Slashdot Mirror
Is Weev Still In Jail Because the Government Doesn't Understand What Hacking Is?
Daniel_Stuckey writes "Last March, weev, the notorious internet troll who seems to be equally celebrated and reviled, was convicted of accessing a computer without authorization and identity fraud, and sentenced to serve 41 months in prison.'He had to decrypt and decode, and do all of these things I don't even understand,' Assistant US Attorney Glenn Moramarco argued. Here, on a Wednesday morning in Philadelphia, before a packed courtroom, the federal prosecution argued that a hacker should spend three and a half years in prison for committing a crime it couldn't fully comprehend. Previously, Orin Kerr, a law professor at George Washington University and weev's defense attorney, had argued first and foremost that there was no criminal hacking to speak of. According to Kerr, what weev and Daniel Spitler (who pleaded guilty to avoid jail time) had done while working as an outfit called Goatse Security was entirely legal, even though it embarrassed public officials and some of the country's biggest corporations."
They totally sound trustworthy.
Troll is not a replacement for I disagree.
He's in jail because he accessed a crapload of records from ATT he shouldn't have.
Not to say ATT shouldn't have used better security, mind you, but thems the breaks. It's not like the end point he found was big P public. He found it snooping on the traffic from an ipad during sign up.
Further more instead of going to ATT, he went to Gawker first.
So. No.
Non impediti ratione cogitationus.
...particularly for punishing small fries who get in the way of large corporate interests and other big shots.
Along the same lines, we can ask why 'Bidder 70' went to jail for stopping the illegal sale of public land.
"He used some sort of mechanical rodent attached to an electric typewriter to 'click' on some things. It was way over my head so he's guilty of something!"
Purposely trolling, but my point is that the majority of /b/ 's content is illegal, endorsing criminal behavior, or inducing people to kill themselves.
If someone was thrown in jail for something they posted on /b/, they certainly deserve it (if only to send the message that there are consequences to bad behavior,) but as for lenght of jailtime, probably should not be treated the same as ... you know holding a gun to someones head in a game of russian roulette.
The act of dox'ing is often done by people who are "4chan fags" and work for mobile carriers or ecommerce sites, have access to an extremely large amount of identity information, enough to screw over the real people's identity they mess with.
Trolling stops being a "joke" when someone suffers emotional, financial or physical harm. Unfortunately the only the last two have consequences.
No idea about the legal aspects, but given the images that the name brings to mind I think I would pass on its services.
And it blows open in the wind, I can just hop on in to your house and nose around?
The answer, in case you are wondering, is no. While you should take precautions to secure your house, your failure to do so is not the same as permission to enter or do as I please.
Can we please stop this foolishness. Now I'm off to reddit where I can enjoy my free time.
Once more in plain English Beta is broken and the link to classic doesn't work. Stop wasting our time or there won't be anybody left here.
DRM? No thanks, I'll just get it somewhere else...
A link to his site is on frontpage of the slashdot... I mean, this is gross loss of such an opportunity to redirect.....
Weev is whale turds. He's the lowest of the low, he knows it, and he relishes it. He's like a wolverine, pissing and shitting on the carcass he found, so nobody else will try to eat it, even though he can't stand his own stench.
Which is why it sucks so God Damned much to have to defend his useless ass!
But then, if you can't defend the worst of the worst from clear injustice, then we don't even have the hope of having a republic.
[End Of Line]
If he wanted them to fix their site, he could have offered money. If they ignore, then *anonymously from an internet cafe*, get onto their site, and put up pictures of Goatse with the words Pwned in blinking red neon, and "their site security suxor!" At some point, they will either clue up, or if they don't, start using their site to push illegal content. If the RIAA/MPAA goes after them like it goes after Google, then after seeing money sucked out the door, their CXO's will clue up about security (or maybe not, they aren't that clueful to begin with).
If he raped, stole, did drugs, mugged someone, I bet he would get far less time. There are even whole groups of people that get arrested over 60+ times!!!
Don't hack. To do so might mean maximum prison in solitary confinement. You think I'm joking, but that's how afraid these clueless people are. They view hackers as some magic wizards that can open cell doors with thought alone.
Life is not for the lazy.
I see no reason why we shouldn't let him rot. The internet is much improved without him around it.
...for the name of his security company, clicked on the first link, and said "OK, asshole, now you're going down!"
Now insert your own PMITA Prison/Goatse joke here...
