SERVING FAMILIES FOR MORE THAN 25 YEARS

1330 W Olympic Blvd, Los Angeles, CA 90015
(800) 651-1227

Los Angeles, California

Internet Fraud

Legal Services

Contact Us

Do you need immediate legal help? Our attorneys are available for a free consultation.

Free Consultation

Legal Definition

Internet fraud, known as Cyber Crime, didn’t even exist as a crime several decades ago. But now it is a huge source of criminal activity. That is why the Internet Crime Complaint Center, a project created by the Federal Bureau of Investigation (FBI) and other organizations, received over 300,000 complaints about internet fraud and other computer crimes in 2010. With ten percent (10%) of those complaints coming from California. California residents reported losing more than $46.3 million to internet fraud in 2010.

Authorities have taken strong measures to combat internet fraud; in 2011, the California Attorney General created a special “e-crime unit” to investigate and prosecute internet fraud and computer crime cases.

What is “Internet Fraud” or “Cybercrime”

It can refer to almost any use of the Internet to commit fraud. There are a wide variety of criminal fraud laws in California, as well as federal laws that can cover a broad range of conduct.

The most common internet frauds fall into three categories:

  • Scams carried out via email or internet.

  • “Phishing” (using email or the Internet to obtain sensitive information such as social security numbers or credit card information).

  • Unauthorized access to someone’s computer data.

In more general terms, the crime of fraud consists of deceiving someone in order to obtain something they value (usually money). These scams can be carried out in person, by phone, or by mail (this is a federal mail fraud crime). But they can also be done via email and also via the Internet.

Elements to consider Internet Fraud as a Federal Crime

This type of internet scams may be prosecuted and punished under federal criminal law. Because electronic fraud includes fraud carried out via the Internet or email. This is a catch-all crime that can cover almost any scheme to get money from people using false pretenses. So these crimes will often be prosecuted in a federal court.

To convict someone of internet fraud under federal law, prosecutors must prove the following elements:

  • The defendant had the plan to commit fraud.
  • The defendant had the specific intent to defraud someone.
  • The electronic medium used to promote such plan can be email.

The prosecutor does not have to prove that the plan to defraud was actually successful. In other words, one can be found guilty of internet fraud even if he or she never succeeded in getting money from anyone.

Credit Card Fraud Law (California Penal Code 484e PC)

Another popular form of phishing involves using email or the Internet to collect other people’s credit card numbers, which can then be used to make unauthorized purchases. This type of phishing can result in charges under California credit card fraud law – Penal Code 484e PC.

If you obtain another’s credit card information through internet fraud, then you can be charged with credit card fraud if you do any of the following:

  • Sell, transfer, or transmit the credit card information without the cardholder’s consent and with the intent to defraud (this is considered a form of theft).

  • Acquire another person’s credit card information from four (4) or more persons in a twelve (12) month period, with reason to know that this information was obtained illegally (this is also considered theft).

  • Acquire or possess another’s credit card information without the cardholder’s consent, with the intent to defraud, and with intent to use, sell, or transfer to another party (this is considered theft).

  • Acquire or possess another person’s credit card information without consent, intending to use it fraudulently (this is a form of petty theft unless the value of goods or services received exceeds $950 in a six (6)-month period, in which case it becomes grand theft).

California Anti-Phishing Law (Business and Professions Code 22948)

You can only be penalized under California’s criminal law (identity theft or credit card fraud) if you actually obtain someone else’s personal or credit card information via the internet; in other words, if your phishing is actually successful. In an attempt to further crack down on phishing attempts, including unsuccessful ones, the California legislature passed the Anti-Phishing Law of 2005 (Business and Professions Code 22,948 BPC). This law makes it illegal to use email, a website, or the Internet to try to induce someone to provide certain information (including social security numbers, credit card numbers, passwords, etc.), pretending to be a business without that business’s permission.

There are no criminal penalties for violating the Anti-Phishing Law. But violators may be sued in a civil court by either the person harmed by the violation or the California Attorney General. If the plaintiff wins that suit, the defendant may be required to pay damages up to $500,000, or $1,500,000 if the court finds that the defendant is engaging in a pattern of phishing/internet fraud.

Federal Phishing Law

Phishing can also lead to federal criminal charges under federal laws that prohibit identity theft and credit card fraud.

Federal Identity Theft Laws in California

Federal laws prohibit transferring, possessing or using someone else’s “means of identification” via email or other electronic communication, with intent to commit or in relation to any other federal crime.

California Law (Penal Code 502 PC)

California Penal Code 502, also known as the Computer Data Access and Fraud Law, makes this kind of activity a crime in California.

Federal Law

Some of the activities that may result in charges under California Penal Code 502 PC for unauthorized computer access may also lead to federal charges.

