The document is aimed at increasing the protection of key facilities – energy, healthcare, transportation and the banking system.
The new norms regulate illegal access to information systems, production and distribution of malicious software, interception and alteration of data, and disruption of information systems.
For example, hacking into computer systems and attacks on critical infrastructure will be punishable by imprisonment for up to two years. Companies involved in such actions will be held separately liable.
Intentionally deleting, damaging, altering, destroying or blocking access to information data in the system, as well as their unauthorized transfer, acquisition, sale or provision with restricted access will be punishable by a fine of 850 to 1,350 conventional units or imprisonment for 2-5 years. A legal entity may be fined 2000-4000 conventional units and deprived of the right to engage in certain activities.
Cybercrimes are also becoming a “classic of the genre”
“Today, information crimes occupy in the criminal-legal field as important a place as “classic” crimes. Their gravity is reinforced by the ease of commission and concealment, the predominantly cross-border nature, and potentially devastating consequences,” the authors of the bill explain.
The document harmonizes national legislation with EU directives. It is currently at the stage of public discussion.
