A Massachusetts grand jury indicted Andrew James Miller on four counts of conspiracy and computer and access device fraud.
Miller and unnamed co-conspirators are charged with breaking into computer networks belonging to the DOE, U-Mass, RNK Telecommunications, and Crispin Porter and Bogusky, and installing trojan programs that gave them network acess that they sold online, according to a blog by Brian Donohoe of Kaspersky Lab’s Threatpost.
The FBI uncovered the hacking when Miller and his accomplices attempted to sell access to these networks to an undercover agent. The indictment details conversations between Miller and the agent in which Miller exchanged access to RNK’s servers and a list of hundreds of user names and passwords for $1,000.
Miller later requested two payments of $600 via Western Union in exchange for U-Mass data and $1,000 for access to the CPB Group. At one point, Miller attempted to sell the FBI access to a supercomputer belonging to the DOE’s National Energy Research Scientific Computer Center for $50,000.
Miller could face up to 15 years in prison and $250,000 in fines, according to Donohue.