Feeds

Wi-Fi whistle blower faces criminal charges

Cracked a network to show how easy it was

  • alert
  • submit to reddit

Internet Security Threat Report 2014

A North Carolina man faces criminal charges after his attempt to expose the insecurity of his local medical facility's wireless network landed him in hot water with the authorities.

Clayton Taylor Dillard, 29, an information security consultant, is accused of breaking into Wake Internal Medicine Consultants' computer system and illegally accessing information of hundreds of patients.

Dillard is charged with one felony count of computer trespass, one felony count of unlawful computer access and one misdemeanor count of computer trespass, according to a report by local TV station WRAL.

After Dillard allegedly broke into the hospital's network he reportedly sent WRAL a letter containing "copies of cheques and insurance forms for patients", accompanied by the note "these guys are a bunch of bozos". He also reportedly contacted patients and insurance companies informing them of the clinic's allegedly lax security.

Investigators say Dillard's motives are irrelevant to their investigation.

"It doesn't matter. He wasn't authorised to do what he did, and what he did was illegal," Sergeant Gary Hinnant, who heads the Cyber Crimes Unit for the Raleigh Police Department, told WRAL.

Members of the FBI's Hi-Tech Task Force are also involved in the investigation, and federal computer crime charges may yet be filed in the case.

Wake Internal Medicine is playing down the incident. Executive Director Steve Lauhoff told WRAL that "actual patient medical records were never accessed" as a result of the security breach to its systems. It says that it has implemented improved security procedures to prevent further intrusions.

Meanwhile, Dillard was released from custody on Tuesday after posting $1000 bail. He is due to return to court at the end of the month.

Dillard's case follows that of 'ethical hacker' Stefan Puffer, who was accused of breaking into the wireless network of a Texan court last year. Puffer was acquitted of all charges against him in February after a jury accepted his arguments that he didn't intentionally cause any damage to Harris County district clerk's wireless computer network. ®

Related Stories

Ethical wireless hacker is innocent
Ethical hacker faces war driving charges
I'm working for the FBI, claims accused hacker
WLAN security is still work in progress

Internet Security Threat Report 2014

More from The Register

next story
George Clooney, WikiLeaks' lawyer wife hand out burner phones to wedding guests
Day 4: 'News'-papers STILL rammed with Clooney nuptials
Shellshock: 'Larger scale attack' on its way, warn securo-bods
Not just web servers under threat - though TENS of THOUSANDS have been hit
Apple's new iPhone 6 vulnerable to last year's TouchID fingerprint hack
But unsophisticated thieves need not attempt this trick
PEAK IPV4? Global IPv6 traffic is growing, DDoS dying, says Akamai
First time the cache network has seen drop in use of 32-bit-wide IP addresses
Oracle SHELLSHOCKER - data titan lists unpatchables
Database kingpin lists 32 products that can't be patched (yet) as GNU fixes second vuln
Researchers tell black hats: 'YOU'RE SOOO PREDICTABLE'
Want to register that domain? We're way ahead of you.
Stunned by Shellshock Bash bug? Patch all you can – or be punished
UK data watchdog rolls up its sleeves, polishes truncheon
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.