Slashdot Mirror

← Back to Stories (view on slashdot.org)

Another LulzSec Member Arrested

Posted by Unknown on from the no-one-went-to-prison-in-wargames dept.

hypnosec writes "Raynaldo Rivera, aged 20, suspected member of LulzSec, has been arrested for his alleged role in the breach of Sony Pictures Entertainment last year. The first suspect, Cody Kretsinger, has already pleaded guilty and was indicted last September according to the FBI. Rivera, who also goes by names 'neuron,' 'royal,' and 'wildicv', surrendered to authorities and he has been charged with conspiracy and unauthorized impairment of a protected computer. The LulzSec member may be facing 15 years in prison if convicted." On the member who pleaded guilty: "Kretsinger, who pleaded guilty to the same two charges now facing Rivera, is slated to be sentenced on October 25. A federal prosecutor said he would likely receive substantially less than the 15-year maximum prison term carried by those offenses."

37 of 211 comments (clear)

  1. Not so many lulz now by Viol8 · · Score: 5, Insightful

    Hopefully with these arrests and others a few months back, the keyboard warriors out there will start to realise that they're not untraceable and can't just do as they damn well please on the internet.

    I'm no fan of Sony but I hope this guy is banged up for a long time for stealing all that private data. And before any wannabe heros mod me down you might want to consider that YOUR data could be part of it.

    1. Re:Not so many lulz now by __aaltlg1547 · · Score: 3, Interesting

      And before any wannabe heros mod me down you might want to consider that YOUR data could be part of it.

      Or next.

    2. Re:Not so many lulz now by fm6 · · Score: 5, Insightful

      I come at it from the opposite direction: I'm no fan of LulzSec, but Sony deserves to have its toenails removed for being so bloody sloppy about security.

    3. Re:Not so many lulz now by jellomizer · · Score: 4, Insightful

      You don't have to be a fan of Sony, to see what these guys are doing is wrong and criminal.

      Sony says we we want to run our business this way. The hackers go we don't like it. So except for just informing the public on their opinion (freedom of speech) they bring down the site, because for some reason we think that Our Ideas are right and any disagreeing idea is somehow motivated by some corrupt cause.

      If you are Pro-Choice then those Pro-Life people are trying to keep Women rights down.
      If you are Pro-Life then those Pro-Choice people are trying to make a world where woman don't need to have any consequences for their actions.
      If you are Republicans those Democrats are trying to keep the People addicted to government services so you can better control them.
      If you are Democrat those Republicans are trying to brainwash people to keep buying crap from these companies so they no longer need to innovate.

      We rarely ever get arguments anymore stating I understand your view, but I think my advantages may outweigh the disadvantages that you brought up. But we have moved to a world where a disagreement means your oponent has some Evil motive behind them. If you think your Ideological Opponent is evil then you feel justified hurting them in one way or an other.

      --
      If something is so important that you feel the need to post it on the internet... It probably isn't that important.
    4. Re:Not so many lulz now by VortexCortex · · Score: 2, Insightful

      All data should be free.

      Everybody's data (including thoughts) should be available to everyone, realtime, no exceptions.

      Only then can we derive true morality.

      I disagree. Your theory is sound, but in practice Twitter and Facebook didn't result in more morals.

    5. Re:Not so many lulz now by mvar · · Score: 5, Insightful

      I definitely believe criminal activity should be punished but sending in prison a 20-year old for 15 whole fucking years and treating him as if he is a war criminal or serial killer, for simply hacking into a computer of a multi-billion-dollar company (which as it seems didn't care to invest some of it's awfully lot of money in protecting it's customer's data) , is a little too much. Especially when at the same time there are other criminals out there who roam free thanks to their financial status.

    6. Re:Not so many lulz now by mvar · · Score: 3, Insightful

      not to be misunderstood here: this kid should be punished but 15 years is just madness

    7. Re:Not so many lulz now by Anonymous Coward · · Score: 2, Insightful

      And what is your opinion of Sony putting a rootkit on your machine?

    8. Re:Not so many lulz now by bws111 · · Score: 2

      OK, I'll help you out with that: EVERY system that contains your data, including the systems you personally control, is vulnerable.

    9. Re:Not so many lulz now by mcgrew · · Score: 2

      I'm no fan of Sony but I hope this guy is banged up for a long time for stealing all that private data.

