Computer consultant is fined for gaining unauthorized access to donation site for victims of last year's Asian tsunami.
Daniel Cuthbert of London was found guilty Thursday afternoon of breaching the Computer Misuse Act of 1990. The incident occurred on Dec. 31, 2004.
Cuthbert, who at the time of his arrest had been employed by global banking group ABN Amro to carry out security testing, had pleaded not guilty to the charge. He was fined about $700 (400 pounds) plus about $1,050 for costs.
The district judge who heard the case told Cuthbert it was "with deep regret that he was finding him guilty" given his record of good behavior. But the judge also said that Cuthbert had changed his defense, between his police interview at the beginning of the year and his appearance in court this week.
The judge said that Cuthbert was "deliberately trying to throw the police off the trail" by saying one thing and then another.
Earlier this year it was reported that Cuthbert had donated money to tsunami victims using the text-only Lynx browser, which can appear to behave differently to other browsers from the server's point of view.
But in court Wednesday, Cuthbert said he had made a donation of about $50 to the site after clicking on a banner ad. When he received no final thank-you or confirmation page he suspected he might have fallen victim to a phishing scam, so he carried out two tests to check the security of the site.
Cuthbert's defense team argued that he had merely "knocked on the door" of the site, pointing out that he had the skills to break into it if he wanted.
The Computer Misuse Act states that it is an offense to make "unauthorized access to computer material." There is no burden on the prosecution to prove that the accused had intended to cause damage.
The judge accepted that Cuthbert had not intended to cause damage and also pointed out there is almost no case law in this area.
Colin Barker and Graeme Wearden of ZDNet UK reported from London.