Feeds

FBI treats ‘Good Samaritan’ as public enemy

Point out a security flaw and face a hacking felony

  • alert
  • submit to reddit

Secure remote control for conventional and virtual desktops

A 'Good Samaritan' who alerted a firm about a serious security flaw on their Web site has become the subject of a criminal investigation.

Linuxfreak reports that Brian West, a 24-year-old support worker with Oklahoma-based ISP Cwis, came across a security problem with the Poteau Daily News Web site during the course of helping a colleague prepare an ad for the site.

While using Microsoft FrontPage, West discovered the site required no authentication to edit any file on its servers. Naturally concerned, he contacted the newspaper.

However, instead of thanking West for his help, the editor-in-chief of the paper, Wally Burchett, decided to tape West's explanation of the problem and report him to the police.

That's when the Feds got involved. While officers posing as potential customers visited West's offices, others, pretending to be Poteau Daily News employees, got him to run through the security problem on the paper's server.

As soon as he did that another FBI agent arrived on the scene and served a warrant on the understandably shocked West, who neither damaged or defaced the site, Linuxfreak reports. Of course, we haven't heard the other side of the story here, but it all seems very fishy to us.

West troubles began in February 2000 but the case against him continues to grind on.

The FBI wants him to accept a felony conviction and five years' probation. West continues to maintain his innocence. He is trying to raise funds to pay for a lawyer in preparation Grand Jury hearing on 5 September. ®

Related Links

Documents about the case

Related Stories

Dmitry haunts FBI-chief's confirmation
Mitnick joins Vegas hack investigation
Justice mysteriously delayed for 'Melissa' author

Remote control for virtualized desktops

More from The Register

next story
Regin: The super-spyware the security industry has been silent about
NSA fingered as likely source of complex malware family
Why did it take antivirus giants YEARS to drill into super-scary Regin? Symantec responds...
FYI this isn't just going to target Windows, Linux and OS X fans
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
HACKERS can DELETE SURVEILLANCE DVRS remotely – report
Hikvision devices wide open to hacking, claim securobods
'Regin': The 'New Stuxnet' spook-grade SOFTWARE WEAPON described
'A degree of technical competence rarely seen'
Astro-boffins start opening universe simulation data
Got a supercomputer? Want to simulate a universe? Here you go
You stupid BRICK! PCs running Avast AV can't handle Windows fixes
Fix issued, fingers pointed, forums in flames
prev story

Whitepapers

Driving business with continuous operational intelligence
Introducing an innovative approach offered by ExtraHop for producing continuous operational intelligence.
Why CIOs should rethink endpoint data protection in the age of mobility
Assessing trends in data protection, specifically with respect to mobile devices, BYOD, and remote employees.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Protecting against web application threats using SSL
SSL encryption can protect server‐to‐server communications, client devices, cloud resources, and other endpoints in order to help prevent the risk of data loss and losing customer trust.