Slashdot Mirror

← Back to Stories (view on slashdot.org)

Windows Source Code Seller Arrested

Posted by samzenpus on from the stealing-is-futile dept.

prostoalex writes "New York Times says William O. Genovese Jr., 27, of Meriden, Conn. has been arrested by the Feds for selling source code for Windows NT and Windows 2000 operating systems. It's not perfectly clear whether Genovese was selling the portion of the code that was leaked earlier this year or if he had access to other portions of Windows source code. The timing, though, coincides, as the code leaked in February, the same month NYT claims the entrepreneur obtained the source code."

55 of 275 comments (clear)

  1. United States by Scoria · · Score: 5, Insightful

    It's not perfectly clear whether Genovese was selling the portion of the code that was leaked earlier this year

    It's not perfectly clear whether Genovese was selling [the code] at all. Innocent until proven guilty, despite what our current administration would have you believe.

    --
    Do you like German cars?
    1. Re:United States by Scoria · · Score: 4, Insightful

      More accurate (and perhaps more timeless)

      Innocent until proven guilty, despite what our newspaper editors or television reporters would have you believe.

      Sensational sells...

      You make an excellent point; however, it is becoming increasingly difficult to distinguish government propaganda from that which is created by our popular media. Our "free press" no longer questions, and our independent media is often suppressed by the prodigious corporate entities.

      In fact, one might compare our popular media to an "objective review service" that publishes only corporate press releases. Everything else, such as excessive coverage of the Laci Peterson case, is merely a diversion. But, as your statement implies, it is much more profitable than practicing objective journalism.

      --
      Do you like German cars?
    2. Re:United States by dekemoose · · Score: 2, Insightful

      Let me break this down for you:
      Source code is stolen
      Individual sells source code that was stolen
      Individual ges busted

      The fact that you can get the stolen code somewhere else doesn't make it okay to sell it, even pre-DMCA, pre-PATRIOT, pre-PICK-YOUR-SHITTY-LEGISLATION. He F'ed up. He will now most likely receive a far greater ass reaming than is deserved because he is the current available target, and they don't have anyone else. That sucks, but see my previous point: he F'ed up.

      As for the investigation, would you prefer they took everything from his house, regardless of whether they felt it was relevant to the case? Or would you then piss and moan that they violated his rights by overstepping the bounds of the investigation?

    3. Re:United States by zymurgyboy · · Score: 2, Interesting

      Something that's always fascinated me with regard to the "innocent until proven guilty" concept: You're innocent until you're tried, then you're either guilty or not guilty. It's a situation of "innocence lost" regardless of the outcome.

      --
      If you never make mistakes, it's probably because you're not doing anything.
  2. Need Silent Compiler... by simdude585 · · Score: 2, Funny

    Too bad he didn't have the right compiler, all he got were thousands of thousands of code errors when trying to compile it.

    1. Re:Need Silent Compiler... by kc0re · · Score: 2, Interesting

      I heard a rumor that the code had "BUG BUG" written in it so many times it wasn't funny.. I didn't see the code myself, can anyone verify?

    2. Re:Need Silent Compiler... by Avian+visitor · · Score: 3, Funny

      He should have used rmcc. Real Man's Compiler Collection won't give you any annoying error messages (even when compiling windows source code).

      Our development team switched to rmcc from gcc when the first version was released back a week ago and the change in productivity was unbelievable.

  3. What the article doesn't say... by Awestruckin · · Score: 5, Funny

    ...is that the guy sold the source code printed on soft white double-ply. (unscented.)

    1. Re:What the article doesn't say... by TheRaven64 · · Score: 5, Funny

      They've caught the guy selling the source, now if they could just lock up the ones selling the binaries then the Internet would be a better place for all of us...

      --
      I am TheRaven on Soylent News
  4. Honour amongst thieves by NiceGuyUK · · Score: 2, Insightful

    If there's one thing worse than someone stealing source code and spreading it over the internet, its someone who didn't do the hard work of obtaining it that tries to profit from the actions of others. While I don't condone the original source theft, I hold far greater contempt for those that try and cash in on it.

  5. linux code by Outsider_99 · · Score: 5, Funny

    I heard that people are now leaking the linux code all over the place ;)

    1. Re:linux code by Stevyn · · Score: 2, Funny

      So that's where that kernel panic came from!

