U.S. 'botmaster' faces up to 60 years prison

By Liam Tung, ZDNet Australia
Monday, November 12, 2007 10:35 AM

A Los Angeles man is facing up to 60 years in prison and fines of up to US$1.75 million after admitting to infecting at least 250,000 PCs with information-stealing malware.

By day, 26-year-old John Kenneth Schiefer worked as a security consultant for the company 3G Communications. By night he operated a 250,000 PC botnet, which U.S. federal prosecutors are claiming he used to steal information and money from users of eBay's online banking service, PayPal.

The malicious software developed by Schiefer accessed the Windows system feature "Protected Store", which encrypts and stores passwords for online accounts.

Investigators are yet to determine the full amount of money stolen from victim's accounts.

Schiefer also distributed software on behalf of a Dutch Internet advertising company, Simpel Internet. He installed the software on 150,000 computers, netting him US$19,000 in commissions, but did so without the user's consent.


  Must read: B.T.W. Blog
Michael Iannini Banish that hacker to jail!
When 26-year-old John Kenneth Schiefer decided to string together some computers to retrieve information off a network, he probably didn't think he could end up heading for an early retirement--in a prison cell...
By Eileen Yu

The botnet created by Schiefer is relatively small compared to other notorious malware distributions. Some estimates of the size of a botnet associated with the Storm worm suggest up to 20 million PCs.

Schiefer is pleading guilty to four charges of fraud and wiretapping and is expected to be arraigned on 3 December.


See also:  Security
WORTHWHILE?

0

0 votes
Blog

Talkback 11 comments

thats a little harsh www.iguitargod.com
Posted by anonymous on Tuesday, November 13 2007 02:18 PM

I think this is just the right sentence to give out for scum suckers like this guy. Excellent stuff.
Posted by Geekoid on Tuesday, November 13 2007 03:03 PM

I could only agree with giving a long term sentence if he were released back into public after say 5years with the understanding if he messes up a second time he finishes the whole sentence. Otherwise 60 years is too long. But why not give child molesters 60 years hard labor no problem in fact just throw away the key.... ohh and give Bush 60 years for stupidity...
Posted by Pal on Tuesday, November 13 2007 03:24 PM

that's definitely excessive. he should have to do 5 years and probation
Posted by cliff in maryland on Tuesday, November 13 2007 03:45 PM

He deserves every bit of the full sentence. You are negatively affecting thousands of people and putting them through hours of processes to recover what he has taken from them.
Posted by thedave243 on Tuesday, November 13 2007 03:46 PM

So he'll be in his eighties when he gets out of prison. That isn't a problem with me. Think of all the problems he has caused and the time spent trying to correct them. Some folks lives were ruined by this creep. No, 60 years isn't enough.
Posted by Bob Deloyd on Tuesday, November 13 2007 05:47 PM

This country is seriously f***ed up when pedophiles get 5 years, and hackers get 60.
Posted by Steve Campbell on Tuesday, November 13 2007 07:24 PM

No, it is not too harsh! I won't say what I think should be done to hackers and the like, as some may find it inhumane. However, people like this cost individuals and corporations millions each year. They need to be circumsized from society; jail is the perfect place for him!
Posted by Bebe on Wednesday, November 14 2007 01:10 AM

Prison sentences are closest to HD sizes, and Processor speeds.. ie: little correlation, if any. What he did, affected Multitudes of people, and I think, on that score, his sentence should be harsh. He will be out in 5 years anyway, so the sentence is almost irrelevent...... I hope he has a terrible time of it..... Cyborg
Posted by Michael Sartor on Saturday, November 17 2007 06:24 AM

Whatever he did is basically theft. 60 years for stealing is too much. Otherwise many of our politicians will be on the electric chair
Posted by joe black on Thursday, November 22 2007 06:26 AM

As one of the victims of this clown, I for one think it's kinda harsh. Even though this scumbag ruined my life, It's not permenet, I will recover from it. But, to "Incarcerate" this man to a death sentence,NO !! Put his butt to work, In a supervised enviorment,at a REAL paying company and let him pay back those that he stole from. Prison does not pay their inmates enough to reimburse their victims, So don't tell me about their "Restituion" fund,,thats the biggest joke !!
Posted by anonymous on Thursday, December 13 2007 01:04 AM


Tech Jobs Now!

Search for your ideal tech job:

News from Countries/Region

Common ways IT wastes money on development

Web Development

Examples include using developers as support staff and failing to calculate a project's ROI before giving it the go-ahead.


Read more »



  • Enterprise 2.0

    Vince Casarez, vice president of product management at Oracle, explains how Web 2.0 technologies, such as tags, wikis, and mash-ups, can be applied within an organization.
    Play video


  • Nehalem Architecture

    What makes next-generation Intel® Microarchitecture (Nehalem) such a superior successor?
    Play video

 
On demand CRM goes strategic
CRM technology has come of age, and is now able to align with your customer strategy and grow in step with your business.

» Learn more about Oracle’s CRM Solutions


Free the untapped potential of your IT infrastructure
Reduce bottlenecks to drive the efficiency and productivity of Business IT.
» Ultimate virtualization blade
» Scalable SAN solution
» Accelerate service delivery

Could this be the most critical budget for India?

Blog thumbnail

For business journalists in India, budget time is excitement time. It's like sports journos covering the Olympics. As a newspaper correspondent, I too had my fill of budget-time excitement. But..... by Swati Prasad

Read more »

Tags

  1. attack
  2. bank
  3. blog
  4. data security
  5. e - mail
  6. hacking
  7. internet
  8. malware
  9. microsoft corp.
  10. network
  11. network security
  12. pc security
  13. researcher
  14. security
  15. security management
  16. software
  17. spam and phishing
  18. u.s.
  19. viruses and worms
  20. web