In this section

• Home
• Press office
• News archive
• Articles
• 2007
• 01

• Journalists' guide
• News archive

Talk to our experts

• Press contacts

Resources

• Sophos Podcasts
• SophosLabs blog
• Image gallery
• Customer case studies
• Free anti-virus
• White papers
• Awards and reviews
• Industry affiliations

Info feeds

• Security news
• Company news

• Security news
• Company news

What are info feeds?

17 January 2007

Convicted AOL phisher faces 101 years in jail

Phishers steal money and confidential data from internet users.

Experts at SophosLabs™, Sophos's global network of virus, spyware and spam analysis centers, have reminded computer users of the threat posed by phishers following the conviction of a man who targeted users of AOL.

A 45-year-old man from Azusa, California, who has been found guilty under the CAN-SPAM Act of sending phishing emails to AOL subscribers asking for their confidential information, faces a maximum sentence of 101 years in a federal prison for his crimes.

Jeffrey Goodin used several different compromised Earthlink email accounts to send thousands of unsolicited emails posing as AOL's billing department, and directed recipients to bogus payment websites. Goodin was also convicted on a number of other counts including wire fraud, possession of unauthorized credit cards, misuse of the AOL trademark, and attempted witness harassment.

According to the US Attorney's Office in Los Angeles, Goodin used the stolen credit card information to make unauthorized purchases. It has been estimated that in total he caused approximately $1 million in financial damage.

"Phishing and other forms of identity theft are on the rise, and it's all too easy for internet users to be duped into believing they are handing over their details to someone they can trust," said Graham Cluley, senior technology consultant for Sophos. "Of course it's unlikely that Goodin will have to serve over a hundred years in prison, but a clear message needs to be sent to the many other identity thieves roaming the internet that they will be caught, and that their crimes will warrant serious punishment."

Sophos recommends companies protect themselves with a consolidated solution which can defend them from the threats of spam, spyware and viruses.

• Bookmark with del.icio.us
• Submit this story to digg
• Submit this story to slashdot

Download now
Sophos Threat Report July 2008

• SQL injection attacks are the biggest threat
• 90% of malware on legitimate sites
• Hackers exploit Web 2.0

About Sophos

Sophos enables enterprises all over the world to secure and control their IT infrastructure. Sophos's network access control, endpoint, web and email solutions simplify security to provide integrated defenses against malware, spyware, intrusions, unwanted applications, spam, policy abuse, data leakage and compliance drift. With over 20 years of experience, Sophos protects over 100 million users in nearly 150 countries with its reliably engineered security solutions and services. Recognized for its high level of customer satisfaction and powerful yet easy-to-use solutions, Sophos has received many industry awards, as well as positive reviews and certifications.

Sophos is headquartered in Boston, US and Oxford, UK. More information is available at www.sophos.com

See also:

• 70 months in jail for convicted AOL phisher
• $24 million spammer sentenced to 9 years in jail
• AOL files lawsuits against alleged phishing gangs
• Man pleads guilty to stealing 92 million AOL email addresses
• Security best practice - simple steps to defend against the threats