    2. Re:linux code by julie-h · · Score: 3, Funny

      Damn! And I just bought a license of Linux for home use.

    3. Re:linux code by Jucius+Maximus · · Score: 3, Funny

      1. Steal Windows Source Code
      2. Attempt to sell Windows Source code
      3. GO TO 5
      4. Profit!
      5. Jail

  6. Wow. by Heem · · Score: 2, Interesting

    Wow, virtually my neighboor. Nothing interesting happens around here. I wonder where he was working and If I can have his job? haha.

    (yes, I'm looking for IT work in Connecticut)

    --
    Don't Tread on Me
  7. What's funnier? by glh · · Score: 5, Funny

    He tried to use Paypal to sell it, or he sold it for only $20?? Apparently, he doesn't place a high value on MS's source code...

  8. Who can really gain from this code though? by gilesjuk · · Score: 2, Interesting

    Commercially driven hackers?
    Business rivals? (alleged code copying)
    Open Source community? (alleged code stealing)

    1. Re:Who can really gain from this code though? by Scoria · · Score: 4, Informative

      Any malware developer could probably derive a benefit. They are unscrupulous, and it is usually more trivial to examine uncompiled software for vulnerabilities.

      --
      Do you like German cars?
    2. Re:Who can really gain from this code though? by Stevyn · · Score: 4, Insightful

      Extortionists.

      You get the code, look for flaws, write a program that exploits the flaws, and say "Hey Microsoft, give us $50,000 or we'll release this new virus that will wipe out every computer running Windows 2000 that's connected to the Internet."

      Now that's assuming such a security flaw could exist...and at this point wouldn't surprise a lot of people around here.

      I doubt business rivals would care much because their only competition right now (wrt Windows 2000) seems to be from people in the open source community. You DO NOT want leaked code appearing in OSS.

    3. Re:Who can really gain from this code though? by RupW · · Score: 2, Insightful

      Anyone who wants to exploit "reverse engineering for interoperation" rules without doing the hard work.

    4. Re:Who can really gain from this code though? by gilesjuk · · Score: 2, Informative

      Well under current laws this wouldn't be allowed. You have to view the code, write down the basic specs on paper and then get someone else to write the code, or "Clean room design" as it's commonly known as:

      http://en.wikipedia.org/wiki/Clean_room_design

    5. Re:Who can really gain from this code though? by jimicus · · Score: 2, Informative

      And as soon as the contents of your hard disk are examined under subpoena, you're screwed. As is the project you worked on. And it's not exactly great for the wider PR for Open Source in general.

      I would consider doing this foolish at best, downright dangerous at worst.

    6. Re:Who can really gain from this code though? by legirons · · Score: 2, Funny

      "You get the code, look for flaws, write a program that exploits the flaws, and say "Hey Microsoft, give us $50,000 or we'll release this new virus that will wipe out every computer running Windows 2000 that's connected to the Internet.""

      Microsoft: "Oh no, not again!"

  9. That's a good start... by Advocadus+Diaboli · · Score: 3, Funny

    ... now lets hope that in the next step we extend the arrest to sellers of Windows binary code.

  10. Disgusting by quigonn · · Score: 5, Insightful

    I find it disgusting that /. (and other news sites) publish the arrested person's full name. This person is not yet proven guilty, and still has a right for privacy and personal integrity - when a British newspaper published the names of convicted child molesters, lynch mobs formed to try to hunt down and kill those people. This should never happen, as it is totally against the concept of a modern constitutional state.

    --
    A monkey is doing the real work for me.
    1. Re:Disgusting by Anita+Coney · · Score: 3, Informative

      Despite what people think, there is no right to privacy or "personal integrity" in the US Constitution. Maybe there should be, but as now there isn't.

      --
      If someone says he and his monkey have nothing to hide, they almost certainly do.
    2. Re:Disgusting by Johan+Veenstra · · Score: 2, Funny

      > This should never happen, as it is totally against
      > the concept of a modern constitutional state.

      Get a grip to reality, we're talking about the US here.

    3. Re:Disgusting by jmcmunn · · Score: 4, Insightful


      Why is this guy special? They can give your name and say you were the "alleged" murderer. Or you were "allegedly" invloved in some sort of crime.

