- Legal Basis
- § 303b StGB
- Sentencing Range
- Imprisonment up to three years or a fine; in especially serious cases imprisonment up to five years; disrupting critical infrastructure up to ten years
- Summary
- Interfering with data processing operations of substantial importance by deleting, suppressing, rendering unusable, or altering data
Computer Sabotage (Section 303b StGB)
Computer sabotage covers serious interference with another party’s data processing operations. Unlike mere data alteration (Section 303a StGB), this offence requires that data processing of substantial importance to another is significantly disrupted. In practice, this frequently involves DDoS attacks, ransomware distribution, and targeted sabotage of IT infrastructure — offences that expats in Germany’s technology sector should understand clearly.
Legal Basis
Section 303b(1) of the German Criminal Code (StGB) provides:
“Anyone who significantly disrupts data processing that is of substantial importance to another, by committing an offence under Section 303a(1), entering or transmitting data with the intention of causing disadvantage to another, or destroying, damaging, rendering unusable, removing, or altering a data processing system or data carrier, shall be punished with imprisonment of up to three years or a fine.”
Section 303b(2) StGB qualifies the offence where the data processing is of substantial importance to a business, company, or public authority (imprisonment up to five years). Section 303b(4) StGB covers especially serious cases with imprisonment from six months to ten years.
Elements of the Offence
Data processing of substantial importance: The affected data processing must be of substantial importance to another party. This includes business-critical IT systems, production controls, communication infrastructure, and comparable applications upon which the affected party depends.
Significant disruption: The data processing must be significantly disrupted. Brief, minor impairments do not suffice. A significant disruption exists when the data processing is noticeably and not merely insignificantly impaired.
Acts of commission: The disruption can occur in three ways: through data alteration under Section 303a StGB (deleting, suppressing, rendering unusable, or altering data), through entering or transmitting data with intent to cause harm (e.g., DDoS attacks), or through physical destruction or damage to data processing systems or data carriers.
Intent: The offender must act intentionally. For the second type of conduct (data entry/transmission), the additional intention of causing disadvantage to another is required.
Typical Methods of Commission
Common forms include DDoS attacks (Distributed Denial of Service) that overload servers through mass requests, distribution of ransomware that encrypts data and demands a ransom, targeted deletion or encryption of corporate data by current or former employees, physical sabotage of servers or network infrastructure, and introduction of malware into production systems.
Sentencing Range
The basic offence (Section 303b(1) StGB) carries a penalty of up to three years’ imprisonment or a fine. If the offence concerns data processing of a business, company, or public authority (Section 303b(2) StGB), the penalty is up to five years’ imprisonment or a fine. In especially serious cases (Section 303b(4) StGB), such as causing large-scale financial loss, acting on a commercial basis, or impairing public services or state security, the penalty ranges from six months to ten years’ imprisonment.
Typical Defence Strategies
A central defence approach concerns whether the data processing was truly “of substantial importance” and whether the disruption was “significant.” Trivial disruptions do not satisfy the offence. In DDoS attacks, attribution to the accused is frequently problematic, as botnets and anonymisation services are used. In cases of sabotage by employees, it must be examined whether they acted within their authority or whether a technical defect rather than intentional conduct was responsible. Exclusionary rules also play a role, particularly regarding the analysis of log files and the seizure of IT systems.
Frequently Asked Questions
Was ist Computer Sabotage?
Nach § 303b StGB ist die erhebliche Störung einer Datenverarbeitung strafbar, die für einen anderen von wesentlicher Bedeutung ist, etwa durch Löschen oder Verändern von Daten oder durch Überlastungsangriffe.
Welche Strafe droht?
Freiheitsstrafe bis zu drei Jahren oder Geldstrafe; richtet sich die Tat gegen einen Betrieb oder eine Behörde, bis zu fünf Jahre.
Welche Verteidigungsansätze gibt es?
Geprüft werden die Erheblichkeit der Störung, eine etwaige Befugnis, der Vorsatz und der Tatnachweis.
Muss ich zur Polizei, wenn ich als Beschuldigter vorgeladen werde?
Einer rein polizeilichen Police Summons müssen Sie als Beschuldigter nicht folgen, und Sie sind nie verpflichtet, sich zur Sache zu äußern. Einer Ladung der Staatsanwaltschaft oder des Gerichts sollten Sie folgen – schweigen dürfen Sie aber auch dort.
Sollte ich vor der Akteneinsicht aussagen?
In aller Regel nein. Ohne Kenntnis der Ermittlungsakte lässt sich nicht beurteilen, welche Beweise vorliegen. Eine Einlassung sollte erst nach Akteneinsicht und in Abstimmung mit dem Verteidiger erfolgen.
Kann ein Strafverfahren eingestellt werden?
Ja. Je nach Beweislage kommen eine Einstellung mangels hinreichenden Tatverdachts (§ 170 II StPO), wegen Geringfügigkeit (§ 153 StPO) oder gegen Auflagen (§ 153a StPO) in Betracht. Nach Akteneinsicht prüfen wir die Möglichkeiten.
Summons or accusation of Computer Sabotage? What matters now
Make no statement to the police at first
As an accused person you are never obliged to comment on the allegation. Anything said to the police can be used against you. Provide statements only through your defense attorney and only after reviewing the case file.
File inspection comes first
A sound defense against the allegation of Computer Sabotage requires knowledge of the investigation file. Only once the available evidence is clear can we decide whether a statement is advisable or whether remaining silent is the better strategy.
Possible discontinuation of proceedings
Not every case ends in a main hearing. Depending on the evidence and any prior record, the proceedings may be discontinued for lack of sufficient suspicion (§ 170 II StPO), for triviality (§ 153 StPO) or subject to conditions (§ 153a StPO). Often a penalty order without a public trial can be achieved.
Victim-offender mediation and restitution
In many cases, victim-offender mediation or making good the damage (§ 46a StGB) can significantly reduce the sentence or enable a discontinuation. Whether this is advisable in your case is something we assess based on the file.
What we do after reviewing the file
We examine the evidence for reliability and admissibility, look for procedural errors, develop the defense strategy, negotiate with the public prosecutor on a discontinuation and represent you, if necessary, in the main hearing before the District Court or Regional Court of Bonn.
Available 24/7: +49 228 504 463 36
This information does not replace a review of the individual case. In criminal proceedings, the defence strategy depends substantially on the case file, the specific allegation and the evidence.
Why BAFTEH Strafverteidigung?
- Direct contact with your defense attorney – no intermediaries
- Available around the clock, including nights and weekends
- Fast file inspection and a clear defense strategy
- Focused exclusively on criminal law
- Defense in Bonn, Cologne and the entire region
Written by attorney Philip Bafteh, criminal defense lawyer in Bonn. Philip Bafteh publishes regularly on criminal and commercial law and defends accused persons in investigative and trial proceedings.
More about the attorney →Last updated: Juni 2026
Free Initial Assessment
Have you received a summons or are you under investigation? Call us – the initial assessment by phone is free for up to 10 minutes.
+49 228 504 463 36