The IT Law Wiki

Definitions[]

A cybersecurity threat is

any action that may result in unauthorized access to, manipulation of, or impairment to the integrity, confidentiality, or availability of an information system or information stored on or transiting an information system, or unauthorized exfiltration of information stored on or transiting an information system.[1]
an action, not protected by the First Amendment to the Constitution of the United States, on or through an information system that may result in an unauthorized effort to adversely impact the security, availability, confidentiality, or integrity of an information system or information that is stored on, processed by, or transiting an information system.[2]

Overview[]

"The term 'cybersecurity threat' does not include any action that solely involves a violation of a consumer term of service or a consumer licensing agreement.[3]

References[]

  1. Legislative Language: Law Enforcement Provisions Related to Computer Security § 242(8) (2011) (full-text).
  2. Privacy and Civil Liberties Interim Guidelines: Cybersecurity Information Sharing Act of 2015, at 15.
  3. Id.