Lesson Objectives
At the end of this lesson, learners should be able to explain illegal access, illegal interception, data interference, system interference, misuse of devices, and cybersquatting in understandable language.
Illegal Access
Illegal access means accessing all or part of a computer system without right. The offense focuses on unauthorized entry itself. The person does not necessarily need to steal money, delete files, or cause visible damage before the act becomes legally significant.
Examples may include secretly entering another person’s email, accessing a workplace database after authority has been revoked, or using stolen login credentials to enter an online account.
A common misconception is that access is lawful whenever the password works. A functioning password only shows that the system accepted the credentials. It does not prove that the person had legal permission to use them.
Illegal Interception
Illegal interception concerns the unauthorized capture of a non-public transmission of computer data through technical means. In ordinary language, it involves secretly obtaining electronic information while it is being transmitted rather than merely reading information already publicly available.
The word interception means capturing communication while it is moving from one point to another. The law refers to non-public transmissions, which means communication that is not intended to be openly available to everyone.
For example, secretly using technical equipment or software to capture private data traveling through a network may raise an illegal-interception issue. The final legal determination depends on the method, the nature of the communication, consent, and lawful authority.
Data Interference
Data interference generally involves intentionally or recklessly altering, damaging, deleting, or deteriorating computer data, electronic documents, or electronic messages without right.
The term interference means improperly affecting the normal condition or use of something.
If a person enters a digital record and changes its contents, deletes important files, corrupts information, or introduces harmful data, the integrity and usability of the information may be affected.
For instance, changing an employee’s salary information, altering student grades, deleting business records, or damaging stored customer information may involve data interference when performed without right and with the legally required state of mind.
System Interference
System interference focuses on hindering or disrupting the functioning of a computer or computer network.
A system may technically still exist but become slow, inaccessible, unreliable, or unusable because of an attack. An offender may overload a service, introduce harmful software, alter system instructions, or interfere with normal operations.
A common example is a denial-of-service attack. This is an attack intended to overwhelm a website, server, or online service with excessive requests or traffic so that legitimate users cannot access it. When many compromised devices are used together, the act is often called a distributed denial-of-service, or DDoS, attack.
The technical term may sound complicated, but the basic idea is simple: the attacker floods the digital service until normal users can no longer use it properly.
Misuse of Devices
The phrase misuse of devices can be confusing because it does not mean every improper use of a mobile phone or laptop. Under RA 10175, it relates to producing, obtaining, selling, distributing, importing, or otherwise making available devices, programs, passwords, access codes, or similar data intended for committing cybercrime, together with certain forms of unauthorized possession.
A computer program is a set of instructions that tells a computer what to do. Some programs have legitimate uses but may also be abused. The law therefore considers purpose, intent, authorization, and surrounding circumstances.
Cybersecurity tools are not automatically illegal. Security professionals may lawfully possess testing tools when authorized to evaluate and protect systems. The legal problem arises when a device, program, password, or access information is produced, obtained, distributed, or possessed for unlawful cybercrime purposes.
Cybersquatting
Cybersquatting under RA 10175 involves acquiring a domain name over the internet in bad faith to profit, mislead, destroy reputation, or prevent others from registering it when the domain name is identical or confusingly similar to an existing trademark, another person’s name, or a name protected by intellectual-property rights, subject to the statutory requirements.
A domain name is the readable address people type to reach a website, such as the name appearing before “.com,” “.org,” or “.net.”
Bad faith generally means a dishonest or improper purpose. Registering a similar domain accidentally is different from intentionally registering it to deceive customers, demand payment from the rightful owner, or damage another person’s reputation.
For example, someone may register a domain almost identical to a well-known company and use it to mislead visitors or pressure the company into buying the domain at an inflated price.
Professional and Practical Relevance
Businesses, schools, government offices, and private organizations should maintain access logs, revoke credentials when personnel leave, restrict administrator privileges, back up essential data, and establish incident-reporting procedures.
An access log is a record showing when a system or account was entered, and sometimes which account, device, or network connection was involved. Logs are not automatically conclusive proof of identity, but they may help reconstruct what happened.
Backups are also essential. A backup is a separate copy of data that may be used to restore information after deletion, damage, system failure, or attack.
Key Takeaways
- Illegal access concerns entry into a computer system without right.
- Illegal interception involves unauthorized technical capture of non-public data transmissions.
- Data interference affects the condition, accuracy, or existence of digital information.
- System interference disrupts the functioning or availability of a computer service.
- Misuse of devices concerns tools, programs, credentials, or access information intended for cybercrime.
- Cybersquatting involves bad-faith registration of protected or confusingly similar domain names.