Acts

Judgments Under Section 66B of the IT Act

Amna Kabeer
Amna Kabeer
Data Breach - Cyber Attack - IT Act
Data Breach - Cyber Attack - IT Act

What does Section 66B of the IT Act state?

Section 66B of the Information Technology Act, 2000 provides:

Contents
What does Section 66B of the IT Act state?Why is Section 66B important in cyber law?What must prosecution prove under Section 66B?How have courts interpreted “knowledge or reason to believe”?What recent judgments highlight Section 66B?How is Section 66B applied in practice?What enforcement challenges arise under Section 66B?How does Section 66B interact with other provisions?How do courts balance cybercrime deterrence and individual rights?What future trends may expand Section 66B’s use?What role does judicial interpretation play in shaping Section 66B?Conclusion

“Whoever dishonestly receives or retains any stolen computer resource or communication device knowing or having reason to believe the same to be stolen computer resource or communication device, shall be punished with imprisonment for a term which may extend to three years or with fine which may extend to one lakh rupees or with both.”

This provision mirrors Section 411 of the Indian Penal Code but adapts it to digital property. It creates liability not for the original theft but for dishonest retention or benefit from stolen electronic resources. In today’s era of hacking, phishing, and dark web markets, this section is increasingly invoked in cybercrime prosecutions.

Why is Section 66B important in cyber law?

Section 66B fills a crucial gap in cyber law. Cybercrimes often involve chains of possession. Hackers may steal databases, but buyers and end-users keep the stolen property alive in the illegal market. This provision ensures that not just the thief but also the recipient is punished. It recognizes that stolen computer resources can be traded, reused, or monetized, just like physical goods.

For instance, stolen Netflix accounts, hacked bank credentials, cracked software keys, or confidential trade secrets all constitute stolen computer resources. By penalizing receivers, Section 66B seeks to cut demand for stolen data and disrupt digital black markets.

What must prosecution prove under Section 66B?

Courts have clarified that three ingredients are essential for conviction. First, the property must qualify as a “computer resource” or “communication device.” This includes laptops, phones, networks, or digital accounts. Second, the resource must be “stolen,” meaning it was obtained illegally, often through hacking or fraud. Third, the accused must have “knowledge or reason to believe” that the item was stolen.

The last element, mens rea, often becomes the most contested. Prosecutors must show that the accused knew or should have known the suspicious nature of the resource. Courts examine factors like unreasonably low purchase price, absence of verification, prior dealings, and forensic traces. Mere possession without guilty knowledge does not attract liability.

How have courts interpreted “knowledge or reason to believe”?

Judgments have stressed that proving knowledge is not always straightforward. Courts often rely on circumstantial evidence. For example, if a person buys a premium software license for a fraction of its value from an unverified seller, knowledge may be inferred. Similarly, repeated transactions with dark web vendors can establish a pattern of dishonest intent.

In contrast, if an individual innocently downloads a file from a peer-to-peer network without knowing its stolen origin, Section 66B may not apply. The distinction between innocent possession and willful retention forms the heart of judicial analysis.

What recent judgments highlight Section 66B?

In Ashwinkumar Pandhari Sanap v. State of Maharashtra (2024), the Bombay High Court dealt with a case where both Section 66A and Section 66B were cited. The Court quashed the FIR, noting that forwarding a WhatsApp message does not amount to dishonestly receiving a stolen computer resource. The ruling clarified that Section 66B requires specific evidence of stolen property and guilty knowledge, not mere digital transmission.

Other judgments in 2024 and 2025 examined cases involving hacked OTT accounts, cracked applications, and stolen customer databases. High Courts emphasized that prosecution must produce digital forensics, transaction logs, or communications to prove guilty intent. Without such evidence, Section 66B cannot sustain a conviction.

How is Section 66B applied in practice?

Section 66B has been invoked in diverse contexts. Police have applied it against individuals buying hacked streaming accounts at low prices. It has been used against traders who purchase cracked enterprise software keys and resell them. In corporate disputes, it has been applied where employees retained stolen source codes or client databases after leaving a company.

Judges have repeatedly underlined that conviction cannot rest on speculation. In cases where police failed to show forensic links or transaction records, courts quashed charges. In contrast, where emails, payment logs, or IP addresses tied the accused to stolen resources, courts allowed prosecution to proceed.

