Update: IT admin used inside knowledge to hack and steal
Madrid faces 12 years in prison for hacking, ID theft, burglary
IDG News Service - A former San Jose network administrator is facing 12 years in prison after pleading guilty to hacking, ID theft, burglary and drug charges.
According to the Santa Clara District Attorney's office, Andrew Madrid, 34, used his IT experience to pull off a variety of crimes between September 2006 and March 2008.
"This was one of the most sophisticated computer crimes our office has prosecuted," said Ben Field, Santa Clara's deputy district attorney. "There's computer intrusion in the first place, there's the introduction of spyware, there's the theft of proprietary data from a computer network and sometimes the destruction of proprietary data from a computer network."
One of Madrid's victims was his former employer, a Sunnyvale, California, high-technology company. According to Field, Madrid destroyed data on the company's servers in the hope that "they would ask him to come back and fix the very problem that he created."
The District Attorney's office declined to name any of the victims of Madrid's crimes.
To make his hacking harder to trace, Madrid would often use his neighbor's open wireless networks, Field said.
Posing as a security guard or an IT worker, he also breezed through Bay Area companies late at night looking for laptops and other computer equipment to steal, Field said. "He had a good eye for what was valuable," Field said.
Madrid sometimes gained access to different parts of the building by picking up security badges he found lying in unoccupied cubes, Field said.
If stopped by company employees, "he would talk to them as if he was completely justified in being there," Field said. "Like he was an IT person doing some work or a security guard making sure the place was secure."
"Being a former network administrator, he could talk the talk as an IT guy," he added.
Madrid even wore clothes that resembled a security guard's uniform, Field said.
In another scheme, Madrid would change bar-code tags on computer equipment in stores in order to pay retailers less than the value of their merchandise. He sometimes manufactured his own price tags, Field said, and a mobile bar-code printer was found in his car. Sometimes the scam was as simple as taking the bar code off a cheap eMachine and putting it on a more expensive Hewlett-Packard Co. computer, Field said.
Madrid pleaded guilty Friday in Superior Court in Santa Clara. He faces six to 12 years in prison on the charges, which include two counts of possession of methamphetamine for sale. Sentencing is set for Jan. 22.
- Why Projects Fail CIOs are expected to deliver more projects that transform business, and do so on time, on budget and with limited resources.
- The New Business Case for Video Conferencing: 7 Real-World Benefits Beyond Cost-Savings This whitepaper provides insight into the value of video conferencing in today's business environment, and how organizations are using visual collaboration to find...
- Gartner Magic Quadrant for Client Management Tools The client management tool market is maturing and evolving to adapt to consumerization, desktop virtualization, and an ongoing need to improve efficiency.
- Audit Ready and Asset Optimized: The Solid Promise of an Intelligent Software Asset Management Solution In this paper Frost & Sullivan examines the benefits of enterprise-grade Software Asset Management solutions, and how these solutions serve as the convergence...
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy... All Knowledge Center White Papers | Webcasts