{"id":41197,"date":"2021-06-03T20:45:31","date_gmt":"2021-06-03T20:45:31","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/"},"modified":"2021-06-03T20:45:31","modified_gmt":"2021-06-03T20:45:31","slug":"supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/","title":{"rendered":"Supreme Court narrows Computer Fraud and Abuse Act: Misusing access not quite the same as breaking in"},"content":{"rendered":"<p>The US Supreme Court on Thursday limited the scope of the 1986 Computer Fraud and Abuse Act (CFAA) in a ruling that found a former sergeant did not violate the law by misusing his access to a police database.<\/p>\n<p>When he was a police officer in Georgia, Nathan Van Buren used his credentials to log into the computer in his patrol car to access a license plate database at the request of an acquaintance \u2013 who, unbeknownst to Van Buren, was participating in an FBI sting operation.<\/p>\n<p>Van Buren provided the acquaintance with information from the database, and the FBI arrested Van Buren on the basis that the database search, done outside of the scope of his duties and contrary to department policy, violated the CFAA&#8217;s &#8220;exceeds authorized access&#8221; clause of <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.law.cornell.edu\/uscode\/text\/18\/1030\">18 U. S. C. \u00a71030(a)(2)<\/a>.<\/p>\n<div aria-hidden=\"true\" class=\"adun\" data-pos=\"top\" data-raptor=\"condor\" data-xsm=\",fluid,mpu,\" data-sm=\",fluid,mpu,\" data-md=\",fluid,leaderboard,mpu,\" data-lg=\",fluid,leaderboard,\" data-xlg=\",fluid,superleaderboard,billboard,leaderboard,\"> <noscript> <a href=\"https:\/\/pubads.g.doubleclick.net\/gampad\/jump?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0\" target=\"_blank\" rel=\"noopener noreferrer\"> <img decoding=\"async\" src=\"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0\" alt> <\/a> <\/noscript> <\/div>\n<p>In 2017, a jury convicted Van Buren, and he subsequently received an <a href=\"https:\/\/www.justice.gov\/usao-ndga\/pr\/former-cumming-police-officer-sentenced-prison-accepting-bribes-and-computer-fraud\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">18-month prison sentence<\/a>. Van Buren appealed, arguing that the CFAA does not apply to misuse of existing system access, but the Eleventh Circuit Court of Appeals upheld his conviction.<\/p>\n<div aria-hidden=\"true\" class=\"adun\" data-pos=\"top\" data-raptor=\"falcon\" data-xxlg=\",fluid,billboard,superleaderboard,brandwidth,brandimpact,leaderboard,mpu,\"> <noscript> <a href=\"https:\/\/pubads.g.doubleclick.net\/gampad\/jump?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=4&amp;c=44YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0\" target=\"_blank\" rel=\"noopener noreferrer\"> <img decoding=\"async\" src=\"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=4&amp;c=44YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D426raptor%3Dfalcon%26pos%3Dmid%26test%3D0\" alt> <\/a> <\/noscript> <\/div>\n<div class=\"adun_eagle_desktop_story_wrapper\">\n<div aria-hidden=\"true\" class=\"adun\" data-pos=\"mid\" data-raptor=\"eagle\" data-xxlg=\",mpu,dmpu,\"> <noscript> <a href=\"https:\/\/pubads.g.doubleclick.net\/gampad\/jump?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=3&amp;c=33YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0\" target=\"_blank\" rel=\"noopener noreferrer\"> <img decoding=\"async\" src=\"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=3&amp;c=33YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0\" alt> <\/a> <\/noscript> <\/div>\n<\/p><\/div>\n<p>The CFAA prohibits accessing a protected computer &#8220;without authorization&#8221; and accessing a protected computer in a way that &#8220;exceeds authorized access.&#8221; The problem with these ill-defined terms is that there&#8217;s been disagreement in different courts over whether the law imposes criminal liability for violating Terms of Service (ToS) agreements.<\/p>\n<p>Some US courts have taken the statute to mean that ToS violations constitute criminal offenses, whereas others interpret the law more narrowly to apply only when there&#8217;s some element of hacking or breaking into a system.<\/p>\n<p>&#8220;Access &#8216;without authorization&#8217; is understood to require some kind of breaking in,&#8221; <a href=\"https:\/\/twitter.com\/OrinKerr\/status\/1400459422741065729?s=20\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">said<\/a> Orin Kerr, law professor at UC Berkeley School of Law, via Twitter. &#8220;The question here is whether &#8216;exceeds authorized access&#8217; does, too.&#8221;<\/p>\n<p>That question was mostly resolved in the Supreme Court&#8217;s 6-3 decision today in <i>Van Buren v. US<\/i> [<a href=\"https:\/\/www.supremecourt.gov\/opinions\/20pdf\/19-783_k53l.pdf\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">PDF<\/a>]. Writing for the majority, Associate Justice Amy Coney Barrett said Van Buren, though he flouted departmental policy, did not violate the CFAA by abusing his computer system access.<\/p>\n<div aria-hidden=\"true\" class=\"adun\" data-pos=\"top\" data-raptor=\"falcon\" data-xsm=\",fluid,mpu,\" data-sm=\",fluid,mpu,\" data-md=\",fluid,leaderboard,mpu,\" data-lg=\",fluid,mpu,leaderboard,\" data-xlg=\",fluid,billboard,superleaderboard,mpu,leaderboard,\"> <noscript> <a href=\"https:\/\/pubads.g.doubleclick.net\/gampad\/jump?