Computerworld
Quick Menu
Search



Ads by TechWords

See your link here


Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.
Finance
Security
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
More E-Mail Newsletters 

Computerworld 2007Subscribe to Computerworld
40 years of the most authoritative source of news and information for IT leaders.

Military computer contractor pleads guilty to ID theft

He sold a thumb drive containing information on personnel at Marine Corps Reserve Center in San Antonio for $500

By Grant Gross
Comments
7
Recommended
361

Active Comments

Anonymous says: First of all, this guy is a traitor. If he isn’t shot right away, he should never see daylight again....
Read the rest | Reply
Anonymous says: Five, possibly 7 years; not enough of a deterrent. I say, he should be put against the wall and shot....
Read the rest | Reply
All Comments (7) | Post New


Zone

Featured Zone
The Security Zone

With the mobility of employees and the ease with which external devices can be brought in and out of a network, continuing to build your security plan for network servers and clients is a must. Fortunately, there is much that organizations can do to protect themselves from attacks - internal and external. Having the right policies, procedures and server configurations is critical...

Learn more in The Security Zone
See All Zones

May 2, 2008 (IDG News Service) WASHINGTON -- A former U.S. military contractor has pleaded guilty to exceeding authorized access to a computer and aggravated identity theft after he was accused of selling names and Social Security numbers of 17,000 military employees, the U.S. Department of Justice said.

Randall Craig, 41, of Houston, pleaded guilty today to both counts of an indictment returned in April by a grand jury in U.S. District Court for the Southern District of Texas. Craig acknowledged selling information contained in a military database to a person he believed to represent a foreign government, according to the U.S. Attorney's Office for the Southern District of Texas and the FBI.

The person who purchased the names and Social Security numbers from Craig was an undercover FBI agent, they said.

Craig worked as a private computer contractor at the Marine Corps Reserve Center in San Antonio in September 2007, and he had access to personal information of U.S. Marines in the center's database, the DOJ said.

On Feb. 6, Craig met with someone he believed to be a representative of a foreign government at the Houston airport to discuss the sale of a thumb drive containing the information Craig had obtained from the military database, the DOJ said. Craig sold the thumb drive for $500, the agency said.

"Our personal identification information is readily available to those who have a legitimate use for it as well as those who do not, such as Mr. Craig," U.S. Attorney Don DeGabrielle said in a statement. "Because he sought to profit from this identity theft, we moved swiftly and justly -- as we will in all such cases -- to protect our military heroes and to protect everyone in the conduct of their personal affairs."

A forensic examination conducted by the Naval Criminal Investigative Service determined the data was from the Marine Corps Reserve Center where Craig worked, the DOJ said. The thumb drive contained personal information of 17,000 people assigned to the Battalion of the U.S. Marine Corps in San Antonio, the DOJ said. The investigation found that none of the information obtained by Craig was sold to others or otherwise compromised.

Related Blog

Lucas Mearian:
This ID thief got off easy

At a Feb. 22 meeting with the FBI undercover agent, Craig said he had made efforts to contact other foreign countries in an attempt to offer his services, according to the DOJ. The undercover agent and Craig discussed future contact, using cell phones and e-mail.

The conviction for exceeding authorized access to a computer for financial gain carries a maximum sentence of five years in prison. Aggravated identity theft carries a mandatory two-year sentence that must be served consecutive to any sentence imposed for the charge of exceeding authorized access. Both counts also include maximum fines of $250,000.

Craig is scheduled to be sentenced July 28. He is being held in federal custody without bond, the DOJ said.


Reprinted with permission from

IDG.net
Story copyright 2008 International Data Group. All rights reserved.

Make a Comment Recommend Story Slashdot this Digg this
Print Story Send Feedback Email this Reprints

Related Content

Webcast: Bringing Order and Security to your Mobile Workforce: Corporate Mobility Policy and Device Management
Whitepaper: File Integrity Monitoring: Secure Your Virtual and Physical IT Environments

CW Report: SaaS Solutions for Remote Systems Management
This ID thief got off easy
The Power of 'How'
IP telephony to take center stage at Networld+Interop
Update: Army Web site performance slows as war begins
So You Think Your Data Is Secure?

