Feeds

Judge rebukes 'World's No. 1 Hacker'

Quashes 'extremely troubling' subpoenas

  • alert
  • submit to reddit

SANS - Survey on application security programs

A judge in Georgia has scolded a controversial security figure for improperly subpoenaing Yahoo! and Twitter in an attempt to get user names and passwords belonging to some 25 researchers.

Gregory D. Evans, CEO of Ligatt Security and the self-proclaimed "World's No. 1 Hacker", sought the the highly personal information in a lawsuit he brought last year accusing the researchers of bashing his company's penny stock. Over the past year, shares have fallen from about $2.80 to $0.0004, public information shows. Most of that precipitous drop happened prior to claims that surfaced in June that huge chunks of an e-book purportedly written by Evans were lifted from other hacking manuals without the original authors' permission.

The suit named Chris John Riley, Ben Rothke, and other security professionals who publicly claimed their works were plagiarized. Shortly after it was filed, attorneys for Evans subpoenaed Yahoo! and Twitter for information that included the defendants' usernames, passwords, emails sent and received, and blog postings. Last week, the judge hearing the case squashed the subpoenas and said they violated several provisions of Georgia law.

“The court finds it extremely troubling that plaintiffs issued and served subpoenas to which plaintiffs' counsel had no access for such a long period of time,” Karen E. Beyers, superior court judge for Georgia's Gwinnett County wrote. Under the Official Code of Georgia Annotated, she said, Randolph Morris and the 24 other people named in the suit were entitled to copies.

She also uncovered other legal deficiencies, including their inclusion of the wrong case number and failure to notify plaintiffs that two subpoenas had been filed rather than just one. What's more, Beyers said the subpoenas were “overbroad” because they sought passwords and emails.

“This is exceedingly overbroad, and is also wholly inconsistent with the representations of plaintiffs' counsel regarding the scope of the subpoenas,” she wrote.

Beyers went on to dismiss Morris from the lawsuit because she found the California resident had no ties to Georgia. She scheduled a hearing for March 1 to decide how much Evans should pay in sanctions for the improper subpoenas.

Shortly after filing his lawsuit in July, Evans cast himself as the aggrieved party.

“We are sure that once this total investigation is over we will find that not only were these people bashers, but they were also day traders and market makers,” Evans was quoted in a press release. “We are prepared to go after them due to the fact that they took part in manipulating the stock,” says Evans.

Evans has regularly appeared as a security expert on Fox News, Bloomberg TV, and CNN. ®

Combat fraud and increase customer satisfaction

More from The Register

next story
Parent gabfest Mumsnet hit by SSL bug: My heart bleeds, grins hacker
Natter-board tells middle-class Britain to purée its passwords
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Web data BLEEDOUT: Users to feel the pain as Heartbleed bug revealed
Vendors and ISPs have work to do updating firmware - if it's possible to fix this
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Call of Duty 'fragged using OpenSSL's Heartbleed exploit'
So it begins ... or maybe not, says one analyst
prev story

Whitepapers

Designing a defence for mobile apps
In this whitepaper learn the various considerations for defending mobile applications; from the mobile application architecture itself to the myriad testing technologies needed to properly assess mobile applications risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.