What enforcement challenges arise under Section 66B?

Enforcement faces multiple hurdles. First, proving knowledge is difficult when accused claim ignorance. Second, digital goods can be replicated endlessly, making it hard to establish which copy is stolen. Third, global cybercrime markets complicate jurisdiction, as stolen data may pass through foreign servers.

To address this, investigators rely heavily on digital forensics. Audit trails, IP logs, blockchain payments, and metadata help trace the path of stolen resources. Courts now recognize the importance of cyber forensics in establishing guilty knowledge.

How does Section 66B interact with other provisions?

Section 66B often works alongside other offences. If stolen resources are used for identity theft, Section 66C applies. Whether they are used for cheating or fraud, Section 66D may be added. If privacy is breached, Section 72 of the IT Act comes into play. IPC provisions like cheating (Section 420) or criminal breach of trust may also be charged.

This layered approach ensures that the full scope of wrongdoing, stealing, receiving, using, and exploiting, is punished. In corporate espionage cases, Section 66B often accompanies charges under the Indian Penal Code and intellectual property laws.

How do courts balance cybercrime deterrence and individual rights?

Courts remain cautious to avoid punishing innocent users. They acknowledge that digital consumers may unknowingly come across pirated or stolen content. For example, streaming a pirated movie without knowledge of its source may not attract Section 66B. However, deliberate purchase of stolen credentials or dark web activity will.

The judiciary balances deterrence with fairness. It requires strict proof of knowledge but also emphasizes the importance of tackling cyber black markets. The Bombay High Court and other benches have repeatedly quashed weak cases while upholding strong prosecutions.

As digital assets evolve, Section 66B will cover new forms of stolen property. Cryptocurrencies obtained through hacking, NFTs stolen from wallets, or confidential AI models illegally shared may all fall under its ambit. Courts may soon face cases where stolen digital property has intangible value, such as algorithms or training datasets.

Enforcement agencies are also likely to focus more on organized cybercrime networks. Instead of targeting only hackers, police may increasingly prosecute buyers and resellers of stolen data. This aligns with global trends where demand-side actors in cybercrime markets face legal liability.

What role does judicial interpretation play in shaping Section 66B?

Judicial interpretation remains central. Courts define the boundaries of “knowledge” and “stolen property.” They determine whether new digital resources qualify as “computer resources.” They also decide whether indirect benefits, such as companies profiting from stolen trade secrets, can trigger liability.

Through recent rulings, courts have made clear that Section 66B is not a catch-all. It applies only when guilt is proven beyond reasonable doubt. But where evidence is strong, courts are ready to convict and impose penalties.

For any specific query call at ‪+91 – 8569843472‬

Conclusion

Section 66B of the IT Act criminalizes dishonest receipt or retention of stolen digital property. Recent judgments in 2024 and 2025 have clarified its scope. Courts insist on proof of knowledge, using digital forensics to distinguish between innocent possession and willful retention. They have quashed weak prosecutions but upheld cases backed by strong evidence.

As cybercrime markets expand, Section 66B will grow in importance. It punishes not just thieves but also recipients, cutting demand for stolen digital assets. Judicial interpretation ensures balance, safeguarding innocent users while deterring cybercriminals. In India’s digital economy, Section 66B stands as a vital tool to protect integrity, trust, and lawful use of technology.

You Might Also Like

Section 105H CrPC: Forfeiture of Property in Certain Cases

Section 95 – Bharatiya Nagarik Suraksha Sanhita(BNSS) – Procedure As To Letters.

Role and Powers of Legal Services Authorities in India (Sections 6, 7 & 8)

CrPC Section 77: Warrant Execution Locations

IGST Act: Definitions Every Business Owner Must Know (Section 2)

TAGGED:
Share This Article
Previous Article Data Breach and Misuse - Cyber Crime - IT Act Latest Judgments Interpreting Section 65 of the IT Act
Next Article Information Technology Act Of 2000: Key Provisions, Responsibilities, And Amendments Latest Judgments Referring to Section 66A of the IT Act
Leave a Comment

Leave a Reply

Follow US

Find US on Social Medias
Popular News
- Advertisement -
- Advertisement -
Ad imageAd image

📢 Stay Connected!

Join our community on Telegram and WhatsApp for instant updates, news, and exclusive offers.