{"id":1918,"date":"2022-06-29T09:30:25","date_gmt":"2022-06-29T09:30:25","guid":{"rendered":"https:\/\/www.nebrcentre.co.uk\/?p=1918"},"modified":"2022-06-29T09:30:25","modified_gmt":"2022-06-29T09:30:25","slug":"defenses-for-ethical-hacking-proposed-under-uk-computer-misuse-act","status":"publish","type":"post","link":"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/defenses-for-ethical-hacking-proposed-under-uk-computer-misuse-act\/","title":{"rendered":"Defences for Ethical Hacking Proposed Under UK Computer Misuse Act"},"content":{"rendered":"\n<p>UK legislators have proposed changes to the&nbsp;<a href=\"https:\/\/www.gov.uk\/guidance\/the-product-security-and-telecommunications-infrastructure-psti-bill-product-security-factsheet\">Product Security and&nbsp;Telecommunications&nbsp;Infrastructure (PSTI)&nbsp;Bill<\/a>&nbsp;that would give cyber&nbsp;security professionals a legal&nbsp;defence&nbsp;for their activities under the&nbsp;<a href=\"https:\/\/www.legislation.gov.uk\/ukpga\/1990\/18\/contents\">Computer Misuse Act (CMA).<\/a><\/p>\n\n\n\n<p>The amendment has been proposed by a&nbsp;cross-bench&nbsp;group in the House of Lords, which will provide cyber security researchers, penetration testers and ethical hackers with a CMA defence for carrying out vulnerability and security research.<\/p>\n\n\n\n<p>This will protect cyber security&nbsp;professionals&nbsp;from being prosecuted for unauthorised access, distinguishing their work from&nbsp;cyber criminal&nbsp;activity.<\/p>\n\n\n\n<p>The&nbsp;<a href=\"https:\/\/www.cyberupcampaign.com\/\">CyberUp&nbsp;campaign<\/a>, which&nbsp;has&nbsp;been advocating for changes to the UK\u2019s cybercrime laws for over 30 years,&nbsp;has argued that&nbsp;as the&nbsp;current PTSI Bill contains provisions that&nbsp;force&nbsp;manufacturers to implement vulnerability policies, without&nbsp;a defence in the CMA, cyber&nbsp;researchers&nbsp;can face legal action if they report a&nbsp;vulnerability,&nbsp;and&nbsp;the company chooses to ignore such policies.&nbsp;<\/p>\n\n\n\n<p>If an amendment is introduced, it would mean that cyber security professionals would&nbsp;give&nbsp;a statutory defence for breaches of the Computer Misuse Act if they reasonably&nbsp;believed&nbsp;the&nbsp;owner&nbsp;of the network consented to research or if a breach was deemed necessary to prevent or&nbsp;detect&nbsp;crime.&nbsp;<\/p>\n\n\n\n<p>At the&nbsp;<a href=\"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/\">NEBRC<\/a>, we work with&nbsp;an&nbsp;innovative team of ethical&nbsp;hackers&nbsp;from Sheffield Hallam and Northumbria Universities to provide affordable and insightful cyber security services for all.&nbsp;<\/p>\n\n\n\n<p>Such changes to current UK legislation would protect our\u00a0team who work to\u00a0<a href=\"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/vulnerability-assessment\/\">identify vulnerabilities<\/a> within businesses\u2019 networks, offer\u00a0<a href=\"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/web-app-vulnerability-assessment\/\">web application vulnerability\u00a0assessments<\/a>, and\u00a0<a href=\"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/security-awareness-training\/\">security awareness training<\/a>\u00a0for staff.<\/p>\n\n\n\n<p><strong>If you would like to find out more about our\u00a0<\/strong><a href=\"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/services\/\"><strong>services<\/strong><\/a><strong>\u00a0and how changes to the legislation may affect your business, please contact the NEBRC\u00a0at\u00a0<a href=\"mailto:enquires@nebrcentre.co.uk\">enquires@nebrcentre.co.uk<\/a><\/strong> <strong>or sign up to our <a href=\"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/core-membership-sign-up\/\">free core membership <\/a>to keep up to date with the latest cyber security matters and keep your business safe online.<\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>UK legislators have proposed changes to the&nbsp;Product Security and&nbsp;Telecommunications&nbsp;Infrastructure (PSTI)&nbsp;Bill&nbsp;that would give cyber&nbsp;security professionals a legal&nbsp;defence&nbsp;for their activities under the&nbsp;Computer Misuse Act (CMA). The amendment&#8230;<\/p>\n","protected":false},"author":1,"featured_media":7702,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[13,14],"tags":[],"class_list":["post-1918","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","category-uncategorized"],"acf":[],"_links":{"self":[{"href":"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/wp-json\/wp\/v2\/posts\/1918","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/wp-json\/wp\/v2\/comments?post=1918"}],"version-history":[{"count":0,"href":"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/wp-json\/wp\/v2\/posts\/1918\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/wp-json\/wp\/v2\/media?parent=1918"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/wp-json\/wp\/v2\/categories?post=1918"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/crcnetwork-cfkr6.projectbeta.co.uk\/northeastcrc\/wp-json\/wp\/v2\/tags?post=1918"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}