      I thank the guy for hacking Sony. Nobody from Sony went to jail when Sony vandalized my and thousands of others' PCs with their XCP trojan rootkit, why should this guy go to jail?

      Where's the justice?

      --
      Free Martian Whores!
    10. Re:Not so many lulz now by Anonymous Coward · · Score: 3, Insightful

      You're comparing a company who act as the custodians of our virtual identities to someone leaving their door unlocked, or even a rape victim?

      Way to hyperbole your strawman

    11. Re:Not so many lulz now by Sancho · · Score: 2

      That's easy to say when you aren't being threatened with 15 years in prison. I'd imagine that innocent people plead guilty when they can't afford a good lawyer, or when they think that they are likely to be found guilty anyway and the plea deal is considerably better than the maximum sentence.

    12. Re:Not so many lulz now by Gripp · · Score: 3, Insightful

      So, if your bank left your money sitting out front and people took it, you wouldn't blame the bank? That's effectively what sony did. Even better, they were WARNED they had left your money out. http://www.justpushstart.com/2011/02/is-your-private-information-safe-with-sony/

      In my mind they are most definitely responsible. More so than the kids who took it (and apparently did nothing with it).

    13. Re:Not so many lulz now by 1s44c · · Score: 2

      I'm no fan of Sony but I hope this guy is banged up for a long time for stealing all that private data. And before any wannabe heros mod me down you might want to consider that YOUR data could be part of it.

      Well that's the thing. If he is proved guilty in a fair trail he should be punished but isn't 15 years too long?

      He didn't kill anyone, he didn't physically hurt anyone, nor did he do anything terribly bad with that data. All he did was embarrass a company that should have been taking better care of the data. Sony was going to leak all that data anyway if they hadn't already.

    14. Re:Not so many lulz now by 1s44c · · Score: 5, Insightful

      I come at it from the opposite direction: I'm no fan of LulzSec, but Sony deserves to have its toenails removed for being so bloody sloppy about security.

      Dead right, I don't know how you got modded down.

      This was a SQL injection attack. Sony didn't follow that little rule about validating user input and should have known better. I'm not saying they deserved it because they didn't, but I'm saying it was bound to happen sooner or later.

    15. Re:Not so many lulz now by Hatta · · Score: 4, Insightful

      You don't have to be a fan of Sony, to see what these guys are doing is wrong and criminal.

      But that's not why they're going to jail. Sony has done plenty of wrong and criminal things in their time, and no one there has gone to jail for it. Selective enforcement of the law is not justice.

      --
      Give me Classic Slashdot or give me death!
    16. Re:Not so many lulz now by 1s44c · · Score: 2

      I agree, cruel and unusual punishment.

      It's just too great a quantity of punishment for the crime being punished.
      It's not about the punishment being cruel or unusual, only that there is too much of it.

    17. Re:Not so many lulz now by mcgrew · · Score: 2

      What's good for the goose is good for the gander. I'd be all for this guy going to jail if someone from Sony would have gone to jail for XCP, which vandalized thousands of their paying customers' computers. As it is, I say payback is a motherfucker and Sony got what was coming to them when this guy brok in to their systems. Actually, they deserve more. They deserve to be run out of business completely.

      Yes, I was a victim of Sony's hacking. Put Sony's president in prison and I'll be all for putting this guy in prison.

      --
      Free Martian Whores!
    18. Re:Not so many lulz now by bws111 · · Score: 4, Insightful

      Bullshit. Sony did not 'leave your money sitting out front'. They left your money in the teller's drawer, as is normal practice. If someone comes in and reaches over the counter, opens the drawer, and removes the money, that person has committed a crime. Not the bank.

      Stop making excuses for these 'kids'. Sony may have had lax security, but they did not commit a crime. The 'kids', on the other hand, willfully commited a crime. The 'fault' is entirely theirs.

    19. Re:Not so many lulz now by Anonymous Coward · · Score: 3, Insightful

      Sorry, yes I would blame the person who took the money. Taking something that is not yours is always wrong. Period. Doesn't matter how hard or easy it was to steal, stealing is wrong.

    20. Re:Not so many lulz now by kiwimate · · Score: 2

      So, if your bank left your money sitting out front and people took it, you wouldn't blame the bank?

      Your analogy is a little over the top - Sony did the equivalent of leaving money sitting in a cash register.