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=4&amp;c=44YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0\" target=\"_blank\" rel=\"noopener noreferrer\"> <img decoding=\"async\" src=\"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=4&amp;c=44YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D426raptor%3Dfalcon%26pos%3Dmid%26test%3D0\" alt> <\/a> <\/noscript> <\/div>\n<p>&#8220;This provision [of the CFAA] covers those who obtain information from particular areas in the computer \u2014 such as files, folders, or databases \u2014 to which their computer access does not extend,&#8221; Associate Justice Barrett wrote. &#8220;It does not cover those who, like Van Buren, have improper motives for obtaining information that is otherwise available to them.&#8221;<\/p>\n<h3 class=\"crosshead\"> <span>Qualified support<\/span><br \/>\n<\/h3>\n<p>The ruling was welcomed by the Electronic Frontier Foundation, which has argued for years that the vaguely worded statute needs to be clarified.<\/p>\n<p>&#8220;EFF has long fought to reform vague, dangerous computer crime laws like the CFAA,&#8221; said EFF Senior Staff Attorney Andrew Crocker in a statement to <i>The Register<\/i>. &#8220;We&#8217;re gratified that the Supreme Court acknowledged that overbroad application of the CFAA risks turning nearly any user of the Internet into a criminal based on arbitrary terms of service.<\/p>\n<p>&#8220;We remember the tragic and unjust results of the CFAA&#8217;s misuse, such as the <a href=\"https:\/\/www.theregister.com\/2015\/04\/23\/congress_reintroduces_aarons_law\/\" target=\"_blank\" rel=\"noopener noreferrer\">death of Aaron Swartz<\/a>, and we will continue to fight to ensure that computer crime laws no longer chill security research, journalism, and other novel and interoperable uses of technology that ultimately benefit all of us.&#8221;<\/p>\n<p>The ruling means that the violation of ToS rules alone is not a criminal offense under the CFAA, and solidifies lower court rulings that came to that same conclusion, such as <a href=\"https:\/\/www.aclu.org\/press-releases\/federal-court-rules-big-data-discrimination-studies-do-not-violate-federal-anti\" target=\"_blank\" rel=\"nofollow noopener noreferrer\"><i>Sandvig v. Barr<\/i><\/a> last year. In that case, the US District Court for the District of Columbia ruled that researchers providing false information to employment websites to test for discriminatory algorithms did not violate the CFAA, even if doing so violated the site&#8217;s ToS.<\/p>\n<div aria-hidden=\"true\" class=\"adun\" data-pos=\"mid\" data-raptor=\"eagle\" data-xsm=\",mpu,dmpu,\" data-sm=\",mpu,dmpu,\" data-md=\",mpu,dmpu,\" data-lg=\",mpu,dmpu,\" data-xlg=\",mpu,dmpu,\"> <noscript> <a href=\"https:\/\/pubads.g.doubleclick.net\/gampad\/jump?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=3&amp;c=33YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0\" target=\"_blank\" rel=\"noopener noreferrer\"> <img decoding=\"async\" src=\"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=3&amp;c=33YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0\" alt> <\/a> <\/noscript> <\/div>\n<p>&#8220;I am elated that the Supreme Court made clear today that violations of websites\u2019 terms of service alone do not constitute violations of the Computer Fraud and Abuse Act,&#8221; said Alan Mislove, one of the plaintiffs in <i>Sandvig<\/i>, and a professor of computer science at Northeastern University, in <a href=\"https:\/\/www.aclu.org\/press-releases\/statement-supreme-court-decision-removing-hurdles-online-civil-rights-testing-and\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">a statement<\/a> issued by the ACLU.<\/p>\n<p>&#8220;This decision removes a significant cloud of uncertainty and legal risk for researchers who perform online civil rights testing.&#8221;<\/p>\n<blockquote class=\"pullquote\" readability=\"6\">\n<p>This decision removes a significant cloud of uncertainty and legal risk for researchers who perform online civil rights testing<\/p>\n<\/blockquote>\n<p>At the same time, the ruling doesn&#8217;t entirely clarify the CFAA. Kerr observes that in a footnote, the court appears to adopt an authentication test \u2013 whether a user&#8217;s credentials remove a gate to access. Yet in a different footnote, he points out, the Court says it doesn&#8217;t need to address whether permissible access depends only on code-based limitations or whether limitations spelled out in contracts or policies come into play.<\/p>\n<p>To resolve the CFAA&#8217;s ambiguity, the Congressional Research Service argued last September [<a href=\"https:\/\/fas.org\/sgp\/crs\/misc\/R46536.pdf\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">PDF<\/a>] that, &#8220;regardless of what the Court does in Van Buren,&#8221; Congress should revise the law to make it clearer. The CRS report, as an example, points to <a href=\"https:\/\/lofgren.house.gov\/media\/press-releases\/lofgren-wyden-paul-introduce-bipartisan-bicameral-aaron-s-law-reform-computer\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Aaron\u2019s Law<\/a>, a bill introduced in honor of late internet activist Aaron Swartz, that proposed replacing the ill-defined CFAA &#8220;exceeds authorized access&#8221; language so criminal charges are only applicable when there&#8217;s knowing circumvention of technological or physical access methods.