legislation beyond the borders of developed countries, and also the creation of a cyber-Interpol which would be able to prosecute cybercriminals across geo-political borders.'

The full version of the article is available on Viruslist.com. This material can be reproduced provided the author, company name and original source are cited. Reproduction of this material in re-written form requires the express consent of the Kaspersky Lab PR department.