      Regardless, I blame the people who take the money. If a bank or a shop or some other business has a pile of money sitting out the front (say in an armored car), and it's unguarded, I won't take it. It's not my money. This is one of those few instances which really is black and white.

      Have you ever seen news reports of people who find a windfall sitting on a table in a restaurant and they turn it in to the police? They get praised because they did the right thing. It's called being honest.

      Have you ever seen news reports of crowds of people grabbing at paper money blowing in the breeze after being inadvertently loosed? They get panned because they did the wrong thing. It's called being dishonest.

      I don't think I can make it any simpler. Wrong is wrong, whether the act is trivially easy or very difficult.

    21. Re:Not so many lulz now by fm6 · · Score: 2

      Malice doesn't excuse stupidity, any more than stupidity excuses malice. If a thief is caught, you don't accept the excuse "the back door was unlocked, if I hadn't ripped him off, somebody else would have" That's lame. Also lame: "Why should I have to lock my back door? People should know better than to steal."

    22. Re:Not so many lulz now by Hatta · · Score: 4, Interesting

      Who do you jail when a company does something wrong?

      That's the problem isn't it. The mistake these kids made wasn't committing crimes. It was commiting crimes without a corporation to hide behind.

      Personally, I'd be in favor of jailing both the CEO who gets the credit for success and should bear responsibility for criminal failures, and the lowly tech who didn't go to the police when asked to do something illegal for his job. That would be far more just than letting the rich and powerful get away with crimes.

      --
      Give me Classic Slashdot or give me death!
    23. Re:Not so many lulz now by Elminster+Aumar · · Score: 2

      Sony = negligent. Idiot Punks = willful act. Is there really an argument at this point? We all know both should be reprimanded but the *real* criminals here would undoubtedly be the jerks who did whatever they did to extract that data Sony had.

    24. Re:Not so many lulz now by Elminster+Aumar · · Score: 2

      If it's not some injection attack, it's going to be something else in the future... Where's the line? Since no standards exist in this field--none that remain static for longer than a year--how can anyone really expect anyone else to pass someone's muster when it comes to issues that are mostly relative in nature. After all, I suspect that nobody here is as good as I am when it comes to securing input forms. Ap pro po, you should all be fired from your jobs.

    25. Re:Not so many lulz now by bws111 · · Score: 2

      Well, if you really want to play that stupid word games, lets. 'Merely copying' is potentially much more damaging than physical theft, because it is impossible to rectify. If you physically steal $1000, that is easily remedied by returning $1000 (notwithstanding any other punishments that may be meted out). 'Merely copying' private data, on the other hand, renders the data permanently non-private. So while you may not have 'taken' anything, you have completely and permanently destroyed its value.

    26. Re:Not so many lulz now by smash · · Score: 2

      Exactly. They're both guilty, Lulzsec doing the crime doesn't absolve sony of responsibility however.

      --
      I run: Windows, OS X, Linux, FreeBSD. Just because you have a hammer, doesn't mean everything is a nail.
  2. An exercise in futility!! by Anonymous Coward · · Score: 4, Insightful

    Hmm.. hate to break it to you but there ARE ways to be untraceable.. just like any criminal who gets bored they also get sloppy and hence getting caught.

    1. Re:An exercise in futility!! by Anonymous Coward · · Score: 5, Funny

      That's right. I'm behind seven proxies. Come at me bro.

    2. Re:An exercise in futility!! by Paracelcus · · Score: 2

      "They" didn't "get sloppy", this kid, like so many others shoot off their mouths, brag and call attention to themselves!
      "Anonymous"
      "LulzSec"

      Anybody who is STUPID ENOUGH to self identify as a "member" IS, without any organizational structure whatsoever automatically a "member"!

      And because anybody who wants that kind of attention will undoubtedly have somthing that the blank faced automatons in the "justice" dept could label as "criminal" your self destructive desire for attention will be fulfilled!

      --
      I killed da wabbit -Elmer Fudd
  3. no sense of proportion, no justice by udachny · · Score: 2

    Raynaldo Rivera, aged 20, suspected member of Lulzsec has been arrested ....

    charged with conspiracy and unauthorized impairment of a protected computer. The Lulzsec member may be facing 15 years in prison if convicted....

    accused of hacking Sony Pictureâ(TM)s Web site in June 2011 through use of SQL injection attack and downloading thousands of records containing names, birth dates, addresses, e-mails, phone numbers, and passwords. The hacker after posting all the data onto Pastebin, announced the hack through a tweet.....

