Police in Romania believe that they may have apprehended the notorious hacker TinKode, who in the past has hacked into government and military websites, exposing their poor security.
The 20-year-old man, named as Razvan Manole Cernaianu, allegedly attacked Pentagon and NASA computer systems, revealed security holes, and published information about SQL injection vulnerabilities he had discovered.
The Romanian Directorate for Investigating Organized Crime and Terrorism (DIICOT) has said in a statement that the alleged hacker also offered a computer program to hack into websites on his blog, and published a video showing internet attacks he had orchestrated against the US authorities.
TinKode’s targets were not just based in the United States, however. For instance, in November 2010, the British Royal Navy’s official website was compromised by the Romanian hacker, who claimed to have exposed the site’s passwords.
And last year, MySQL’s website was hit by – oh, the irony.. – an SQL injection attack.
Associated Press reports that the US Embassy in Bucharest claimed that Cernaianu, who is reportedly an IT student, “used sophisticated hacking tools to gain unauthorized access to government and commercial systems.”
That may be so, but in my estimation over the last few years TinKode’s motivation has been more about mischief-making than the more malicious attacks we often see, fueled by a desire for publicity via his active Twitter and Facebook accounts.
Perhaps now is a good time to remind everyone who thinks it’s cool or amusing to expose an organisation’s weak security that hacking into a site is still a crime, regardless of what your incentive may be.
DIICOT is said to have worked with the FBI and NASA on the investigation.