Government informant is called kingpin of largest U.S. data breaches
Gonzalez allegedly worked with feds to jail cohorts while launching own massive attacks
Computerworld - A government informant who helped put away nearly 30 fellow hackers five years ago is considered by U.S. law enforcement officials to be the kingpin of the biggest data breaches in U.S. history.
Albert Gonzalez, 28, of Miami was indicted yesterday for the third time in connection with the data breaches. Two Russian citizens were indicted along with Gonzalez by a grand jury in New Jersey yesterday on charges of running an international scheme to steal more than 130 million credit and debit card numbers as well as personally identifying information from five companies, including Heartland Payment Systems Inc., 7-Eleven Inc. and Hannaford Bros. Co.
Federal investigators and prosecutors are calling yesterday's third indictment of Gonzalez a coup for the government.
Gonzalez, who is being held in a detention center in Brooklyn, N.Y., was indicted in the Eastern District of New York on May 12, 2008, and the District of Massachusetts on Aug. 5, 2008, on charges related to separate data breaches at TJX, Dave & Busters, BJ's Wholesale Club, OfficeMax, Boston Market, Barnes & Noble, Sports Authority, Forever 21 and DSW. Before the Heartland hack was disclosed, the TJX breach had been considered the largest ever, with 45.6 million credit and debit card numbers stolen.
Gonzalez became an informant for the U.S. Secret Service after his 2003 arrest in New Jersey on on charges of ATM and debit card fraud, according to an official at the U.S. Department of Justice, who asked not to be named.
In 2004, Gonzalez provided information that helped the U.S. Attorney's Office in Newark, N.J., bust up what at the time was one of the largest online centers for stolen identity and credit card information. The online underground marketplace, dubbed the Shadowcrew group, was charged with trafficking more than 1.5 million stolen credit and ATM card numbers.
Twenty-eight people were arrested and 27 pleaded guilty in connection with that incident. One man fled and became a fugitive.
Scott Christie, a former federal prosecutor who now leads the information technology group at law firm McCarter & English LLP, said it is clear that Gonzalez had been a leader of the Shadowcrew ring. Christie, who worked as a prosecutor on the Shadowcrew case, would not comment on any work that Gonzalez may have done for the government or why he was not arrested for his alleged role in the ring.
The DOJ official did confirm that Gonzalez acted as an informant in the case. However, according to this week's indictment, Gonzalez was allegedly continuing to work as a criminal hacker at the same time he was cooperating with the government.
This pilot fish is a contractor at a military base, working on some very cool fire-control systems for tanks. But when he spots something obviously wrong during a live-fire test, he can't get the firing-range commander's attention.
- IT Certification Study Tips
- Register for this Computerworld Insider Study Tip guide and gain access to hundreds of premium content articles, cheat sheets, product reviews and more.
- Reduce federal infrastructure risk with compliance management and situational awareness
- IBM continuous monitoring and management solutions deliver real-time situational awareness to help federal agencies understand vulnerabilities, and protect the infrastructure.
- Considerations For Effective Software License Management
- For many reasons, software license management has become a critical issue for many IT organizations and enterprise's alike. With many licensing options, hurdles...
- eBay uses 100% OpenSource WSO2 ESB to process more than 1Billion transactions a day
- Along with eBay's success comes a huge demand to ensure reliable, 24x7 availability of the services that enable these transactions. For eBay, that...
- A Reference Architecture for the Internet of Things
- The aim of this is to provide Architects and Developers of IoT projects with an effective starting point that covers the major requirements...
- REST easy: API Design, Evolution and Connection
- RESTful design increases API performance, reduces development effort, and minimizes operational support burden. By following a few best practices and selecting RESTful tooling,... All Government IT White Papers
- It's not too late...Get Your Mobile Questions Answered Live! How can IT provide seamless and secure mobile communications and collaboration for all? Join this live Webcast as IDG asks an expert panel...
- Why do you need an enterprise mobile platform? Today companies must offer great apps that run on a range of devices, and connect to an exploding set of backend data. Appcelerator...
- The Foundation You Need to Build a Better Storage Infrastructure Watch this webcast to hear how you can maximize the economics of your data center by modifying your storage footprint and power usage...
- Building Tomorrow's Data Center with Converged Technologies A number of forces are converging: the cloud, converged infrastructure, big data and fabric architectures to name a few.
- Technology for Everyone A Kansas school district modernizes teaching and learning and paves the way to a one-to-one program with a comprehensive upgrade of its wireless...
- All Government IT Webcasts