CA Man Hacked West Point Counterterrorism Website

WEST POINT, NY — A California man pleaded guilty Tuesday to computer fraud. He hacked into and defaced the Combating Terrorism Center at the United States Military Academy in West Point.

He also hacked into and defaced the Office of the New York City Comptroller.

Geoffrey S. Berman, the United States Attorney for the Southern District of New York, announced that Billy Ribeiro Anderson, a/k/a “Anderson Albuquerque,” a/k/a “AlfabetoVirtual,” pleaded guilty to two counts of computer fraud before U.S. District Judge Laura Taylor Swain.

“Billy Anderson hacked the websites of the New York City Comptroller and West Point, one of the most prestigious military academies in the world," Berman said. "He has now pled guilty to those crimes and faces time in federal prison. This case demonstrates that those who seek to commit cyber intrusions of government websites will be prosecuted to the fullest extent of the law.”

According to the allegations and statements made at the plea proceeding:

Website defacements are acts of computer intrusion in which a hacker obtains unauthorized access to computers hosting Internet websites and then replaces the publicly available contents of the website with content generated by the hacker, thereby “defacing” the website. Hackers frequently claim responsibility for defacements by listing their online pseudonyms as part of the defaced content.

From 2015 through at least March 13, 2018, Anderson took responsibility for obtaining unauthorized access to, and committing more than 11,000 defacements of, various U.S. military, government, and business websites around the world under the online pseudonym “AlfabetoVirtual,” including websites for the Combating Terrorism Center at West Point and the NYC Comptroller.

On Oct. 4, 2016, a website for the Combating Terrorism Center at West Point was defaced, and Anderson, using the online pseudonym “AlfabetoVirtual,” claimed responsibility for the intrusion and defacement. The content of the Combating Terrorism Center website was modified to display the text “Hacked by AlfabetoVirtual.” The defacement was performed by an unauthorized administrative account that exploited a known cross-site script vulnerability, thereby enabling Anderson to bypass access controls and target an internal Combating Terrorism Center website address.

He also committed unauthorized intrusions of thousands of web servers located around the world by surreptitiously installing malicious code on victim web servers that provided him with administrative rights to the victimized web servers, thereby enabling him to commit defacements and to maintain persistent unauthorized access to the victimized web servers.

Anderson, 41, of Torrance, California, is scheduled to be sentenced Feb. 13, 2019 on the felony counts, each of which carries a maximum sentence of 10 years in prison.

The maximum potential sentences are prescribed by Congress and are provided here for informational purposes only, as any sentencing of the defendant will be determined by the judge.

Berman praised the outstanding investigative work of the FBI. Berman also thanked the Computer Crime Investigative Unit of the United States Army Criminal Investigation Command and the Brazilian Federal Police Cyber Crime Unit for their assistance with the investigation.

This case is being handled by the Office’s Complex Frauds and Cybercrime Unit. Assistant United States Attorney Sagar K. Ravi is in charge of the prosecution.

» Find Hudson Valley Patches' Facebook Pages
» Find Your Patch and more news of the day

Image via Shutterstock