Changing Times

It's interesting how the Adrian Lamo story has changed over the past 18 months or so \["New York Times hacker Adrian Lamo Gets Home detention". I remember seeing this guy on TechTV's The Screensavers. Then, after the warrant was issued, they did a phone interview with him while he was on the lam, so to speak. Back then, the story we heard was different: that Lamo had hacked into the Times, made a few minor changes to prove he was there, and then notified the Times that he'd hacked into their network so they could fix the security flaws. There was no mention of LexisNexis back then. The story was that he'd done the same thing to other companies (such as Yahoo), which had thanked him for his help. He was definitely portrayed as a "white hat" hacker.

So what's the true story, I wonder? In fact, Computerworld posted: "His surrender followed reports last week that the FBI was investigating Lamo's alleged unauthorized intrusion into the internal networks of The New York Times Co. in February 2002. The Times learned of the break-in after Lamo contacted the company through SecurityFocus reporter Kevin Poulsen, according to Christine Mohan, a spokeswoman for the newspaper. Lamo frequently trespassed on the networks of prominent companies, uncovering security holes and accessing sensitive information. He then informed the companies of his exploits and often worked with them, as a consultant, to close the holes." But in the recent story, we read: "Lamo confessed to the Times break-in during an interview with Securityfocus.com, a computer security news Web site, in February 2002. That confession prompted an internal investigation by the Times that uncovered evidence of Lamo's activities, and resulted in a case being opened by the FBI." But no mention of the fact that Lamo had initiated the contact via SecurityFocus. History is indeed written by the victors, eh?

Peter Smith
Web developer
Computerworld Inc.
Framingham, Mass.

Copyright © 2004 IDG Communications, Inc.

  
Shop Tech Products at Amazon