網路釣魚(Phishing)是一種盜取密碼或其他個人資料的行為，在全世界造成鉅額的財產損失，不僅是資訊安全界的重要議題，也對於刑法的解釋及立法帶來新的挑戰。本文正是在探究網路釣魚的刑事責任，並藉此機會省思相關犯罪構成要件之適用難題。研究結果顯示，「網路釣魚」所造成的財產損害，在現行法底下主要能夠透過詐欺得利罪加以保護，並無顯著的處罰漏洞。但是「網路釣魚」對於不特定多數人之財產法益所形成的危險，非現行法所能規範。儘管如此，考量非法律途徑之預防成效及偵查實效之侷限，立法者不宜貿然增訂「網路釣魚」之獨立構成要件。

Phishing, an act of stealing passwords or other personal information, has caused tremendous property losses in the world. It has not only become an important issue in the world of academic and research on information security but also brought new challenges to criminal law interpretation and legislation. This article is to explore the criminal penalty for phishing by ruminating the difficulties in applying elements of relevant crimes to phishing. This article concludes that property losses by phishing can be protected by applying the elements for the crime of procuring an illegal benefit by fraud under the current law and, thus, no pronounced loophole for punishment. However, the danger created by phishing to the legal interest in property for the unspecified number of people cannot be regulated under the current law. Notwithstanding, in light of the effect of non-legal preventive measures and the limited investigation outcome, the legislators shall not amend the law to add independent elements for ph ishing.