      Lets think about it, the terrorist watch list is nothing more than some "alleged" terrorists for the most part. Not all of them have actually been found guilty of anything. Some have of course, but not all.

      So, no. You don't have to be proved guilty. He can of course sue the pants off everyone who ruins his reputation by filing a civil lawsuit or something if he turns out innocent and people have dragged him through the mud.

      But if they released his full name you can bet they are pretty sure about this one.

    4. Re:Disgusting by Lord+Byron+II · · Score: 5, Insightful

      But if they released his full name you can bet they are pretty sure about this one. But that attitude is precisely the problem. First, our system is about "guilt beyond a reasonable doubt", not "they are pretty sure" and second, that assumption is already tainting potential jurers in to believing the man is guilty long before the trial even begins.

    5. Re:Disgusting by AndroidCat · · Score: 3, Interesting
      The name of a person charged with a criminal offence is a matter of public record. (Except when it's not released to protect minors involved in the case.) The time to get nervous is when names, charges and trials are kept secret.

      And I doubt too many people will be forming a lynch mob over Windows source code.

      --
      One line blog. I hear that they're called Twitters now.
    6. Re:Disgusting by ZB+Mowrey · · Score: 3, Informative
      The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures, shall not be violated...{snip}

      This is generally construed... and has been promulgated by SCOTUS... as a right to privacy.

      --

      Self-referential sigs are rarely entertaining.

    7. Re:Disgusting by blowdart · · Score: 3, Insightful
      How strange. It's perfectly within the "rights" (not that we have a written constitution that documents rights) of UK papers to print the names of those people who have been arrested and charged, except where they are under a certain age. This can, of course, cause problems, the most obvious ones being rape cases where the accuser keeps their anonymity even if is found the case has no merit or was malicious.

      I assume you will be leaving the UK to find this halcyon modern consitutional state.

    8. Re:Disgusting by Lord_Slepnir · · Score: 2, Informative
      It's covered in the 9th amendment

      The enumeration in the Constitution, of certain rights, shall not be construed to deny or disparage others retained by the people.

    9. Re:Disgusting by taxevader · · Score: 2, Insightful

      >

      Unless you are a woman making false accusations of rape to try and make a quick buck. Ask Kobe Bryant, whose name has been dragged through the mud while the accuser remains protected, even after the charge was dismissed.

      --
      -Copyright law #69:Whenever Mickey Mouse is about to enter the public domain,copyrights get extended by 25 years.
    10. Re:Disgusting by stinkpad · · Score: 2, Insightful

      Uh, wrong. This country (USA) was founded on the idea that rights are unalianable. (Granted by GOD, not man. see declaration of independence. ) The Constitution give the Federal Government certain LIMITED powers, and the first 8 of 10 amendments spell out clearly what the government MAY NOT DO. All rights NOT ENUMERATED are retained BY THE PEOPLE, and the STATES, repspectively. Read the 9th and 10th amendment. If the Federal Government needs additional powers, legally the constitution must be amended to give the government those additional powers. Of course, since the people are not vigilant, it is moot. The feds are so fscking out of control with their power, and people dont seem to give a shift. We should have dealt with the abusive laws and power hungry bastards long ago. Now, statements like "such and such is not a right" because it is NOT enumerated is seldom challenged as the bullshit that it is. It shows that the thinking of the people is deteriorated to the point that they believe that rights flow from the government, and we get what they decide to give us, rather than the original notion that man is free to live his life how he sees fit, within the parameters of decency and civility, and the government is on a short leash, to serve us....

    11. Re:Disgusting by NotoriousQ · · Score: 2, Informative

      Publishing someone's name is not an unreasonable search and seizure of a person or his effects.

      What the amendment says is that it takes a warrant or probable cause to do a body search. This also means that airport security can not conduct random searches, because AFAIK that is not a good enough reason. So next time you are searched in the airport, just show them this article. They "must" let you go, but will probably not let you board (their prerogative).

      Unfortunately, I believe it is currently illegal to refuse a search and walk out of the airport. I guess this is something I will test the next time I will do leisure travel. I hope someone has bail for me.

      --
      badness 10000
    12. Re:Disgusting by Bas_Wijnen · · Score: 2, Informative

      our system is about "guilt beyond a reasonable doubt", not "they are pretty sure"

      Well shit, we better tell the police to stop arresting people unless they catch them in the act. How else are they supposed to know if someone's 100% guilty or not?