A federal law against “computer fraud” makes it a crime to access a computer used by the U.S. government, used by a bank, or used for business purposes, without authorization, with the intent to commit fraud, and obtain something of value, knowingly and with intent to defraud. For a first offense or attempt under this law, penalties may include a fine or imprisonment in a federal prison for up to 5 years, or both. During a second or subsequent offense, you may be fined, imprisoned for up to 10 years, or both.

Examples

There is no limit to the number and variety of frauds that can be carried out over the Internet. But here are some of the most common types:

  • Non-delivery of goods someone paid for (fraud).


    Maria advertises designer shoes for sale with a discount on the auction website eBay, Craigslist, Amazon or any other online marketplaces. Her listings include photos lifted from other web sites. She asks buyers to pay by wire to a foreign bank account. She accepts payment from the buyers, but never ships the shoes.


  • Advance-fee scams.


    Lucas posts Internet ads offering great deals on used cars for sale. When potential buyers email him, he tells them that the car they want is across the country, but he can deliver for an extra fee of $700 or $1000 and other amounts. Lucas tells the buyers they must pay a deposit to have the car delivered, so each buyer sends the agreed-upon amount to a foreign bank account. The cars are never delivered and Lucas never contacts the buyers again.


  • Real-estate overpayment scam.


    Carlos responds to an apartment rental ad on Craigslist. Pedro had sent an email saying he lives outside the United States but is now moving to the U.S. to study and wants to rent the apartment. After Carlos agrees to rent, Pedro sends a cashier’s check from a supposed European bank, in an amount much greater than the agreed price, as a deposit. Pedro asks Carlos to deposit the check and then wire the extra amount to another bank account. Pedro explains that this will help transfer the funds to his new U.S. bank account more easily. Once Carlos deposits the check, he realizes the check was fake and that instead of receiving any money from Pedro, he had paid money.


  • Sweepstakes or lottery scams.


    Someone emails you telling you that you have won a large prize and will receive it after paying certain taxes; the recipient or supposed winner pays the fee, and then learns there is no prize.


  • Work-from-home scams.
    These are supposed companies or ghost businesses that offer false attractive jobs that can be done from home, but require applicants to pay a registration fee before the work begins; but in reality the company or job offered does not exist.

  • Phishing or Identity Theft and Credit Card Fraud via the Internet.
    Ruben sends emails to foreigners claiming to be from Bank of America credit card company. These emails say that Bank of America has urgent news about the recipient’s account, but that the recipient must confirm this is their email address before they can deliver the news. The emails ask the recipient to respond with their social security number, date of birth, and current address. Some people respond with that information. Once Ruben has this information, he can use it fraudulently to apply for loans and credit cards in those people’s names.

  • These days many people pay their cell phone bills by credit card. Pedro is a skilled hacker. He creates a program that sends emails to thousands of people. These emails say that the credit card used for automatic payment of their cell phone bill has expired, and that they need to enter new information. The email contains a link to a website that he has created. It looks like the cell phone company’s website, but isn’t. Nevertheless several people go to that link and enter their credit card number and expiration dates. The fake website collects the credit card information and sells it to a crime ring. The person who made the fake website may be prosecuted for credit card fraud in California. The victims of his internet fraud, including the cell phone company he impersonated, may sue him for damages under the Anti-Phishing Law.

  • Estrella sends an email to hundreds of people, claiming to be a representative of a major credit card company. The email says that someone appears to have used the recipient’s credit card without authorization and that the account has been frozen. The email also says the account can be reactivated only by responding with the recipient’s social security number and date of birth. A few dozen people respond with their information. Estrella waits several months or years and then applies for credit cards in all those people’s names. She maxes out the cards on purchases and then cancels them. Estrella may be charged with identity theft. She also could face a lawsuit under the Anti-Phishing Law and be required to pay damages to the people who sent their information, and the credit card company she impersonated in her email.

Penalties or Sanctions

If convicted of internet fraud under the federal statute of electronic fraud, you may be fined, sentenced to a maximum of 20 years in federal prison, or both.

California Credit Card Fraud Law

If you are accused of phishing to obtain another person’s personal information (such as social security number) via email, you may be charged under California’s identity theft laws (Penal Code 530.5 PC).

California Penal Code 530.5 PC prohibits four types of conduct:

  • Intentionally obtaining another person’s personal identifying information and using that information for any illegal purpose without that person’s consent.

  • Acquiring or retaining another person’s personal identifying information without that person’s consent and with intent to commit fraud.

  • Selling, transferring or providing another person’s personal identifying information without their consent and with intent to commit fraud.

  • Selling, transferring or providing another person’s personal identifying information, with the actual knowledge that the information will be used to commit fraud.

What is considered personal identifying information:

  • Name, address, telephone number

  • Social security number

  • Driver’s license number

  • Health insurance number

  • Mother’s maiden name

  • Bank account number

  • Any PIN or password

  • Passport number

  • Date of birth

  • Information contained in birth or death certificates

The crime of identity theft is a “wobbler” under California law. This means it can be prosecuted as either a misdemeanor or a felony in California.

