◆ SpookStack

“doing nothing wrong” on its internal network. Given the reported information, this is the most extreme case of negligence I have ever seen. Mistakes happen to even the most diligent enterprises. But to dismiss the nature of this CRIME screams negligence. Lamo broke the law, confessed, and was given a pat on the back. WorldCom claims nothing significant occurred. Nobody learned here. WorldCom can't really be sure there was no damage unless it does a thorough review of every network device and host system accessible via its Internet and changes ali passwords associated with administration. The fact that it doesn’t seem to think the incident is significant indicates that it won't perform these procedures. How many ways can something as benign as this go wrong? Let's see, what if he makes a mistake? What if someone steals his laptop? What if he stops liking you? What if he gives away the stuff he kept? What if he comes back? What if he uses that access to gain access to another site? There are too many possibilities that can lead to something going wrong. . There are a number of victims here, including under-appreciated customers and denigrated WorldCom security employees. These victims should strongly consider the impact of this incident as well as the precedent it sets. Adrian Lamo is a “serial hacker” looking for press who doesn't think he is doing anything wrong. What he deserves is jail time. WorldCom is a negligent entity that has breached the trust of all of its customers. What it deserves is a class-action lawsuit. The entire incident is indicative of the apathy that runs rampant in the face of actual incidents. Copyright © 2001 Hurwitz Group, Inc. [Adrian Lamo's Reported Victims: AOL, Apple Computer, Journal of ‘Commerce, Microsoft, Excite@Home, ‘Yahoo, World Bank, WorldCom, WorldCom ‘Customers (Bank of America, JP Morgan, Citicorp, Sun Microsystems). Adrian Lamo’s Quotes (All from SecurityFocus): "The downside is, I'm running out of major U.S. corporations." "For me, [WorldCom's intranet is] a massive playground that's slowly and inexorably crumbling away at their security .linfrastructure.” "I made it clear very quickly that all I was interested in doing was make it as positive lan experience as possible for everyone.” "i do what I do, there's no particular motive I can describe." . FBI(19-cv-1495)-163