      The police is allowed to arrest suspects. That has nothing to do with it. Your grantparent said:

      But if they released his full name you can bet they are pretty sure about this one.
      which implies that there is a difference between suspects depending on how sure you are. The judicial system leaves that consideration to the court, so the press shouldn't make it.

      Here (in the Netherlands), the police will not tell family names to the press at all. People who need it can check for a criminal record, and others have no business knowing anything about it. And of course, you don't have a criminal record if you're only suspected.

  11. Ridiculous by methangel · · Score: 2, Interesting

    All Mr. Genovese needed to do was state on the website that the fee was for the bandwidth/donation. Blatantly asking for money for something that is pirated is never a good idea. Especially with a large conglomerate like Microsoft.

  12. re: notice that... by Silvercloud · · Score: 4, Insightful

    that just by possessing source code and attempting to sell it, Mr. Genovese is labeled a hacker, in the first line of the article no less. It's a shame that hackers are the continual blacksheep of the tech world...

  13. Busted for Selling WMD on Ebay !!! by cbelt3 · · Score: 4, Funny
    I'm very happy to hear that this dangerous criminal who was selling the tools necessary to manufacture Weapons of Mass Despair (Windows Software)to the public has been captured and will be properly punished.

    Now if we can just get the person or persons responsible for wasting so much of my productive time with their crappy code....

  14. I can see the sourcecode now... by Gothmolly · · Score: 2, Funny

    10 LET BILL=10
    20 LET STEVE=9
    30 IF BILL>STEVE PRINT "HA HA STEVE IM COOL, LOVE BILL"
    40 GOTO 10

    --
    I want to delete my account but Slashdot doesn't allow it.
    1. Re:I can see the sourcecode now... by Yaztromo · · Score: 2, Funny

      The worst part of it is this code isn't well optimized. I mean you'd hope they'd know enough to not bother to continually loop through the assignments in lines 10 and 20 when they never actually change.

      Just goes to show that if Windows were Open Source, this sort of bug could have been fixed long ago. It's probably existed since MS-DOS v1.0, and explains so very much.

      Yaz.

  15. Why buy stolen code when MS provides it for free?! by Anita+Coney · · Score: 5, Funny

    It's SO easy to get the code legitimately from Microsoft. All you have to do is form a huge country and threaten to convert over to Linux from Windows for security concerns. Ballmer will probably fly out himself with a copy of any source code you desire.

    Now isn't that easier than committing a felony?!

    --
    If someone says he and his monkey have nothing to hide, they almost certainly do.
  16. Genovese = known fool by Anonymous Coward · · Score: 2, Interesting

    His online profile lists William P. Genovese's profession as "hacking bum" and "getting arrested" among his likes.

    That is just what federal authorities did Tuesday, charging Genovese with unlawfully distributing a trade secret, a violation of the Economic Espionage Act, in connection with the alleged sale of a source code for Microsoft Windows NT 4.0 and the Windows 2000 operating systems.

    According to the U.S. Attorney's Office for New York, Genovese, 27, of 1001 Old Colony Road, Apt. 7-3, Meriden, used his Web site, illmob.org, to sell the source code, which Microsoft learned in February was misappropriated and unlawfully released and distributed over the Internet.

    The source code is considered the company's "crown jewels." Unauthorized access to the code can leave the operating systems open to exploitation by computer hackers.

    "Microsoft has not authorized the release of this code and any use of it is illegal. As we have said since February, Microsoft will take all appropriate legal actions to protect our intellectual property," a spokesman for the software giant said. "It's illegal for third parties to post, make available to others, or download this code in question and we take such activity very seriously. Microsoft's source code is copyrighted, and it is an infringement to make an unauthorized copy of that code. Moreover, the source code is a trade secret of Microsoft."

    The same day Microsoft learned that a significant portion of the code had been released, Genovese posted a message on his Web site announcing that he had a copy of the code and was offering it for sale, according to the complaint.

    An investigator hired by Microsoft downloaded a copy of the code in February after submitting a $20 electronic payment to Genovese. In July, an undercover FBI agent also downloaded the code from Genovese after making an electronic payment, the complaint said.

