Cybercrime: Sentencing

(asked on 22nd July 2025) - View Source

Question to the Home Office:

To ask His Majesty's Government what plans they have to increase the legal penalties for perpetrators of cyber-attacks, including, in the most serious cases, (1) introducing a minimum term of life imprisonment, and (2) designating perpetrators as terrorists.


Answered by
Lord Hanson of Flint Portrait
Lord Hanson of Flint
Minister of State (Home Office)
This question was answered on 4th August 2025

The Government recognises the serious threat posed by cyber-attacks, which can have devastating consequences to UK people and businesses. The Home Office is committed to ensuring the Computer Misuse Act (CMA) remains up to date and effective to tackle cyber criminality.

The CMA is the main legislation that criminalises unauthorised access to computer systems and data. The Act already provides for a range of penalties, including life imprisonment for offences that cause or create a significant risk of serious damage to human welfare or national security (section 3ZA(7)).

The Home Office is considering the issue of sentencing for CMA offences as part of the ongoing review of the Act. An update will be provided once proposals are finalised.

Reticulating Splines