    "Hey @Sony, you know we're making off with a bunch of your internal stuff right now and you haven't even noticed?"

    The hacking collective claimed that they had managed to grab information of more than a million people whereas Sony countered the claims saying that only 37k records were actually stolen.

    there is no sense of proportion here, it's not justice. Maybe it is the people, whose records were stolen, that should be outraged, not Sony, Sony as a company should be humble about it and do whatever to mitigate the problem their lack of interest in security may have caused.

    But because large corporations like Sony are in bed with large governments, there will be no justice. Sure, send these guys to prison for 15 years because a company is outraged. How about company's clients?

    My point is - this is none of government's business, it is up to the market to solve theft crimes. If these guys caused damage to private individuals, private individuals should take them to court (and maybe they should take Sony to court), but this has nothing to do with government, why is government throwing these people to jail?

    --
    MY OTHER COMMENTS
    1. Re:no sense of proportion, no justice by bws111 · · Score: 3, Insightful

      So to sum up your position: victims of crime should bear the full responsibility and costs associated with finding, trying, and punishing the criminals. Gee, I can't imagine why the rest of society does not agree with you.

    2. Re:no sense of proportion, no justice by bws111 · · Score: 2

      They haven't been tried, convicted, or sentenced yet, so your hysterical '15 years!' crap is way premature.

      'Sony is in bed with politicians' - now we are really off in tin-foil hat land. Other than creating a law prohibiting unauthorized use of computers, how exactly are politiicians involved in this? And what makes you think Sony had any hand in crafting that law, or that the overwhelming majority of Americans don't support that law?

  4. Re:Good work Sabu? by Anonymous Coward · · Score: 2, Funny

    Sabu is selling out his former comrades for the lulz.

    See, information is free, including information on who his accomplices are.

  5. Re:I love my country by jpmorgan · · Score: 3, Insightful

    In the US, generally the maximum penalty for killing someone is death, which I think most agree is more severe than 15 years.

    As a matter of course, most people convicted of killing someone else don't get the death penalty, and neither is this man is likely to face 15 years in prison. Those are both the maximum penalty.

  6. Re:I love my country by Sycraft-fu · · Score: 3, Informative

    Depending on the type of killing, more than 15 years can be the minimum. For example the federal sentencing for 1st degree (premeditated) murder is a minimum of life without parole, maximum of the death penalty. States tend to be similar. For second degree murder it varies, but life sentences are usually allowed. For example you may hear the expression "25 to life". What that means is a life sentence, but with the allowance for parole at 25 years.

    The only cases where killing someone starts to have less severe sentences is manslaughter and negligent homicide. These are cases where you caused someone's death, but didn't mean to. Since intent matters in the law, punishments are less severe in cases like that.

  7. Would It Be The Same Penalty by Angrywhiteshoes · · Score: 2

    Would he be facing the same 15 years if he hacked into Bob's Computer Shack's servers? Or do they consider it more severe because sony has more money and more clients? Is there some equation they use that determines "you stole this much data, so you do this many years in prison" ?

    Most of the sentences these days that have to do with computer related crimes seem outrageous.

    I'd understand if it got people killed. But what Sony has is banking information. Most banks have mechanisms to mitigate damage ( I used to play a tank in WoW - Dwarf warrior, so gangster) in the case where your money/information is stolen. They will reissue your card, give you new account numbers, whatever it takes. Sony shouldn't have private information like SSNs, so I'm not too sure what everyone is worried about. Unless you're afraid Lulzsec is selling your home address to that kid you kept calling a fgt on COD and he's actually gonna kill you like he was screaming he would.

    What should happen is something like this:

    Dear Sony Customer,
    We left our gaping hole exposed and we lost your data.
    Here are the details that you should be worried about and
    that you'll need to provide to your bank. Please check your shit.
    Sorry we fucked up, keep buying our crap.
    Hugs and Kisses,
    Sony Entertainment

    But it won't, because they want to play the victim. Shit, if Lulzsec got it, some other hacking group probably had it before them and have been buying viagra on your cards for months.

    Anyway, there's my daily rant. Windows Sucks, Linux Rules, OPEN SOURCE FOR LIFE!!!