Today's Top Stories

Windows 7 public beta to be available Friday
Ballmer sets loose Windows 7 public beta
Hack forces Twitter into 'full security review'
Fake LinkedIn profiles promise prurient pics, send patsies malware instead
10 must-have free BlackBerry apps
Cisco down to business with gear for digital home

What People Are Saying

See comments | Add new
See comments | Add new

Resource Alerts

to receive Security Resource Alerts

Webcasts

Winning Enterprise Authentication: 5 Key Steps for Success

Dynamic Data Center and Virtualization Drives Operational Excellence at Emory Healthcare

Bringing Order and Security to your Mobile Workforce: Corporate Mobility Policy and Device Management

Whitepapers

A Simpler Approach to Remote Access

Smart Security Choices for Mobile Workers

File Integrity Monitoring: Secure Your Virtual and Physical IT Environments

Computerworld Reports

Computerworld Technology Briefing: Intelligent Users Use Business Intelligence

Virtual Reality

SaaS Solutions for Remote Systems Management

Editor's Picks

Windows 7 public beta to be available Friday

Ballmer sets loose Windows 7 public beta

Hack forces Twitter into 'full security review'

Fake LinkedIn profiles promise prurient pics, send patsies malware instead

10 must-have free BlackBerry apps

Cisco down to business with gear for digital home

Shark Bait
View Shark BaitFired up about IT? Join Sharkbait and share your true tales of IT. SharkBait is the place for you to sound off about everything IT – the good, the bad, and the rest of the weird stuff you deal with every day.

New baits
Shark Bait
Webcast

Turning information into a Competitive Advantage "Turning information into a Competitive Advantage"

Companies today are realizing that competitive advantage is harder to sustain when based solely on gains in productivity and cost efficiency. The focus is shifting to invest more in business optimization initiatives which rely on trusted information to develop new insights that deliver better business results. But how can this be done efficiently in a business environment across multiple applications and processes. The answer is an Information Agenda - an innovative approach to transforming business information into a strategic asset for competitive advantage.

View this webcast now! more

See more Webcasts more
TODAY'S TOP BLOG
Dan Tynan Dan Tynan: CES preview: The wireless revolution is finally here
Two themes are clearly emerging: gadgets are going wireless in a big way, and everything is finally getting connected. ... [more]
White Papers
Read up on the latest ideas and technologies from companies that sell hardware, software and services.
Extend Your VPN
Smart Security Choices for Mobile Workers
Leverage Web-based Remote Access to Boost Productivity
View more whitepapers 
 


Webcast: The Automation of IT Compliance Programs: Reducing Risk, Cost and Complexity of Corporate Compliance
To meet the growing number of industry and federal regulations, businesses spend significant time, effort, and budget determining how to best meet continuously evolving IT compliance requirements this new Forrester Research and Juniper Networks Webcast led by industry experts who examine global IT security and compliance trends, common IT compliance issues and challenges, and best practices for successful IT compliance programs.

View this webcast 
Whitepaper: Tackling the Top Five Network Access Control Challenges
The major challenge enterprises face today is how to create innovative business models and to increase productivity by opening the network to a dynamic workforce, while at the same time protecting critical assets from the vulnerabilities that openness and user mobility bring. In addition, to comply with industry and governmental regulations, enterprises must prove that they have stringent controls in place to restrict access to sensitive data. This paper describes the top five networking access control challenges that companies like yours are facing and solutions that they are deploying today.

Download this white paper 
Whitepaper: Addressing PCI Compliance with a Comprehensive Network Access Control Solution
The Payment Card Industry (PCI) is one of the most comprehensive data security standards in a cluster of regulations that have emerged over the past decade. Meeting its requirements is both complicated and expensive for many companies. Learn how a comprehensive access control solution allows retailers and consumer organizations adhere to the core tenets of PCI, and delivering the necessary information and reports needed for compliance audits.
Download this white paper 
Whitepaper: Control System Cyber Vulnerabilities and Mitigation of Risk for Utilities
Today's global industrial infrastructure includes thousands of electric utilities, water/wastewater management companies, oil and gas suppliers, chemical manufacturers and other facilities critical to daily functioning. Learn why relying on off-the-shelf operating systems and Internet-based remote access control to carry out production tasks, traditional control networks can leave today's global industrial infrastructures vulnerable to hackers, extortionists, worms, viruses and application-level attacks. Deploying network-based security can protect these at-risk systems–without requiring infrastructure replacement.
Download this white paper 
About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map
CIO Computerworld CSO DEMO GamePro Games.net IDG Connect IDG World Expo Infoworld
The Industry Standard ITworld JavaWorld LinuxWorld MacUser Macworld Network World PC World Playlist
Copyright © 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.