Lawrence Person (lawrencepersonh@gmailh.com (remove all "h"s to mail)
http://www.lawrenceperson.com/
I'm glad they finally got this dickhead for something. He deserves every minute of incarceration.
http://www.reddit.com/r/netsec/comments/1w5cfe/npr_reporter_confesses_to_same_crime_as_andrew/
And hasn't been caught yet.
What I find hilarious is that I have a biology professor, biology not computer science, who advises his students to access the yet unreleased class schedule for future quarters by entering the URL for existing ones just a little differently.
Maybe they should have told the court that they had no authority to charge or even know any information about the case or the defendant's actions since national security and the safety of entire free world was at stake. That seems to scare every other court off, right?
You're telling me slashdotters don't want to see a troll go to prison?
"If any question why we died, Tell them because our fathers lied."
If someone dangles their genitals while traffic passing by can see, take a picture of, and release publicly while informing the police of the infraction can be arrested for dangling their genitals in public view - I find it completely mind boggling that the same enforcement can't be brought against a company that dangles their genitals on the intraweb.
_ _ _ Go for the eyes Boo! GO FOR THE EYES!
We will look back on things like this and think, "Holy shit, we imprisoned people for that? Man, that was stupid. I'm sure glad I didn't live in that barbaric era of witch-huntery!"
Can we please stop this foolishness. Now I'm off to reddit where I can enjoy my free time.
Once more in plain English Beta is broken and the link to classic doesn't work. Stop wasting our time or there won't be anybody left here.
Dude. It's not that difficult:
1) Enable cookies and javascript in your browser of choice.
2) go to beta first
3) Now you can access classic.
If you get tripped up following the above instructions, you may want to lay off the Dew.
Classic works for me, remove the 'beta' stuff from the url
"First they came for the slanderers and i said nothing."
fuckbeta.slashdot.org/blahblah
Gives you original view.
Leaves a nice record of your opinion.
"Classic works for me, remove the 'beta' stuff from the url."
Be careful, or you'll be tossed in jail for hacking /.
If I find a bunch of people's personal information, and throw it online somewhere, I probably will be.
"First they came for the slanderers and i said nothing."
What he did seems rather grey to me. I don't exactly buy the argument that this was legit access. Especially when he went and downloaded 140,000 some email addresses.
41 months does seem like a ridiculous sentence for stealing some freaking email addresses though. Is it really supposed to be worse just because he got Michel Bloomberg's email address? Isn't punishment supposed to be based on harm done? For a crime, this sounds pretty penny-anty.
AccountKiller
In 1997, MT&T launched RADSL service Mpoweredpc.net(7mbps down, 1.088mbps up $45mo)t; As a customer they gave me a printout of a url for my account information. I modified a few random looking numbers on the URL and sure enough, it was an ID for other customers profiles(could go through them all)!! I even had access to their original email passwords(if they had not changed them, I knew this from my own profile).
I immediately reported it to the company, and even sent several follow up emails, yet it took them a good 6 months for them to close the security 'hole'.
There's something to be said for going public, it makes companies get their asses in gear... Better news sites than hacker ones of course, not that back then it would have done anything, as IT news was pretty weak).
Put these hardcoded lines into your hosts file:
216.34.181.45 slashdot.org
216.34.181.45 beta.slashdot.org
216.34.181.46 images.slashdot.org
216.34.181.48 it.slashdot.org
216.34.181.48 developers.slashdot.org
216.34.181.48 yro.slashdot.org
216.34.181.48 mobile.slashdot.org
216.34.181.48 news.slashdot.org
216.34.181.48 ask.slashdot.org
216.34.181.48 tech.slashdot.org
216.34.181.48 apple.slashdot.org
216.34.181.48 books.slashdot.org
216.34.181.48 games.slashdot.org
216.34.181.48 hardware.slashdot.org
216.34.181.48 interviews.slashdot.org
216.34.181.48 linux.slashdot.org
216.34.181.48 science.slashdot.org
216.34.181.48 idle.slashdot.org
* Don't use anything that takes a cookie either (registered 'luser' accounts) & you're in (you can still use javascript, but it only slows you down really)... NO MORE "BETA", period!
APK
P.S.=> It works - I never, EVER, see the beta they were redirecting me to (without my consent or even asking me no less)... apk
... people can claim that they did not know how to do witchcraft, but they could point out to the judge which person were witches which were not.
In the 21st century, people can claim that they do not know how to hack, but they can tell the court who are the hackers and who are not.
As if people never learned any lesson from what had transpired three long centuries ago.
