We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
80,259 News Articles

23 year old US man arrested in connection with Sony Pictures hack

Cody Kretsinger is thought to have belonged to hacking group LulzSec

A  23 year-old US man has been arrested by the FBI in connection with a hack on Sony Pictures earlier this year.

Cody Kretsinger, from Arizona, used the name 'Recursion' and is thought to have belonged to hacking group LulzSec.

In June this year, the hacking group accessed the servers that run Sony Pictures Entertainment websites hackers and subsequently got hold of the name, address, birth dates, emails, phone numbers and password data on more than one million customers who entered contests promoted by Sony.

According to Bloomerberg, Kretsinger has been charged conspiracy and unauthorised impairment of a protected computer. He could face up to 15 years in jail if convicted.

Meanwhile, Fox News is also reporting that 47 year old Christopher Doyon from California and Joshua Covelli, 26, from Ohio, have been arrested and charged with conspiracy to cause intentional damage to a protected computer, causing intentional damage to a protected computer and aiding and abetting, in regards to LulzSec attacks.

"This latest twist of events may shed further light on this particular saga [the sony hack] and provide some much needed information on the workings and members of LulzSec. The arrest should also serve as a warning signal to other cybercriminals and would-be hackers as to the severity with which breaches of security are seen," said Aziz Maakaroun, managing partner of vulnerability management expert Outpost24 UK.

"The biggest take away from this incident, however, is for other organisations. The security surrounding their critical infrastructures – their networks, their websites – must be taken more seriously. Given the scale of Sony's systems you can understand how a lapse of security could happen, but given the volume of sensitive information entrusted to them, it absolutely shouldn't. Both manual and automated penetration testing are an absolute must in ensuring that the security of infrastructure is absolutely water-tight and all potential holes are plugged. This is the only way to ensure that other systems are not also sunk by the LulzBoat."

IDG UK Sites

Best Christmas 2014 UK tech deals, Boxing Day 2014 UK tech deals & January sales 2015 UK tech...

IDG UK Sites

LED vs Halogen: Why now could be the right time to invest in LED bulbs

IDG UK Sites

Christmas' best ads: See great festive spots studios have created to promote themselves and clients

IDG UK Sites

Why Apple shouldn't be blamed for exploitation in China and Indonesia