Risk
9/28/2010
04:27 PM
Connect Directly
LinkedIn
Twitter
Google+
RSS
E-Mail
50%
50%

VoIP Hacker Sentenced To 10 Years

The scheme involved defrauding Internet phone service providers to the tune of $1.4 million.

United States Attorney Paul J. Fishman on Friday said that Edwin Andres Pena, 27, had been sentenced to 120 months in prison and ordered to pay over $1 million in restitution for his role in the hacking and defrauding of Internet telephony service providers.

Pena is the first individual to be charged with hacking the networks of VoIP companies and reselling their services for a profit.

Pena, a citizen of Venezuela, was arrested in 2006 but fled the U.S. shortly thereafter. He was recaptured in Mexico in February, 2009, and subsequently extradited back to the U.S. He pleaded guilty to conspiring to commit computer hacking and wire fraud and to committing wire fraud this past February.

Fishman in a statement characterized hackers as no different than bank robbers.

"Theft is theft whether you rob a bank or hack into somebody else's network and steal their services," he said. "Hackers attacking new and emerging technologies should not assume that law enforcement cannot keep up with them, even when they operate from the shadows or from other countries."

Pena, with the help of co-conspirator Robert Moore, who was sentenced to 24 months for his role in the scheme, defrauded VoIP service providers by masquerading as a legitimate provider of wholesale Internet phone service. Pena purportedly sold discounted service plans to customers. In fact, he was selling service stolen from other VoIP providers.

Pena and Moore were able to find vulnerable VoIP networks through extensive port scanning. According to AT&T records provided to the prosecution, Moore initiated over six million scans of AT&T's network between June 2005 and October 2005. Pena sold over 10 million minutes of VoIP service hijacked from other networks, resulting in losses estimated to be $1.4 million in less than a year.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-0485
Published: 2014-09-02
S3QL 1.18.1 and earlier uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object in (1) common.py or (2) local.py in backends/.

CVE-2014-3861
Published: 2014-09-02
Cross-site scripting (XSS) vulnerability in CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted reference element within a nonXMLBody element.

CVE-2014-3862
Published: 2014-09-02
CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to discover potentially sensitive URLs via a crafted reference element that triggers creation of an IMG element with an arbitrary URL in its SRC attribute, leading to information disclosure in a Referer log.

CVE-2014-5076
Published: 2014-09-02
The La Banque Postale application before 3.2.6 for Android does not prevent the launching of an activity by a component of another application, which allows attackers to obtain sensitive cached banking information via crafted intents, as demonstrated by the drozer framework.

CVE-2014-5136
Published: 2014-09-02
Cross-site scripting (XSS) vulnerability in Innovative Interfaces Sierra Library Services Platform 1.2_3 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
This episode of Dark Reading Radio looks at infosec security from the big enterprise POV with interviews featuring Ron Plesco, Cyber Investigations, Intelligence & Analytics at KPMG; and Chris Inglis & Chris Bell of Securonix.