IT Act 2000AMENDED 2008

Section 84C

Punishment for Attempt to Commit Offences

THE STATUTE

Original Text

Whoever attempts to commit an offence punishable by this Act or causes such an offence to be committed, and in such attempt does any act towards the commission of the offence, shall, where no express provision is made for the punishment of such attempt, be punished with imprisonment of any description provided for the offence, for a term which may extend to one-half of the longest term of imprisonment provided for that offence, or with such fine as is provided for the offence, or with both.

Simplified

Section 84C criminalises attempted cyber offences — acts that cross the threshold from preparation into execution but fall short of completing the offence. The punishment is capped at half the maximum imprisonment for the completed offence. So an attempted Section 66 offence (maximum 3 years) attracts up to 1.5 years; an attempted Section 66F cyber terrorism offence (maximum life imprisonment) attracts up to 7 years imprisonment as an attempt. The critical element is 'does any act towards the commission of the offence' — mere preparation is insufficient. A person who researches vulnerabilities but does not attempt to exploit them has not committed an IT Act attempt offence. However, a person who sends crafted malicious packets towards a target system but whose attack is blocked by a firewall has committed an attempt under Section 84C. This provision is practically significant for cybersecurity incident response: when defenders detect and block an intrusion before it succeeds, the attacker may still face criminal liability for the attempt. It also applies to failed phishing campaigns, blocked denial-of-service attacks, and intercepted identity theft attempts.

Common Queries

Up to half the maximum imprisonment for the completed offence. An attempted Section 66 hacking offence (3 years maximum) attracts up to 1.5 years. An attempted Section 66F cyber terrorism offence attracts up to imprisonment for 7 years.

Preparation alone is not sufficient for Section 84C liability. The accused must have 'done any act towards the commission of the offence' — crossing from preparation into actual execution steps. Researching vulnerabilities is preparation; sending crafted exploit packets toward a target is an attempt.

Legal Evolution

Section 84C was inserted by the 2008 Amendment alongside Section 84B. The two provisions together — abetment and attempt — complete the standard criminal law triangle (commission, attempt, abetment) for the IT Act's offence framework. Before 2008, prosecutors again relied on IPC attempt provisions (Section 511 IPC, now BNS Section 62) which were an awkward fit for cyber-specific offences.

Key Amendments

Inserted by IT (Amendment) Act 2008 — no equivalent in original IT Act 2000.

Half-punishment rule mirrors IPC Section 511 / BNS Section 62 approach to attempt liability.

Cyber Protocol Info

Section Type: AMENDED

OffenceAttempting to commit any offence under the IT Act

CognizableDepends on the underlying offence

Trial AuthoritySame court as the principal offence

Cross-References

84B : Punishment for Abetment of Offences 66 : Computer Related Offences 66F : Cyber Terrorism