Let’s make ransomware MORE illegal, says Maryland

2020-01-29 12:53

Its home state, Maryland, also knows how to swiftly propose mind-bogglingly bad legislation that would outlaw possession of ransomware and put researchers in jeopardy of prosecution.

It's not supposed to keep researchers from responsibly researching or disclosing vulnerabilities, but like other, similar "Let's make malware more illegal" bills before it, SB 30's attempts to protect researchers could "Use a little more work," as pointed out by Ars Technica's Sean Gallagher.

All or part of a computer network, computer control language, computer, computer software, computer system, computer service, or computer database; or copy, attempt to copy, possess, or attempt to possess the contents of all or part of a computer database accessed.

Prohibit vulnerability disclosure unless the specific systems or data accessed by the helpful security researcher were explicitly authorized ahead of time and would prohibit public disclosure if the reports were ignored.

Under the proposed legislation, it would be a crime to intentionally access a computer or computer network with knowledge that such access is without authority.

News URL

https://nakedsecurity.sophos.com/2020/01/29/lets-make-ransomware-more-illegal-says-maryland/

#maryland #ransomware #illegal