len@eci.UUCP (Len Rose) (06/04/90)
I was indicted in Maryland.
Because of articles in the Baltimore Sun, and Unix Today I have been
branded a member of the Legion of Doom.
"I am not now, nor have ever been a member of the Legion of Doom".
I am not allowed to say much more than that.
I would appreciate if a particular net persona not try to judge me
without being fully informed.
Here is the article in the Baltimore Sun that is based on a press release
from the U.S. Attorney's office in Maryland.
Reprinted without Permission from an article in The Baltimore Sun
MARYLAND MAN INDICTED FOR COMPUTER HACKING
by Karen Warmkessel
A 31-year old Middletown man,who prosecutors said was part of an illegal
computer hackers' group known as the "Legion of Doom" was indicted yesterday
for alledgedly helping others break into computer systems throughout the
country.
In addition to facing federal computer fraud charges, Leonard Rose Jr.,a
computer consultant, is charged in an alledged sheme to steal and give out
closely guarded software for AT&T Unix computer systems.
Breckinridge L. Wilcox, the U.S. attorney for Maryland,said the indictment -
the third in a series of related prosecutions of the Legion of Doom - had
"far reaching" implications for the security of computer systems in the United
States.
"The activities of this guy and his group are disturbing" Mr. Wilcox said.
He said the investigation, which started in Chicago, and expanded to Georgia,
and Maryland, had revealed that Mr. Rose and his confederates gained access
to computer systems belonging to federal research centers,educational insti-
tutions and private businesses, but he declined to name them.
Mr. Wilcox said that because the hackers covered their tracks, authorities
had not yet determined whether any harm resulted. "We know what computer
systems were accessed," he said. "It may be very difficult, if not impossible,
to determine what, if any damage was done.
"We don't know if it was done for fun,to see if it could be done, or if it
was done form some more malignant motive."
One law enforcement source said there were indications that Mr. Rose may have
been paid for some programs but that he gave others to his fellow hackers.
Mr. Rose, who, according to authorities lives on Willow Tree Drive, and used
the name "Terminus," could not be reached for comment last night. He is
charged with two counts of computer fraud and three counts of interstate
transportation of stolen property.
If convicted of all counts, he faces a maximum possible prison sentence of
32 years and a maximum possible fine of $500,000.
"He is a fairly sophisticated Unix user who decided to take advantage of
that knowledge to work his way into other people's systems" one law enforcement
said.
The investigation is continuing,and others in Maryland reportedly could be
charged.
The Unix program, originally developed by AT&T, is an "operating system" that
governs the core functions of a computer system. An AT&T spokesman said
yesterday that about one million Unix computers are in use in the country,
many of them on college campuses.
David P. King, an assistant U.S. attorney, said that Mr. Rose not only gave
the stolen Unix software to others,but also used it to develop two so called
"Trojan horse" computer programs,with seemingly innocuous functions that
conceal their true purpose.
One of these programs was alledgedly designed to collect "superuser" passwords,
which give the user unlimited access to computer systems,including the ability
to change the programs and insert new programs.Another program which would
have allowed users to use a computer system without authorization.
Mr. Rose allegedly used tthe programs himself and gave them to others hackers
in Michigan and Chicago.
One of the men was a member of the Legion of Doom,according to Mr. King .
He said it was unclear where Mr. Rose had obtained the stolen Unix software.
There are other federal indictments pending that involve Legion of Doom
members in Atlanta and Chicago, Mr. King said.
The assistant U.S. attorney said authorities believe that the Legion of Doom
is a "small" group of hackers nationally. He said he was unable to estimate
their numbers.
The indictment alleges that the group used various methods to gain access to
computer systems such as masquerading as authorized users,password scanning,
and Trojan horse programs.
It's members allegedly wanted to break into the system to steal computer
software from the companies that owned the programs;to use computer time at
no charge;to steal the original text of software and other information;to
make telephone calls at no charge; and to obtain and use credit histories of
individuals other than themselves, the indictment said.
This is the second computer fraud case to be brought by federal prosecutors
in Maryland. Mr. Wilcox said the other case was dismissed by a federal judge.
[end of article]