I did not "gloss over" the criminal behavior. I simply didn't think it needed any elaboration. But since you do, let me be more clear:
The people that broke into the email account, just like people who steal cars, should go to jail.
People who use services with poor security records, like people who leave the keys in their cars, deserve some of the blame.
I pay for an ISP to give me email access. I should NOT have to pay extra money (in software spyware protection and anti-virus software) to prevent CRIMINALS from sending me malicious, damaging infected email or prevent hackers/scripters from access information for which theyhave NO LEGAL RIGHT TO ACCESS.
I paid for a truck. It's a 1987. How DARE Toyota not retro fit air bags and the latest safety features into my purchase!!!!
Look. Security is expensive. If you want cheap access don't whine that it's not secure.
The US government has basically let the techno-nerds run amok in cyberspace because of the hue and cry from those same people who decry government over-regulation.
The U.S. Government does not own the Internet. They have no say in how it is run. And that's a good thing.
If a corporate CEO wants to contract you to hack into his systems to check his security, fine. I have no problem with that. But if you try to access any bit of unauthorized information you should be sent to prison for LENGTHY prison terms.
An interesting theory. But before I comment further, please define "access."
If a webmaster accidentally posts confidential information on a company website and I download it, is that a crime?
If I discover that a company has been stupid enough to dump their confidential data onto an FTP server that has no password set, or uses the default password for the anonymous account, and I download it, is that a crime?
The virus writers, spammers, spyware writers, scripters, data-miners and all of the unauthorized intruders into computers are costing theis country untold BILLIONS of dollars.
Actually, the people that make the crap operating system that allows spyware, spam and viruses to operate is the guilty party. Odd how many other operating systems have almost no problem with such things but the dominant one is flat eaten up with them.
I appreciate you zeal in wanting to make the guilty party pay. I just think you need to examine your targets more carefully.
The people you are deriding often have the noblest of goals. At first. Here's an example of how resolving security problems usually goes:
Hacker: What's this? If you send this string of data to this piece of software across the Internet, you can gain access to every file on the server's hard drive!
Hacker emails the company that wrote the software: Hey, I found this thing. Here's what happens. Here's how to duplicate it. You might want to fix it.
Company: --silence--
(2 weeks later.)
Hacker emails the company again: Hey, sent you information about a security problem. If I can find it, someone else can too. Please fix it.
Company: --silence--
Hacker emails a security blog with the data: Hey, I tried to reach the company but they wouldn't answer. Here's what I found.
Company: OMG! WTF! You evil hax0r! How dare you reveal our security problem! Prepare to be vanquished. RELEASE THE FLYING MONKEYS!
Hacker: ???
Company lawyers: Dear Hacker, we'll be taking everything you own and then recommending jail time.
Hacker: WTF!
Next Hacker: Hey, look what I found. A security problem.
Next Hacker thinks about his buddy Hacker....
Next Hacker sends a description of the problem and a sample exploit to a security blog anonymously.
Pimply-Faced Youth trolls the security blogs...
PFY downloads the exploit code, breaks into a company using the software and posts the company's confidential data.
People like you: OMG! Evil Hax0rs!!!! Kill them!
The posting was no accident. The Webmaster knew that the information was illegally obtained.
The web master should go to jail along with everyone who copied the material and passed it on.
Actually LARGE fines would probably suffice, but they have to be large enough to hurt.
“Hacker: What’s this? If you send this string of data to this piece of software across the Internet, you can gain access to every file on the server’s hard drive!”
And, uh, just why would you be doing this and how is it that unlike most people, you have the time to do so? Indeed, am I to believe you are unaware of what your “string of data” might be up to?
“Look. Security is expensive.”
Yes, but if penalties appropriate to the damages done were enacted, there’d be a lot less need. (Oh, that’s right though, the need for Internet Security makes you money.)
Sheepish grin. :-)