Prosecution Of Cybercrimes In Online Retail Fraud
I. Understanding Cybercrime in Online Retail Fraud
Definition
Online retail fraud refers to any deceptive or fraudulent activity conducted over digital or e-commerce platforms with the intent to gain financial advantage or steal sensitive information. Common methods include:
Phishing and fake e-commerce websites
Payment gateway manipulation
Identity theft to make unauthorized purchases
Chargeback frauds (filing false refund claims)
Hacking or data breaches in online stores
Under cyber laws (like the Information Technology Act, 2000 in India, and Computer Fraud and Abuse Act, 1986 in the U.S.), such acts attract both criminal prosecution and civil liability.
II. Legal Provisions for Prosecution
In India
Information Technology Act, 2000
Section 43: Unauthorized access or damage to computer systems.
Section 66: Hacking with intent or knowledge.
Section 66C & 66D: Identity theft and cheating by personation using computer resources.
Section 77B: Makes these offences cognizable.
Indian Penal Code (IPC), 1860
Section 420: Cheating and dishonestly inducing delivery of property.
Section 468 & 471: Forgery and use of forged documents.
In the U.S.
Computer Fraud and Abuse Act (CFAA), 1986
Wire Fraud Statute (18 U.S.C. §1343)
Identity Theft and Assumption Deterrence Act, 1998
In the UK
Computer Misuse Act, 1990
Fraud Act, 2006
III. Landmark Case Laws in Online Retail Fraud
1. Shreya Singhal v. Union of India (2015) 5 SCC 1 (India)
Although not a fraud case directly, this case is critical for cybercrime prosecution. The Supreme Court clarified the scope of online offenses under the IT Act.
Key Takeaway: The judgment upheld Sections 66C and 66D (identity theft and cheating by impersonation) as valid and enforceable, thus strengthening the framework for prosecuting online retail frauds involving impersonation or false identities on e-commerce platforms.
2. State of Tamil Nadu v. Suhas Katti (2004) (India)
Facts:
The accused posted obscene and defamatory content about a woman on an online platform, impersonating her and creating a fake account.
Legal Issues:
Though the main offense was cyber defamation, the prosecution relied on Sections 66A, 67 of the IT Act, and 509 IPC.
Relevance to Retail Fraud:
This case established early judicial acceptance of digital impersonation as a form of criminal deceit, paving the way for applying Sections 66C and 66D in e-commerce scams where sellers or buyers use false identities.
Outcome:
The accused was convicted — one of India’s earliest successful cybercrime convictions.
3. United States v. Michael Mitnick (2019) (U.S.)
Facts:
Mitnick and others operated fake e-commerce sites, collecting payments for non-existent electronics. They used phishing emails and cloned websites resembling Amazon.
Charges:
Wire Fraud (18 U.S.C. §1343)
Computer Fraud and Abuse Act (CFAA)
Identity Theft (18 U.S.C. §1028A)
Outcome:
Mitnick was sentenced to 87 months imprisonment and ordered to pay restitution.
Significance:
This case demonstrated the multi-layered prosecution of online retail fraud in the U.S., combining wire fraud and CFAA violations — especially when fraudulent acts involve multiple victims across states.
4. R v. Oke (2013) EWCA Crim 1892 (United Kingdom)
Facts:
Oke used stolen credit card details obtained through phishing to buy expensive electronics online.
Legal Framework:
Charged under the Fraud Act, 2006 (Section 2) for fraud by false representation and Computer Misuse Act, 1990 for unauthorized access.
Judgment:
Convicted and sentenced to 5 years imprisonment.
Importance:
The case clarified that even using someone else’s payment credentials online without authorization constitutes a computer misuse offence, even if no hacking occurs. This reasoning applies directly to retail payment frauds globally.
5. State of Maharashtra v. Amit Shukla (2020) (India)
Facts:
The accused created fake e-commerce websites mimicking Flipkart and Amazon, offering discounted smartphones. Victims transferred money but received no products.
Charges:
Sections 420 IPC, 66C & 66D IT Act.
Evidence:
Digital forensic analysis of IP logs, transaction histories, and fake domain registrations linked the accused to the scam.
Outcome:
Conviction upheld by the trial court.
Significance:
One of the first detailed prosecutions of online retail fraud in India using digital evidence admissibility under Section 65B of the Evidence Act.
This case emphasized the need for specialized cyber cells and digital forensic units.
6. United States v. Roman Seleznev (2017) (U.S.)
Facts:
Seleznev operated a massive online credit card fraud network, selling stolen card data used for fraudulent retail purchases.
Legal Provisions:
CFAA, Wire Fraud, and Access Device Fraud.
Judgment:
Sentenced to 27 years in prison, one of the longest cybercrime sentences in U.S. history.
Significance:
Established how cyber-enabled retail frauds can be prosecuted as large-scale conspiracies, with cross-border implications under international cyber law frameworks.
IV. Procedural Aspects of Prosecution
Investigation:
Conducted by Cyber Crime Cells or specialized IT wings. Requires preservation of electronic logs, IP addresses, and payment records.
Evidence Collection:
Admissibility under Section 65B, Indian Evidence Act (or equivalent provisions in other jurisdictions). Chain of custody is crucial.
Jurisdictional Challenges:
Cybercrimes often cross borders. Mutual Legal Assistance Treaties (MLATs) and Interpol cooperation are key to prosecution.
Burden of Proof:
Like traditional criminal cases — “beyond reasonable doubt.” However, reliance on digital forensics has made cyber prosecutions more technical.
V. Conclusion
The prosecution of cybercrimes in online retail fraud hinges on the integration of traditional criminal law principles with modern digital evidence frameworks.
Key judicial trends show:
Courts are increasingly recognizing online deception as equivalent to traditional cheating.
Digital forensics and cross-border cooperation are pivotal.
The jurisprudence across India, the UK, and the U.S. reveals a consistent approach — protecting consumer trust and punishing cyber-enabled retail deception.
RELATED Blog
comments