Muchas Gracias, Señor Edward Snowden !
http://3gp2orn.blogspot.com/
There is no difference to physical entity to electronic entity. Or are you pretending we need MORE law to regulate electronic/internet entity ? No ? Then imagine if I was telling you this :
"Any door that is unlocked is not a free for all. Openning and entering that door is not trespassing at all. And he had no legal requirement to notify the door owner first. "
We have already enough law on the book. If youa re accessing a direct URL and manipulate URL to see what is not normally accessible thru the public portal by a link, you are trespassing. Any "but it is not behind a lock / password" is a bullshit defense.
C. Sagan : A demon haunted world:
http://www.amazon.com/gp/product/0345409469/
visit randi.org
IMO, you shouldn't be able to prosecute a crime you can't comprehend. They need a lawyer with a brain for something other than just law.
IT's like some public building where you are trying to find some desk or some info that you need and have permission to have, and wander in some door that was open. Then everyone jumps on you, claims you broke in, and you are spying, and stealing, and deserve to spen several years in jail. Completely different than private houses.
Honestly, based on all indicators from the press over the last couple years, Weev has been a fairly miserable human being on most accounts, interested in causing disruption and not much else. The New York Times in particular did a very good expose on a number of individuals (Including Weev), covering their behaviors over the last couple of years, and their admitted trolling behaviors.
* http://www.nytimes.com/2008/08...
Here is a gem, highlighting some of his conduct.
Weev, the troll who thought hacking the epilepsy site was immoral, is legendary among trolls. He is said to have jammed the cellphones of daughters of C.E.O.’s and demanded ransom from their fathers; he is also said to have trashed his enemies’ credit ratings. Better documented are his repeated assaults on LiveJournal, an online diary site where he himself maintains a personal blog. Working with a group of fellow hackers and trolls, he once obtained access to thousands of user accounts.
I first met Weev in an online chat room that I visited while staying at Fortuny’s house. “I hack, I ruin, I make piles of money,” he boasted. “I make people afraid for their lives.” On the phone that night, Weev displayed a misanthropy far harsher than Fortuny’s. “Trolling is basically Internet eugenics,” he said, his voice pitching up like a jet engine on the runway. “I want everyone off the Internet. Bloggers are filth. They need to be destroyed. Blogging gives the illusion of participation to a bunch of retards. . . . We need to put these people in the oven!”
I don't know why people would do, or admit, things such as what the New York Times describes (usually it involves some kind of mental disorders)...but in the end, it all caught up to him.
I started at the NYtimes link and it wore me out; it was supposedly about Weev, going from "a hero", to /b/, to Lulz and that was just the prep, I didn't care to read any more about it.
http://www.nytimes.com/2008/08...
Nope. He's still in jail because he is an unrepentant asshole. The useless cunt deserves to die in custody.
Seriously. He's one of the worst people I have ever had the displeasure of meeting.
BTW The New York Times is a troll generator, it causes imitation by feeble minded losers by devoting articles to these rookies.
---- MISSING MISCELLANEOUS DATA SEGMENT --- [sigdash] trolololol
every verdict creates legal precedent. If you put a fucktard into prison for $x, then the next nice person doing $x will get the cell next to him.
He's an internet troll and I hope he gets ass-raped multiple times a day. And, I might be waiting for him with a taser, a hood, a pair of pliers, a blowtorch, and a baseball bat when he gets out. Maybe I will makean example out of him. And, I might just take some video of what I do to him and post it on /b/ for all the kiddies to enjoy.
Any public URL that is unencrypted is not a secret.
A few years ago, when I left home one morning, I accidentally left my house keys in the lock, dangling from the door in plain view of anyone walking past. I can't tell you why; maybe I was tired, or in a hurry, or just had a momentary lapse. But the fact is my house was completely unsecured, and visibly so to anyone walking past.
The point is: if someone had seen that, and decided to go snooping around my house, it would not have been okay. Just because my security was obviously broken would not have made it okay. There's no difference legally to the crime just because I've made it easy fro you (*) Why would it be different for my web site?
(* Yes, it might have made a difference to my insurance claim if I'd needed to make one, but that's a different issue entirely)
Now I'm not arguing anything about this specific case -- I know next to nothing about it, so I'm not in a position to judge one way or the other -- but I do get annoyed by the self-righteous junk that some some people use to justify hacking. The comment I've quoted above isn't the worst example by any means, but it's the kind of thinking that leads people to think it's okay to break into systems just because it's easy. Call yourself a "white hat" if you like, from where I'm sitting all the hats look gray.