    Federal authorities arrested Genovese before 6 a.m. Tuesday. A spokesman for the U.S. Attorney's Office declined to say where Genovese was arrested. Genovese faces a maximum sentence of 10 years in prison and a fine of $250,000, or twice the gross gain or loss resulting from the offense. Genovese could not be reached for comment Wednesday. The investigation into the release of the code is ongoing, the U.S. Attorney's Office said.

    Genovese was convicted in March 2003 of eavesdropping and was sentenced to two years probation. That charge stemmed from his gaining unauthorized access to computers in Connecticut in 2000. According to the complaint, Genovese had infected victims' computers with a virus that allowed him to remotely access them, recording their activities, taking control of the machines and sending instant messages to the victims, telling them what he was doing.

  17. Along with the code... by Anonymous Coward · · Score: 5, Funny

    were the comments:

    // Did stuff here when drunk,
    // seems to work, don't change!

    // Obfusticate code and use really
    // old librarys, this should annoy
    // some Wine devs muhahaha

    // Struck a deal with Symantec to
    // leave this vunerability in, don't
    // change!

  18. earlier conviction by Deacon+Jones · · Score: 3, Funny
    In March 2003, he was convicted of eavesdropping

    *sigh* I wish they could convict my mother-in-law of this.

    --
    I pulled a jack move to cop this sig
  19. The Feds? by Anonymous Coward · · Score: 2, Interesting

    Since when FBI arrests people for copyright infringement or trade secrets violation, both of which are civil offences, not even criminal and certainly not a federal crime?

  20. Here's his website ... by Draoi · · Score: 2, Informative
    illmob.org

    Interesting stuff ... shopping at Ikea the day before his arrest, oblivious to the impending doom.

    --
    Alison

    "It is a miracle that curiosity survives formal education." - Albert Einstein

  21. Fraud charge to be added as well by seniorcoder · · Score: 4, Funny

    Inside sources indicate there will be a fraud charge added: he was representing that this was the code of an operating system.

  22. trade secret != copyright by mangu · · Score: 3, Informative
    Microsoft's source code is copyrighted, ... Moreover, the source code is a trade secret of Microsoft.


    OK, make up your mind, which is it, a trade secret or a copyright? Because copyrighted works are intended to, eventually, become public domain, one cannot copyright a trade secret. Or, at least, that's more or less how it's written in the U.S. Constitution.

  23. He should be punished by beforewisdom · · Score: 2, Funny

    ...for distributing Microsoft Source Code.

    That is one of the biggest causes of viruses and technical failures around. He is just spreading it!

  24. Open Source vs Anonymous Source by 4of12 · · Score: 3, Insightful

    You can see where this is going.

    Recapping:

    If you thought it was difficult doing a thorough Theo code audit for security was a formidable task, even given the open source code, then imagine the difficulty of looking through all of the source and wondering if any of it infringes on anyone's claimed "Intellectual Property". There aren't any options to diff and grep to complete such a task, AFAICT. The other half of the comparison remains under lock and key, except to those with rights to the IP.

    Linus' policy of requiring signed patch contributions to the Linux source looks more and more like a good and proper defensive measure. I'd feel better if other high profile FOSS projects had systems of signing patches and an examinable web of trust between the major contributors. Go ahead and accept patches, but let each contributor sign them.

    The whole issue of IP indemnification reeks of a deliberate strategy to slow the growth of free and open source deployments by sowing doubt into the minds of decision makers considering use of FOSS for their business but must consider risk in their decision (and a limited amount of time and information on which to base a decision).

    Transparency should make FOSS less IP infringing quickly compared to closed source, where IP infringements can be compiled away from easy recognition by the IP owners.

    --
    "Provided by the management for your protection."
  25. In other news.... by DaneelGiskard · · Score: 2, Funny

    ...someone was arrested for selling shit! ...oh..wait..

  26. one bad dude by bani · · Score: 2, Interesting

    27 years old, connecticut.

    ok...

    http://illmob.org/staff.html

    that means it's "illwill", self-described "hacking bum". let's see what he claims to have written:

    http://illmob.org/releases.html

    quite a lot of malicious software he's written there... seems like selling stolen source code fits right in with his ethical standards and moral code.

  27. Wishful thinking by grouse · · Score: 2, Informative

    You can copyright a trade secret. You can't patent a trade secret, because patenting something necessarily means it is published, and therefore no longer secret.