Feeds

Notorious phone phreaker gets 11 years for swatting

End of the (party) line

Providing a secure and efficient Helpdesk

A notorious phone phreaker has been sentenced to more than 11 years in prison after admitting he took part in a scheme that hacked phone systems to fake emergency 911 calls that sent teams of heavily armed police to the home of unsuspecting victims.

Matthew Weigman, 19, of Massachusetts received 135 months for his part in one attack, which is known as swatting because it is intended to elicit visits by police SWAT teams. Known by the handle "Hacker" and "Little Hacker," the blind youth was a well-known fixture in phone party line groups, which allowed a band of geographically dispersed hackers to congregate and plan their attacks.

In February, Weigman pleaded guilty to one count of conspiracy to retaliate against a witness, victim or informant and one count of conspiracy to commit access device fraud. He admitted that he retaliated against a Verizon investigator who reported his phone phreaking activities to the FBI.

In April and May 2008, he and others made false reports to Verizon employees in an attempt to get the investigator fired, prosecutors said. Weigman and his conspirators later drove to the investigator's residence in an attempt to frighten him.

Weigman was already aware that he was the target of an FBI probe, following a raid on his home. But that didn't stop him from continuing a hacking spree designed to intimidate his enemies and give him access to free phone services.

In April 2008, for instance, he used the identities and authorization codes of Verizon employees to reactivate a phone line he had obtained by fraud. He also eavesdropped on various Verizon employees in an attempt to harass them and get information about the status of the investigation pending against him.

Weigman also admitted that in 2006 he helped plan a swatting attack against the father of a party line user. The hackers made it appear to emergency services employees that the call originated from the victim's home. The caller identified himself as the victim and claimed to have shot and killed members of his family and was holding hostages.

Weigman became the target of a federal investigation in 2005 when he was just 15, after sending a police SWAT team to the Colorado house of a girl who refused to participate in phone sex sessions. The Feds considered using Weigman as an informant until they learned he was hacking AT&T on the side. His handler at the time said he couldn't go three days without attempting a hack of one sort or another. Wired.com's Kevin Poulsen has chronicled Little Hacker several times including here and here.

A second defendant, 23-year-old Sean Paul Benton, was sentenced to 18 months in prison after pleading guilty to one count of conspiring to obstruct justice. A third defendant, Carlton Nalley of Virginia, pleaded guilty to the same charges as Weigman, but failed to appear in court last week. ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
SMASH the Bash bug! Apple and Red Hat scramble for patch batches
'Applying multiple security updates is extremely difficult'
Shellshock: 'Larger scale attack' on its way, warn securo-bods
Not just web servers under threat - though TENS of THOUSANDS have been hit
Apple's new iPhone 6 vulnerable to last year's TouchID fingerprint hack
But unsophisticated thieves need not attempt this trick
Oracle SHELLSHOCKER - data titan lists unpatchables
Database kingpin lists 32 products that can't be patched (yet) as GNU fixes second vuln
Who.is does the Harlem Shake
Blame it on LOLing XSS terroristas
Researchers tell black hats: 'YOU'RE SOOO PREDICTABLE'
Want to register that domain? We're way ahead of you.
Stunned by Shellshock Bash bug? Patch all you can – or be punished
UK data watchdog rolls up its sleeves, polishes truncheon
prev story

Whitepapers

A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.