New York Times hacker Adrian Lamo gets home detention
He was also sentenced to two years' probation and fined more than $64,900
IDG News Service - Adrian Lamo, who gained a reputation as the "homeless hacker" for his itinerant lifestyle, will be considerably easier to find -- at least for the next few months. Lamo was sentenced yesterday to six months of home confinement after pleading guilty in January to charges that he broke into the internal computer network of The New York Times Co.
Lamo, 23, also was sentenced to two years of probation and ordered to pay more than $64,900 in restitution, after he hacked into the New York Times internal computer network, accessed and modified confidential databases and used the paper's LexisNexis account to conduct research, according to a spokesman for the U.S. Attorney's Office for the Southern District of New York.
In an appearance in Manhattan federal court in January before Judge Naomi Reice Buchwald, Lamo acknowledged hacking into the Times' network in February 2002 and accessing a database containing personal information on more than 3,000 individuals who contributed editorials to the paper's Op-Ed page. Lamo also acknowledged setting up user accounts through the i>Times account with the LexisNexis online information service, which Lamo used for more than 3,000 searches over a three-month period, according to information provided by the U.S. attorney's office.
Lamo faced a statutory maximum of up to five years in prison and a fine of $250,000 for his crimes, according to a statement by the U.S. attorney's office at the time of his conviction. The restitution includes $18,500 to cover the cost of the LexisNexus searches, said Sean Hecker, Lamo's attorney. The Times initially estimated those costs at about $300,000.
During his probation, Lamo will have restricted access to computers and e-mail and will be monitored by probation officers, Hecker said.
A California resident, Lamo will live at his parents' home in Sacramento during the home detention. He will be allowed to leave home to attend school but probably will have to wear a monitoring bracelet that tracks his movements throughout the detention period.
Lamo gained notoriety long before hacking The New York Times for his rootless life on the streets of San Francisco and for his skill in penetrating the networks of high-profile companies such as Yahoo Inc., Microsoft Corp. and WorldCom Inc.
Lamo confessed to the Times break-in during an interview with Securityfocus.com, a computer security news Web site, in February 2002. That confession prompted an internal investigation by the Times that uncovered evidence of Lamo's activities, and resulted in a case being opened by the FBI.
Before turning himself in to authorities in Sacramento, Lamo spent a number of days in hiding afterthe government issued a warrant for his arrest in September 2003.
"I think the sentence is fair and just and the resolution is a good one. Adrian is looking forward to putting all this behind him," Hecker said.
- Step Out of the Bull's-Eye Learn about the evolution of targeted attacks, the latest in security intelligence, and strategic steps to keep your business safe.
- Using Cyber Insurance and Cybercrime Data to Limit Your Business Risk This paper examines the challenges of understanding cyber risks, the importance of having the right cyber risk intelligence, and how to use this...
- 5 Tips to Secure Small Business Backdoors in the Enterprise Supply Chain This paper examines the insecurity of the small businesses in the supply chain and offers tips to close those backdoors into the enterprise.
- Comprehensive Advanced Threat Defense The hot topic in the information security industry these days is "Advanced Threat Defense" (ATD). This paper describes a comprehensive, network-based approach to...
- Live Webcast Security Vulnerabilities Associated With Having Local Administrator Privileges Viewfinity will demonstrate how removing admin rights and granularly managing privileges at the application level reduces the attack surface.
- Security Vulnerabilities Associated With Having Local Administrator Privileges Viewfinity will demonstrate how removing admin rights and granularly managing privileges at the application level reduces the attack surface.
- Keep Servers Up and Running and Attackers in the Dark An SSL/TLS handshake requires at least 10 times more processing power on a server than on the client. SSL renegotiation attacks can readily... All Cybercrime and Hacking White Papers | Webcasts