Feeds

How the Feds shook hands with an internet pedophile

Crime and punishment in the digital age

  • alert
  • submit to reddit

Beginner's guide to SSL certificates

The Flyers

The #ssgroup leaders grew increasing desperate. They didn't yet know much about Digerati, other than he was using the University of Pennsylvania computer system for internet access. Incredulous that university authorities didn't respond to three separate warnings that one of their students was using their computer system to prey on young boys, they decided to make their case publicly.

Members of the group hacked into one of the websites Digerati was using to host his webcam chats. They copied images and excerpts from the chats and transferred them to a flyer headlined "Internet child predator." One of the members then hacked the university's print servers and caused the flyer to spontaneously print on hundreds of machines across campus.

Around the same time, the group also hacked into the university's internal email system and siphoned thousands of emails in an attempt to learn more about Digerati. They hit the jackpot. Not only did they discover that the hacker was a student named Ryan Goldstein, they also learned he was under suspicion for a computer breach in February 2006 that brought down a server at the university's SEAS, or School of Engineering & Applied Science.

As they sifted through the messages, it became clear that school administrators had taken notice of the mysterious flyer and were considering whether Goldstein was guilty of more than just hacking the SEAS server.

Among the administrators was Helen Anderson, a senior director in the SEAS IT group.

"Though the flyers themselves apparently weren't his doing, they may be evidence that there was a separate conduct violation by Ryan at Kings Court," Anderson wrote in a group email, referring to the dorm building where Goldstein lived.

Anderson's message was part of 245 pages of investigation-related email that was posted on the internet. University officials declined to comment on the breach, but an FBI spokesman confirmed the authenticity of several of the messages. University officials also denied requests to discuss whether Goldstein breached the university's code of conduct. (He is currently attending classes at the Philadelphia-based college).

Choosing a cloud hosting partner with confidence

Next page: The Feds

More from The Register

next story
SMASH the Bash bug! Apple and Red Hat scramble for patch batches
'Applying multiple security updates is extremely difficult'
Apple's new iPhone 6 vulnerable to last year's TouchID fingerprint hack
But unsophisticated thieves need not attempt this trick
Hackers thrash Bash Shellshock bug: World races to cover hole
Update your gear now to avoid early attacks hitting the web
Oracle SHELLSHOCKER - data titan lists unpatchables
Database kingpin lists 32 products that can't be patched (yet) as GNU fixes second vuln
Who.is does the Harlem Shake
Blame it on LOLing XSS terroristas
Researchers tell black hats: 'YOU'RE SOOO PREDICTABLE'
Want to register that domain? We're way ahead of you.
Stunned by Shellshock Bash bug? Patch all you can – or be punished
UK data watchdog rolls up its sleeves, polishes truncheon
Ello? ello? ello?: Facebook challenger in DDoS KNOCKOUT
Gets back up again after half an hour though
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.