Law Articles
To search for a particular term please use the following search box.
Click on a Topic to see available articles for that topic.
- Accidents
- Administrative Law
- Admiralty Law
- Articles
- Banking
- Bankruptcy Law
- Canon Law
- Case Law
- Civil Law
- Civil Rights
- Class Action Lawsuits
- Commercial Law
- Common Law
- Comparative Law
- Constitutional Law
- Consumer Law
- Contracts
- Corporate Law
- Courts
- Criminal Law
- Cyber Law
- Dispute Resolution
- Employment Law
- Equity
- Evidence
- Family Law
- Fiduciary Law
- General Practice
- Government
- Health Law
- Immigration Law
- Insurance Law
- Intellectual Property
- International Law
- Jurisprudence
- Labor Law
- Law and Economics
- Maritime Law
- Military Law
- Natural Law
- Personal Injury Law
- Philosophy of Law
- Property Law
- Public Law
- Real Estate Law
- Social Security
- Space Law
- Statutory Law
- Tax Law
- Traffic Law
- Trusts and Estates
- Water Law
Return to Law Dictionary Index
San Diego Computer Expert Charged with Hacking into U.S.C. Computer System
A San Diego man has been charged with hacking into a computer system at the University of Southern California and accessing confidential information submitted by students applying to the school.
Eric McCarty, 25, was named in a criminal complaint that was unsealed yesterday charging him with knowingly having transmitted a code or command to intentionally cause damage to USC's on-line application system. McCarty, who is employed as a computer network administrator, also earns money by performing "penetration testing" designed to simulate malicious attacks on computer networks.
McCarty exploited a vulnerability in the sequel database to by-pass the password authentication used to protect the sequel database. After determining the vulnerability, McCarty staged an "SQL injection" attack to gain access to the database, which allowed him to access and copy several applicant records. Following the SQL injection attack, McCarty created an email account – ihackedusc@gmail.com – which he used to report his attack to securityfocus.com. A reporter at securityfocus.com later contacted USC and informed them that its applicant website database was vulnerable.
On June 21, 2005, the USC applicant website and SQL database were shut down as a direct result of the SQL vulnerability. The website remained off-line for nearly two weeks, causing considerable expense along with disruption to applicants.
A subsequent investigation by the Federal Bureau of Investigation led to McCarty through the Internet protocol number on his home computer.
McCarty is scheduled to make his initial appearance in United States District Court in Los Angeles on April 28. If he is convicted of the computer intrusion charge alleged in the complaint, McCarty would face a maximum possible sentence of 10 years in federal prison.
A criminal complaint contains allegations that a defendant has committed a crime. Every defendant is presumed innocent until and unless proven guilty.
The case against McCarty is the result of an investigation by the Federal Bureau of Investigation.
CONTACT:
Assistant United States Attorney Michael C. Zweiback
Cyber and Intellectual Property Crimes Section
(213) 894-2690
More information on: Computer Crime