Feeds

Brit student locked up for Facebook source code hack

Unfriended, unliked, unfree

High performance access to file storage

A British computer science student was jailed for eight months on Friday for hacking into the internal network at Facebook.

Glenn Mangham, 26, previously pleaded guilty to hacking into the social networking site between April and May last year. The incident created a flap at Facebook amid fears that hackers were attempting to extract the software blueprints of the website.

Mangham slurped Facebook's source code, hoping to work on it at some later date for the web behemoth. The prosecution accepted that Mangham's actions were not maliciously intended but said they were unauthorised. The student attempted to hide his tracks, a factor that was taken by the court as evidence that he knew what he was doing was wrong.

The intrusion was detected by Facebook and reported to the FBI, which passed the case over to the British police. They traced the hack back to Mangham's parents' house in York, leading to a raid last June and the subsequent prosecution of the undergraduate geek. Mangham claimed he had been motivated by a desire to help Facebook improve its security, something he had previously done with Yahoo!

The prosecution disputed this interpretation of events, arguing Mangham's actions were clearly malign. "He acted with determination and undoubted ingenuity and it was sophisticated, it was calculating," prosecuting counsel Sandip Patel told London's Southwark Crown Court. "This represents the most extensive and grave incident of social media hacking to be brought before the British courts."

In sentencing, Judge Alistair McCreath told Mangham his actions were anything but far from harmless and had "real consequences and very serious potential consequences" for Facebook, the BBC reports.

"You and others who are tempted to act as you did really must understand how serious this is," the judge said. "The creation of that risk, the extent of that risk and the cost of putting it right mean at the end of it all I'm afraid a prison sentence is inevitable."

Facebook stressed that no user data was involved in the breach, which cost the social network an estimated $200,000 in investigation costs and other expenses.

"We applaud the efforts of the Metropolitan Police and the Crown Prosecution Service in this case, which did not involve any compromise of personal user data," the social network said in a statement. "We take any attempt to gain unauthorised access to our network very seriously, and we work closely with law enforcement authorities to ensure that offenders are brought to justice." ®

High performance access to file storage

More from The Register

next story
Android engineer: We DIDN'T copy Apple OR follow Samsung's orders
Veep testifies for Samsung during Apple patent trial
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
EFF: Feds plan to put 52 MILLION FACES into recognition database
System would identify faces as part of biometrics collection
Big Content goes after Kim Dotcom
Six studios sling sueballs at dead download destination
Alphadex fires back at British Gas with overcharging allegation
Brit colo outfit says it paid for 347KVA, has been charged for 1940KVA
Jack the RIPA: Blighty cops ignore law, retain innocents' comms data
Prime minister: Nothing to see here, go about your business
Singapore decides 'three strikes' laws are too intrusive
When even a prurient island nation thinks an idea is dodgy it has problems
MtGox chief Karpelès refuses to come to US for g-men's grilling
Bitcoin baron says he needs another lawyer for FinCEN chat
Banks slap Olympus with £160 MEEELLION lawsuit
Scandal hit camera maker just can't shake off its past
France bans managers from contacting workers outside business hours
«Email? Mais non ... il est plus tard que six heures du soir!»
prev story

Whitepapers

Mainstay ROI - Does application security pay?
In this whitepaper learn how you and your enterprise might benefit from better software security.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.