-
Singapore amends Computer Misuse and Cybersecurity Act
April 4, 2017
SINGAPORE - The Parliament of Singapore has passed changes to the Computer Misuse and Cybersecurity Act (CMCA)m with the Parliamentary debates on the amendment Bill shedding further light on Singapore's legislative framework for combatting cybercrime.
Lawyers Baker McKenzie say the new section 8A of the amended Act criminalises the use of personal data obtained via an act in breach of the CMCA, where the person knows or has reason to believe that the personal information was so obtained.
It is not an offence if the information was used for a purpose other than to commit or facilitate the commission of an offence.
The Senior Minister of State for Home Affairs, Desmond Lee, further clarified the scope of section 8A, explaining that journalists or researchers who use information derived from hacks for their news reports or research would not fall afoul of the law, as long as they do not circulate the personal details that were disclosed through the hack.
BM says that, on the whole, Section 8A arguably gives the prosecution more teeth to tackle cybercrime.
For the purpose of proving the person's knowledge that the information was obtained in breach of the CMCA, the prosecution does not have to prove the particulars of the contravention, such as who carried out the contravention and when it took place.
Members of Parliament also raised their concerns over low cybersecurity risk awareness amongst businesses. In particular, the new section 8B criminalises the act of obtaining and the act of dealing in tools which may be used to commit a CMCA offence.
BM says that businesses which are less prudent may therefore fall afoul of the law in the course of selling their products.
The Minister noted that the Singapore Computer Emergency Response Team (SingCERT) provides cautionary advisories to companies to alert them to cyber threats, and that the Info-communications Media Development Authority of Singapore (IMDA) will be establishing a new Technology Hub to provide cybersecurity advice to SMEs. www.bakermckenzie.com (ATI).
