Security threats Toolkit

US anti-spyware bill rises from the ashes

Tags:
Law,
Legal,
Spyware

Declan McCullagh CNET News

Published: 12 May 2005 09:35 BST

The US Congress didn't quite get around to approving an anti-spyware bill last year — such a bill died while awaiting a Senate floor vote.

Now members of the Senate Commerce Committee are promising to avoid a repeat of last year's lapse. During a hearing on Wednesday, politicians said spyware was a growing threat that required prompt action by Congress.

These are "insidious programs that install themselves on users' computers", said senator Barbara Boxer, a Democrat from California. "It's hard to use analogies with this, but it's sort of like somebody walking around your house, kind of invisibly."

Boxer acknowledged that the Federal Trade Commission already has been suing alleged spyware distributors, but said: "I think we have to do more than that. Clearly it's still going on, even though there have been lawsuits filed."

It's not clear, though, how much a new federal law can accomplish. The Can-Spam Act of 2003 hasn't exactly eliminated junk email so far, and both the FTC and the Justice Department say they already have the power to investigate and punish the worst offenders. Also, no US law can hope to reach offshore Web sites.

"The last major effort we made was with respect to spam, and this is a much more serious problem," said senator Ron Wyden, a Democrat from Oregon. "With spam you can hit the delete button. With this stuff it crashes your system."

If a federal spyware measure does clear Congress this year, technology and advertising companies are hoping to ensure that it will pre-empt state laws and set a uniform national rule.

"A national platform for legitimate businesses to work from" is necessary, Trevor Hughes of the Network Advertising Initiative — a consortium of large Internet advertisers — told the Senate panel on Wednesday. "Any legislation must be focused on the behaviour of spyware, and that is fraud and deception."