Agents line up at a non-descript door which houses command and control servers for a criminal botnet. They enter with a court order to shut it down and seize the servers--but these agents aren't law enforcement--they're from Microsoft. Somewhere across the ocean, a domain goes offline. Customers--some legit, some not--lose their work product. They are on the receiving end of civil asset forfeiture by ICE or DHS which seized the domain with no warning and scant due process. These are but two of the ways the law is pushing its own boundaries to go on the offensive to deal with sophisticated and complex cybercrime. It's time we stop and pause to review these tactics--the results might just surprise you.