<\/p>\n<p>In a statement, US Senator Ron Wyden (D-OR), one of the authors of Aaron&#8217;s Law, echoed that sentiment.<\/p>\n<p>&#8220;The Supreme Court recognized today that the terribly written CFAA crossed the line by criminalizing everyday activities like using your work computer to read the news or send personal emails,&#8221; he said.<\/p>\n<p>&#8220;Today&#8217;s ruling helps rectify the damage caused by that reactionary law. However, today&#8217;s case highlights the pressing need for Congress to pass comprehensive privacy legislation and to protect users against corporate employees who abuse their access to databases of sensitive personal information.&#8221; \u00ae<\/p>\n<p> READ MORE <a href=\"https:\/\/go.theregister.com\/feed\/www.theregister.com\/2021\/06\/03\/supreme_court_cfaa\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>We&#8217;ll explain everything for you The US Supreme Court on Thursday limited the scope of the 1986 Computer Fraud and Abuse Act (CFAA) in a ruling that found a former sergeant did not violate the law by misusing his access to a police database.\u2026 READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-41197","post","type-post","status-publish","format-standard","hentry","category-the-register"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Supreme Court narrows Computer Fraud and Abuse Act: Misusing access not quite the same as breaking in 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Supreme Court narrows Computer Fraud and Abuse Act: Misusing access not quite the same as breaking in 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2021-06-03T20:45:31+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Supreme Court narrows Computer Fraud and Abuse Act: Misusing access not quite the same as breaking in\",\"datePublished\":\"2021-06-03T20:45:31+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\\\/\"},\"wordCount\":970,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/pubads.g.doubleclick.net\\\/gampad\\\/ad?co=1&amp;iu=\\\/6978\\\/reg_security\\\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\\\/\",\"name\":\"Supreme Court narrows Computer Fraud and Abuse Act: Misusing access not quite the same as breaking in 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/pubads.g.doubleclick.net\\\/gampad\\\/ad?co=1&amp;iu=\\\/6978\\\/reg_security\\\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0\",\"datePublished\":\"2021-06-03T20:45:31+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\\\/#primaryimage\",\"url\":\"https:\\\/\\\/pubads.g.doubleclick.net\\\/gampad\\\/ad?co=1&amp;iu=\\\/6978\\\/reg_security\\\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0\",\"contentUrl\":\"https:\\\/\\\/pubads.g.doubleclick.net\\\/gampad\\\/ad?co=1&amp;iu=\\\/6978\\\/reg_security\\\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Supreme Court narrows Computer Fraud and Abuse Act: Misusing access not quite the same as breaking in\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Supreme Court narrows Computer Fraud and Abuse Act: Misusing access not quite the same as breaking in 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/","og_locale":"en_US","og_type":"article","og_title":"Supreme Court narrows Computer Fraud and Abuse Act: Misusing access not quite the same as breaking in 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2021-06-03T20:45:31+00:00","og_image":[{"url":"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Supreme Court narrows Computer Fraud and Abuse Act: Misusing access not quite the same as breaking in","datePublished":"2021-06-03T20:45:31+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/"},"wordCount":970,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/#primaryimage"},"thumbnailUrl":"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/","url":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/","name":"Supreme Court narrows Computer Fraud and Abuse Act: Misusing access not quite the same as breaking in 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/#primaryimage"},"thumbnailUrl":"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0","datePublished":"2021-06-03T20:45:31+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/#primaryimage","url":"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0","contentUrl":"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2YLl9oIrYYwuAsjOmDImGZAAAANg&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/supreme-court-narrows-computer-fraud-and-abuse-act-misusing-access-not-quite-the-same-as-breaking-in\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Supreme Court narrows Computer Fraud and Abuse Act: Misusing access not quite the same as breaking in"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/41197","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=41197"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/41197\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=41197"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=41197"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=41197"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}