Former database administrator accessed customer info after he was terminated
A former senior database administrator for GEXA Energy in Houston was sentenced today to 12 months in prison for hacking into his former employer's computer network.
Steven Jinwoo Kim, 40, of Houston pleaded guilty in November to one count of intentionally accessing a protected computer without authorization and recklessly causing damage. Kim was sentenced today by U.S. District Judge Vanessa Gilmore in the Southern District of Texas. Kim was also ordered to pay $100,000 in restitution to GEXA Energy and to serve three years of supervised release following his prison term.
According to court documents, on Feb. 5, 2008, GEXA Energy terminated Kim from his position as a senior database administrator and revoked all of his administrative rights and access to the GEXA Energy computer network.
In pleading guilty, Kim admitted that in the early hours of April 30, 2008, he used his home computer to connect to the GEXA Energy computer network and a database that contained information on approximately 150,000 GEXA Energy customers. While connected to the computer network, Kim recklessly caused damage to the computer network and the customer database by inputting various Oracle database commands.
Kim also copied and saved to his home computer a database file containing personal information on the GEXA Energy customers, including names, billing addresses, social security numbers, dates of birth, and driver's license numbers. According to court documents, Kim’s actions caused a $100,000 loss to GEXA Energy.
Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.
About the Author(s)
You May Also Like
Guarding the Cloud: Top 5 Cloud Security Hacks and How You Can Avoid Them
April 4, 2024Cybersecurity Strategies for Small and Med Sized Businesses
April 11, 2024Defending Against Today's Threat Landscape with MDR
April 18, 2024Securing Code in the Age of AI
April 24, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024Black Hat Asia - April 16-19 - Learn More
April 16, 2024