iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > News > Security News > Security Consultant Finds Flaws – Without Permission
Search:
[ news_security_news ]

Security Consultant Finds Flaws – Without Permission



Doug Caverly
Staff Writer
2006-09-28

SecurityProNews: Insider Reports Insider Reports RSS Feed


A self-declared security consultant recently went to unusual (and perhaps illegal) lengths to gain a new customer. Gerasimos Macridis, a New Zealander, examined the security measures of the nation's Reserve Bank - without its permission - and then asked for payment when he reported his findings.

The bank did not pay Macridis. Instead, it contacted the police, "who raided Macridis's house . . . and seized his computer," according to an article in The Register. "Questioned by police, he admitted he had no authorisation to conduct his tests but said he didn't realise he'd done anything wrong, a belief that investigators were quick to dispel."

"Appearing before Judge Ian Mill, Macridis pleaded guilty to intentionally accessing the Reserve Bank's telephone system without authorization," the article continued. At this point, the case seemed fairly cut-and-dry, although also somewhat amusing. Macridis had, after all, "racked up a number of fraud convictions making it appear to investigators that he might have been using his technical knowledge to extort money from the bank and Telecom New Zealand."

The hacker/security consultant is apparently quite the smooth talker, though. Macridis "persuaded the judge he turned over a new leaf . . . . He did not use the security shortcomings he discovered for personal gain or pass on the information to other, potentially less scrupulous, individuals."

"Judge Mill accepted these arguments and discharged Macridis without conviction despite his earlier guilty plea," The Register's John Leyden reported. "‘In my view his intentions were honourable,'" the judge said, according to Leyden. The ruling seems to have ruffled a few feathers.

"Kevin" responded to an article on the same subject posted at Techdirt. "To use an (albeit poor) analogy, if I am walking along the sidewalk and step on your lawn, it shouldn't be a big deal. Unless," he wrote, "I come up and start messing up your property, or unlocking your fence and telling you I found a hole in your security system and demand to be paid for my (unsolicited) work."

Tag:

Add to Del.icio.us | Digg | Yahoo! My Web | Furl

Get all the updates in RSS:




About the Author:
Doug is a staff writer for SecurityProNews. InternetFinancialNews, SearchNewz, and WebProNews.

More news_security_news Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - 1998-2009 All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds