The Register® — Biting the hand that feeds IT

Feeds

Brit student locked up for Facebook source code hack

Unfriended, unliked, unfree

By John Leyden, 20th February 2012
  • print
  • alert

Agentless Backup is Not a Myth

A British computer science student was jailed for eight months on Friday for hacking into the internal network at Facebook.

Glenn Mangham, 26, previously pleaded guilty to hacking into the social networking site between April and May last year. The incident created a flap at Facebook amid fears that hackers were attempting to extract the software blueprints of the website.

Mangham slurped Facebook's source code, hoping to work on it at some later date for the web behemoth. The prosecution accepted that Mangham's actions were not maliciously intended but said they were unauthorised. The student attempted to hide his tracks, a factor that was taken by the court as evidence that he knew what he was doing was wrong.

The intrusion was detected by Facebook and reported to the FBI, which passed the case over to the British police. They traced the hack back to Mangham's parents' house in York, leading to a raid last June and the subsequent prosecution of the undergraduate geek. Mangham claimed he had been motivated by a desire to help Facebook improve its security, something he had previously done with Yahoo!

The prosecution disputed this interpretation of events, arguing Mangham's actions were clearly malign. "He acted with determination and undoubted ingenuity and it was sophisticated, it was calculating," prosecuting counsel Sandip Patel told London's Southwark Crown Court. "This represents the most extensive and grave incident of social media hacking to be brought before the British courts."

In sentencing, Judge Alistair McCreath told Mangham his actions were anything but far from harmless and had "real consequences and very serious potential consequences" for Facebook, the BBC reports.

"You and others who are tempted to act as you did really must understand how serious this is," the judge said. "The creation of that risk, the extent of that risk and the cost of putting it right mean at the end of it all I'm afraid a prison sentence is inevitable."

Facebook stressed that no user data was involved in the breach, which cost the social network an estimated $200,000 in investigation costs and other expenses.

"We applaud the efforts of the Metropolitan Police and the Crown Prosecution Service in this case, which did not involve any compromise of personal user data," the social network said in a statement. "We take any attempt to gain unauthorised access to our network very seriously, and we work closely with law enforcement authorities to ensure that offenders are brought to justice." ®

Magic Quadrant for Enterprise Backup/Recovery

COMMENTS

House Rules Send Corrections
All Reader Comments (97)
Highly Rated
Blofeld's Cat

Hmm...

Without getting into the black, grey or white hat issue...

It's nice to see somebody accused of hacking a US computer system, from the UK, tried and sentenced in the UK.

23
0
Eponymous Cowherd

Great British Justice?

Given that:-

The prosecution accepted that Mangham's actions were not maliciously intended but said they were unauthorised."

8 months in the slammer seems a bit extreme seeing that I regularly read reports in the local rag of muggers getting community service and probation, even for repeat offences.

It seems that crimes committed against "big business" by the little people is viewed by the courts as much more serious than crimes committed against the little people by big business.

Undergraduate hacks Fartbook. That's serious. Have some jail time.

BT Hacks 1000's of customers (Phorm). Nothing to see here. Move along.

Joe blogs fiddles his income tax for a few £hundred. That's serious. Have some jail time.

Vodafone fiddles its tax bill to the tune of £6 billion? We'll forget about that, shall we?

19
3
Peter2
Reply Icon

Re: Re: Proxies

I beleive that the correct method has always been NEVER to hack a network that you aren't being paid to do penetration testing on, with signed paperwork attesting that from their network manager.

Unless your willing to do some jail time if and when entire teams of people just as good or better than you are decide to track you down and pass your info to the police.

16
0

More from The Register

breaking news
Number of cops abusing Police National Computer access on the rise
Only a telegram from the Queen can get you off it
136
breaking news
Jailed LulzSec hacker Cleary coughs to child porn images, will be freed soon
Some images of infants as young as six months
68
NSA whistleblower to tech firms, Obama: 'Grow a pair!'
Ed Snowden: Email tracking grabs 'IPs, raw data, content, headers, attachments, everything'
66
NSA: We COULD track you by your phone ... if we WANTED to
Honestly, too much work, can't be bothered
54
Google flings another £1m at online child sex abuse vid CRACKDOWN
See, see, we're trying, ad giant tells Daily Mail UK.gov
41
breaking news
NSA PRISM-gate: Relax, GCHQ spooks 'keep us safe', says Cameron
Whatever they are up to, it's all above board, we're told
90
PRISM snitch claims NSA hacked Chinese targets since 2009
Snowden suddenly looks safer in Hong Kong after revelations
33
SCO vs. IBM battle resumes over ownership of Unix
Zombie lawsuit back and wants to suck the brains out of Linux
119
breaking news
Google mounts legal challenge to surveillance gag orders
Argues free speech trumps security secrecy
37
breaking news
US chief spook: Look, we only want to spy on 6.66 BEELLLION of you
Americans assured they are not in the NSA's sights
68