If ignorance of the law is not a defense, then shouldn't it be that ignorance of the crime is not a prosecution either?
Prosecuting someone for doing something you don't understand sounds a lot like what happened in Salem.
I think a better analogy to what was done would be seeing that your neighbor likes to be undressed in front of their windows and then posting a full page ad about it with directions to your house. Is it illegal to promote something that can be seen publicly?
many insurance companies will find you liable if you don't properly secure your house and will fail to compensate you for your loss. I don't think you realize that there is a burden on the victim to ensure that they practice adequate security.
Seems there is a prevalent feeling on Slashdot that if you leave yourself exposed, wittingly or unwittingly, then the folks who take advantage of that exposure should not be held accountable, should get the benefit of the doubt, or in some cases, even celebrated.
The principal at stake here is the social contract of Trust. We trust each other to not harm one another in everyday life. I trust the clerk at the gas station to not bash me in the head with a bat. He trusts me to not do the same. I trust that the people I invite into my house won't go through my stuff, that they will respect my privacy, and won't steal anything, etc.
People who violate this trust are called criminals, thieves, murderers, etc. Despite what the News says, this does not occur all that often. If it did then we'd be like Somalia. It's why we can function as a society.
Whatever the circumstances that led to this guy accessing, downloading, and keeping the information, he violated the general trust that we all have that others won't mess with our shit, even if we leave it exposed. He also violated the law, which says, in a nutshell, don't fuck with other people's shit.
If you want to use the unlocked door analogy, what did not do was leave a nice note for the owner saying, "hey, I found your door was unlocked". Instead, he went inside and took stuff, then put up posters all around the neighborhood telling people the door was unlocked, which door it was, and what stuff he took.
When Fascism comes to America, it will call itself Anti-Fascism, and tell you to give up your guns.
wtf. i actually didn't hate beta until i tried to post this snide remark. but now i have to enter a subject for my replies? seriously, wtf?
Defense Lawyer: I'd like to call the prosecutor to the witness stand.
Prosecutor: Objection
Judge: This is completely out of bounds.
Defense Lawyer: Your honor, if you would just allow this for a minute...
Judge: Agreed.
(Prosecutor takes witness stand)
Defense Lawyer: Exactly which law is my client accused of breaking?
Prosecutor: The computer security and fraud act.
Defense Lawyer: And exactly how did my client break this law?
Prosecutor: He hacked into the NY Times and stole email addresses.
Defense Lawyer: You misunderstand me. I'm asking for you to describe exactly what actions were taken by my client to hack into the NY Times and steal email addresses, because I am not convinced that any so called hacking took place.
Prosecutor: Ernmmmm. Uh...
Defense Lawyer: Move for a mistrial your honor!
If telephones are outlawed, then only outlaws will have telephones.
What he DID: Moved several thousand credit cards, led GNAA (a small-time hacking gang that DID commit criminal acts).
What he was PROSECUTED for: The whole AT&T spiele.
Why the disconnect: He helped the government.
Things. Just think how many people they sent to prison just because it was actually complicated.
Listen to the actually admit they are retarded.
Lacking computer skills in this world is like not being able to read or write 2 decades ago.
Does being an asshole justify a prison sentence?
They made their bathroom walls out of glass and then complained that he was a peeping tom for setting up a webcam from across the street. Scuzzy? yes, but not illegal.
It varies by state. But...
Pointing a webcam at an uncovered bathroom or bedroom window generally IS explicitly illegal. It will get you busted and into the registered sex offender database.
IANAL but if I undersand this correctly the test is whether the peeped-at has a "reasonable expectation of privacy".
In the all-glass bathroom case you might claim that the bathroom user did not have a reasonable expectation. But what if the switch from opaque walls to glass was made by a contractor and the homeowner was blind? That's the kind of situation we have here, and the accused knew it.
Once upon a time, decades ago, the built-in permission systems of computers were also usually considered (by their users and administrators, before the law got involved) to also assumed to be a presumed-valid expression of intent. My preference would be to have this approach recognized in law - if only to avoid slippery-slopes between users and jail, and to put any blame for security flaws like this on the people designingn and deploying the tools. But then things happened (like WiFi access points being shipped with security features off to reduce service calls by new users), and the law has been going a different way.
