'Evil' network hacker sent to prison for two-and-a-half years

by Paul Ducklin on June 25, 2012 | 3 Comments

Filed Under: Featured, Law & order

An Australian hacker from the New South Wales country town of Orange has been sent to prison for two-and-a-half years.

The offender, David Cecil, who went under the handle 'Evil', was arrested just under a year ago following a six-month police investigation.

His victim was Platform Networks, a Sydney-based company now owned by the ASX-listed Eftel Group.

Platform describes itself as offering wholesale aggregated telecommunications, and was apparently the first service provider signed to Australia's much vaunted National Broadband Network (NBN) as part of the initial trials on the Aussie mainland.

Much was made of the link between Platform and the NBN in headlines at the time of his arrest.

But, as El Reg's ever-reliable Richard Chirgwin pointed out, the attack took place before Platform started offering NBN services at all, so the risk from this hack to the NBN as a whole was non-existent.

(According to Platform's' website, commercial connectivity to the NBN still isn't available, so even today the company is taking only "expressions of interest" from prospective customers.)

Cecil pleaded guilty and received some leniency from the court as a result. He'll be elegible for parole in 12 months.

At the time of his arrest, the Australian Federal Police offered the following advice to businesses:

  1. Provide employee awareness and education programs.
  2. Monitor content going into and out of networks.
  3. Implement acceptable use policies for wireless technology, information technology and mobile devices.
  4. Complete background checks on staff.
  5. Conduct mandatory reporting of misuse and abuse of computer equipment.
  6. Complete a set of written standard operating procedures for technology.
  7. Manage account and password policies.

Note especially the fifth point (my emphasis): if you don't record and report misdeeds, you're sweeping potential criminal behaviour under the carpet.

That makes things needlessly tough on law enforcement, and on those whose information might have been compromised.


-

Two hands clutching prison bars image on main page courtesy of Shutterstock.

Tags: , , , , , , , , , ,

3 Responses to 'Evil' network hacker sent to prison for two-and-a-half years

  1. otaku2012 says:
    June 26, 2012 at 12:32 am

    I am pleased with this.

    Reply Report comment
  2. JohnJ says:
    June 26, 2012 at 1:05 am

    Self taught hacker? Well Apparently they teach hacking in school, I didn't know that. He got caught so that shows how good he was

    Reply Report comment

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title="" rel=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <pre> <q cite=""> <strike> <strong>

About the author

Paul Ducklin is a passionate security proselytiser. (That's like an evangelist, but more so!) He lives and breathes computer security, and would be happy for you to do so, too. Paul won the inaugural AusCERT Director's Award for Individual Excellence in Computer Security in 2009. Follow him on Twitter: @duckblog