Checking Facebook at Work Could Become Illegal

Share

• Copy link
• Facebook
• X
• Whatsapp
• Reddit
• Pinterest
• Flipboard
• Email

Share this article

Join the conversation

Follow us

Add us as a preferred source on Google

Newsletter

Get the Live Science Newsletter

Get the world’s most fascinating discoveries delivered straight to your inbox.

Become a Member in Seconds

Unlock instant access to exclusive member features.

Contact me with news and offers from other Future brands Receive email from us on behalf of our trusted partners or sponsors

---

By submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

You are now subscribed

Your newsletter sign-up was successful

---

Want to add more newsletters?

Delivered Daily

Daily Newsletter

Sign up for the latest discoveries, groundbreaking research and fascinating breakthroughs that impact you and the wider world direct to your inbox.

Signup +

Once a week

Life's Little Mysteries

Feed your curiosity with an exclusive mystery every week, solved with science and delivered direct to your inbox before it's seen anywhere else.

Signup +

Once a week

How It Works

Sign up to our free science & technology newsletter for your weekly fix of fascinating articles, quick quizzes, amazing images, and more

Signup +

Delivered daily

Space.com Newsletter

Breaking space news, the latest updates on rocket launches, skywatching events and more!

Signup +

Once a month

Watch This Space

Sign up to our monthly entertainment newsletter to keep up with all our coverage of the latest sci-fi and space movies, tv shows, games and books.

Signup +

Once a week

Night Sky This Week

Discover this week's must-see night sky events, moon phases, and stunning astrophotos. Sign up for our skywatching newsletter and explore the universe with us!

Signup +

---

Join the club

Get full access to premium articles, exclusive features and a growing list of member rewards.

Explore

---

An account already exists for this email address, please log in.

Subscribe to our newsletter

Logging into Facebook, perusing eBay and surfing to other decidedly non-work related sites may not just upset your boss; it could also be a federal offense.

That's according to two Boston College professors who recently authored a paper on how a broad interpretation of the 1986 Computer Fraud and Abuse Act (CFAA) could criminalize the routine behavior of every employee who uses a workplace computer in their job.

As the First, Fifth, Seventh and Eleventh Circuit Courts of Appeal interpret it, a breach of a company's computer policy for example a ban on accessing dating sites and social media for example, also constitutes a violation of the CFAA.

The law was originally written to punish and deter criminal hacking, but as technology experts point out, innovation in technology has outpaced the laws that govern it.

The CFAA, a 1986 law that predates HTTP and the Web as we know it, makes it a crime to "access a computer without authorization or exceed authorized access ... from [a] protected computer." Based on the law's own definitions, a "protected computer" is virtually any device with a microprocessor and a network connection. Today, virtually everyone "accesses" one when they point their browser to any webpage.

Since the law allows private right of action, companies could, in theory, successfully sue their employees for any computer policy violation, even something as benign as sending your spouse an email about being late for dinner.

In their paper, published in the American Business Law Journal, Professors Stephanie Greene and Christine Neylon O'Brien also discuss United States v. Nosal, in which the former employee of an executive recruiting firm was prosecuted under the CFAA after he conspired with then-current employees to give him the company's proprietary information with the intention of setting up a competing business.

In a break from its sister courts, the Ninth Circuit accepted a much narrower interpretation and said even though defendant David Nosal misused company resources and broke the company's computer policy, he did not "exceed authorized access" and was not in violation of the law.

Last month, notorious troll and hacker Andrew Auernheimer was convicted under the CFAA for "stealing" email addresses and corresponding names from an AT&T database. While it did take some technical knowledge and ingenuity to access the data, Auernheimer never guessed passwords, which is a crime, nor did he write the script that made obtaining the information possible. Experts on technology, privacy and policy have decried his conviction under such a broad interpretation of the law.

"The Ninth Circuit appears to be at the forefront of a new trend that recognizes dangers in the CFAA as a catch-all statute to pursue employees for fraudulent or disloyal use of workplace computers," O'Brien and Greene wrote.

This story was provided by TechNewsDaily, sister site to LiveScience.