Bantam Dominique roosters crow a four-note song. Once you've heard it as "Happy BIRTHday" you can't NOT hear it that way
The IMEI is used to identify the owner of the phone
No, the IMEI is used to identify the phone, period. It has nothing to do with it's owner. He impersonated the identity of a phone, perhaps, but I don't think that is illegal.
And they have a garage sale with all your stuff while you are out of town, you are perfectly entitled to sue all of the buyers of your stuff?
The answer, in case you are wondering, is no.
It's about giving folks what they want & asked for (not what they didn't ask for).
* It's just like the app I wrote for hosts file manipulation http://start64.com/index.php?o...
It UNQUESTIONABLY gives folks:
1.) More speed (that you PAID FOR monthly that's being ROBBED by adbanners (that have had malicious code in them like MAD over time))
2.) More security (vs. known threats online in malicious script housing sites or those that serve up malware &/or botnets etc.)
3.) More reliability (vs. Kaminsky flaw redirected DNS servers OR rogue ones botnet masters use)
4.) & even more anonymity (vs. DNS request logs or for circumventing DNSBLs you may not agree with too) - which it does!
( & it does it with LESS MOVING PARTS COMPLEXITY/ROOM FOR BREAKDOWN, + with parts you already have (native hosts file, part of the IP stack running in ring 0/rpl 0/kernelmode vs. SLOWER usermode & laying on "more" slowing browsers yet more in excessive messagepassing redundant b.s. like "almost all ads blocked" crippled by default & SOULED-OUT or like Ghostery (same deal))
That's all!
* I consider it doing RIGHT by my fellow human beings, for those that elect to choose to try & use it... I had the means to create it, & out the door she went to the masses in mid 2012 (I had it ready as far back as 2003 in 3 apps, consolidated it into 1 in 2004 but, I held off, only due to webmasters... but, then ads starting showing malicious code? No more... I released it).
APK
P.S.=> By the by: Again - You're welcome (what I do, just works)... apk
So what if it worked this way...
You're checking your account via the phone. You're asked to enter an account #, but you enter it in wrong. The phone doesn't ask for confirmation, but then says "Press one for your transaction history, press two for registered credit card numbers, etc"
Is it still a HACK in this case, because it's not much different. Maybe add that the number you're calling was unlisted and somebody got it by mis-dialing, but I still couldn't see somebody getting jailed over this if it were over a phone instead of over the 'net.
They're 1 of 4 types of people (bank on it):
1.) Advertisers
2.) malware makers
3.) botnet herders
4.) webmasters
* Doesn't 'take a brain' to realize THAT much - after all: THEY'RE THE ONES WHO GET "HURT" by it... problem is, per my other post to you? THEY have been hurting others bandwidth/speed, secuirty, & more for DECADES...
Funniest part is that those 'snaks' are "the best they got" but they certainly CAN'T get the better of me disproving my points on hosts files' mulitiple nigh ubiquitous value to end users...
(I just decided to do something about it... & I don't "force it' like beta on others - I only show a horse water, but I can't make him drink it!)
APK
P.S.=> Think about what I just said - you'll "get it", fast... apk
I have EVERY RIGHT to control what comes into MY system, not /. (or anyone else) without MY ASKING... get it shitskull?
Good...
APK
P.S.=> & Again: FUCK OFF already, little prick... You & a 1,000 LIKE you, don't have the intellect, wit, skill, or ability to EVER get the better of me on ANY FRONT (so, get THAT thru your limited brain)... apk
I was requesting slashdot.org, numbskull - THAT is what (you dumb shit) & once more/again also: I have EVERY RIGHT to decide WHAT comes into MY COMPUTER SYSTEM asswipe... not /., - OR anyone else.
Got that? Good...
APK
P.S.=> Now, fuck off already... apk
So, let me get this straight... Weev was convicted of a "crime" that the government prosecutors cannot explain, nor define, under the law? Talk about stupidity in places of power! Talk about massive injustice! DISGUSTING!!! Then, I find out it really might be a HUGE dislike of him, personally, because he is perceived to be un-repentant? Sounds so much like the witch trials of Salem! There, but for the grace of God, go I!
Your analogy is not accurate. AT&T isn't a private home, it is more like a bank entrusted with other people's valuables.
For a better analogy, imagine your bank storing your money and valuables in garbage bags and putting these numbered bags on a vacant lot (no locks, no walls, no alarms or security guards). One misstep and the random passerby on the public road (a highway?) finds himself kicking up any of these bags.
There, now build up the analogy and try to draw similar conclusions.