Feeds

Acxiom database hacker jailed for 8 years

Florida spammer off to slammer

Protecting against web application threats using SSL

A Florida man has been jailed for eight years after being convicted of stealing vast amounts of personal information from Acxiom, one of the world's largest database companies, in order to inflate the value of his spamming firm.

Scott Levine, 46, of Boca Raton, Florida, was found guilty by an Arkansas jury in August of 120 counts of unauthorised access of a protected computer, two counts of access device fraud, and one count of obstruction of justice, the Justice Department announced. The former head of defunct bulk mail outfit Snipermail.com was cleared of 14 conspiracy charges and money laundering at the end of a trial that lasted almost a month.

Prosecutors described the case as the "largest ever invasion and theft of personal data" ever tried. In court, Levine and Snipermail.com were accused of stealing 1.6bn customer records containing details of the names, addresses and emails of millions of Americans from Acxiom databases during a total of 137 hack attacks between January and July 2003. He was not accused of involvement in identity theft but some of the data was resold to a broker for use in a spamming campaign.

Weak access controls allowed Snipermail.com to illegally access reams of data thanks to a business relationship between Acxiom and one of Snipermail's clients. Snipermail.com should have only been given strictly limited access to Acxiom's databases, but instead was allowed the run of the lan(d). In a DoJ statement, prosecutors said Levine used "sophisticated decryption software to illegally obtain passwords and exceed his authorised access to Acxiom databases". The purloined data was used to inflate Snipermail's contact list and make it a more attractive target for acquisition.

Evidence of Snipermail's alleged assault was discovered by investigators probing a separate security breach at Acxiom. Daniel Baas, 25, of ZCincinnati, Ohio, pleaded guilty to that attack in December 2003. He was jailed for 45 months in March 2005.

"The investigation of cybercrime, particularly as it relates to computer intrusion, is one of the FBI's top priorities," FBI special agent William C Temple said. "Working with our counterparts from the US Secret Service, we were able to quickly recover the stolen data and prevent its use in a wide range of fraud schemes. The success of this investigation should send a strong message to those who might consider becoming involved in similar criminal activity."

Acxiom clients include 14 of the 15 biggest credit card companies, seven of the top ten auto manufacturers and five of the top six retail banks. The company also analyses consumer databases for multinationals such as Microsoft, IBM, AT&T and General Electric.

Arkansas-based Acxiom has overhauled security since the attacks were uncovered. ®

Reducing the cost and complexity of web vulnerability management

More from The Register

next story
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Jihadi terrorists DIDN'T encrypt their comms 'cos of Snowden leaks
Intel bods' analysis concludes 'no significant change' after whistle was blown
Home Depot: 56 million bank cards pwned by malware in our tills
That's about 50 per cent bigger than the Target tills mega-hack
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
China hacked US Army transport orgs TWENTY TIMES in ONE YEAR
FBI et al knew of nine hacks - but didn't tell TRANSCOM
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.