Cybercrime law refers to the set of laws that identify standards of acceptable behavior for information and communication technology (ICT) users, establish rules of conduct and standards of behavior for the use of the Internet, computers, and related digital technologies, and provide rules of evidence and criminal procedure, and other criminal justice matters in cyberspace. Cybercrime law also includes regulation to reduce risk and/or mitigate the harm done to individuals, organizations, and infrastructure should a cybercrime occur.

Cybercrime includes traditional, real-world (offline) crimes such as fraud, forgery, organized crime, money-laundering, and theft perpetrated in cyberspace that are hybrid or cyber-enabled crimes, as well as new or cyber-dependent crimes that have been made possible with the advent of the Internet and Internet-enabled digital technologies. Some examples of cybercrime include identity theft, bank fraud, credit card fraud, and other fraudulent schemes.

The Computer Fraud and Abuse Act (CFAA), 18 U.S.C. 1030, is the primary statutory mechanism for prosecuting cybercrime in the United States. All 50 states, Puerto Rico, and the Virgin Islands have computer crime laws, with most addressing unauthorized access or computer trespass.

Ultimately, cybercrime law seeks to prevent cybercrime by identifying and regulating acceptable behavior, establishing rules of conduct and standards of behavior, and providing rules of evidence and criminal procedure in cyberspace.