If convicted of internet fraud / phishing under California identity theft law, the penalty will depend on the specific behavior (i.e., whether identification information was actually used or merely possessed with fraudulent intent, whether you sell or transfer it, etc.) of which you are accused, and whether you have a criminal record.

Depending on all these factors, you may be fined or imprisoned for one year, sixteen months, or two or three years.

The penalties for credit card fraud under Penal Code 484e committed via phishing depend on whether the conduct is theft or petty theft. A grand theft is a wobbler, so it can be prosecuted as a misdemeanor or a felony. If convicted of grand theft for credit card fraud, you can be jailed for 1 year, sixteen (16) months, or two (2) or three (3) years.

Penalties for internet-based frauds that result in federal identity theft are quite high. If convicted, you may be fined and/or imprisoned in federal prison for up to 15 years if:

  • The charges involve the transfer of government-issued identification (such as birth certificate, driver’s license, or social security number).

  • The charges involve more than five (5) means of identification, or

  • You use another person’s identification to obtain something of value worth more than $1,000 in a one (1)-year period; otherwise, the maximum prison term is 5 years.

  • Otherwise, the maximum prison term is 5 years.

Infractions and penalties related to California law (Penal Code 502 PC)

Penal Code 502 prohibits the following behavior and imposes these penalties:

Offense: Knowingly and without permission, accessing, altering, damaging, deleting, destroying, or using any data, computer, computer system, or computer network with the purpose either to: a) devise or execute a plan to defraud, deceive, or extort; or b) improperly control or obtain money, goods, or data.
Penalty: This crime is a wobbler. It can be a fine of up to $10,000, incarceration in county jail for sixteen (16) months or two (2) or three (3) years, or both. It can also be a fine of up to $5,000, county jail for up to 1 year, or both.

Offense: Knowingly accessing and without permission, copying or using another’s computer data or system.
Penalty: Same as above; possibly up to $10,000, jail for 16 months or 2-3 years, or both; or up to $5,000, up to 1 year, or both.

Offense: Knowingly and without permission using computer services.
Penalty: For a first offense under this law that causes no “injury” and where the value of services used is not more than $950, the crime is a misdemeanor. Penalties may include a fine of up to $5,000, or county jail up to 1 year, or both.

Offense: Knowingly accessing and without permission adding, altering, damaging, deleting, or destroying data, software, or computer programs.
Penalty: Another wobble crime. May include fine up to $10,000, county jail for 16 months or 2-3 years, or both; or fine up to $5,000, county jail up to 1 year, or both.

Offense: Knowingly and without permission to disrupt or cause disruption of computer services or denial-of-service to an authorized user.
Penalty: Another wobble crime. May include fine up to $10,000, county jail for 16 months or 2-3 years, or both; or fine up to $5,000, county jail up to 1 year, or both.

Offense: Knowingly and without permission providing someone else with means to access computers so they can commit any of the other offenses listed.
Penalty: For a first offense under this law that causes no harm, this is an infraction of California law. If convicted, you may face a fine up to $1,000.

Offense: Knowingly using another person’s Internet domain name to send one or more emails, and causing damage to a computer, computer system or computer network.
Penalty: For a first offense under this law, if no one is harmed, it is an infraction. If convicted, you may receive a fine up to $1,000.

For a second offense under this law, or if the offense causes any loss, but not more than $5,000, this crime graduates to a misdemeanor. In that case it is punishable by a fine of no more than $5,000, county jail up to 1 year, or both.

If the victim suffers a loss of more than $5,000, the crime becomes a wobble. It may be punished by a fine up to $10,000, county jail for sixteen (16) months, or 2 or 3 years, or both. Or it may be punished by a fine up to $5,000, county jail up to 1 year, or both.

In addition to these criminal penalties under Penal Code 502, the owner of computers or data harmed by any of these offenses may sue the person allegedly responsible for damages.

Also, any computer system used to commit one of these offenses may be subject to asset forfeiture under California’s forfeiture laws.

Scope of the Employment Exception

This list of crimes is likely to make anyone who has ever held an office job a little nervous.

Let’s say one day you violate company policy by copying a work-related file onto a portable drive. You did this so that you could take the file home and work on it on your personal computer over the weekend instead of coming into the office.

This sounds a bit like “knowingly and without permission accessing, copying, or using computer data.” Did you commit a crime by doing this?

The answer is probably “NO.” Penal Code 502 PC carves out an exception for acts that people commit within the scope of their employment — that is, when they are doing things reasonably necessary for the performance of their job duties.

In some cases, this exception may even apply when you are doing things at work that your employer did not specifically ask you to do.

WE HAVE BEEN SERVING HISPANIC FAMILIES WITH THEIR LEGAL PROCESSES FOR MORE THAN 25 YEARS

Contact Our Attorneys
Criminal Defense | Immigration | Family

Call Now
Free Consultation