◆ SpookStack

To: Washington Field From: Néw york b3 -2 b7C -5S bI7E -3 NEW YORK TIME: ivate intranet. LAMO contacted to inform him that he had gained unauthorized access into The NEW YORK TIMES intranet. LAMO utilized the proxy servers to gain access to the NEW YORK TIMES network. Once on the network, LAMO cracked a password for a userid with supervisor rights. Utilizing this userid he was able to broaden his access as well as perform certain functions within the network. LAMO created four (4) Lexis/Nexus accounts off of the NEW YORK TIMES intranet and utilized these accounts for himself and/or friends to run over 3,000 searches of individuals, address and/or court documents. LAMO has committed other computer intrusions into several other corporations such as AOL and EXCITE@HOME. Each time LAMO commits a computer intrusion on a high profile organization he reports the vunerability and intrusion to the media causing a distrust of the company's clients. The above mentioned corporations have lost significant money and trust of their clients. In the enclosed San Francisco Weekly article, dated April 16, 2003, LAMO states "he is preparing to announce, in a few days, weeks or months -- whenever he decides the time is right -- his biggest hack yet. On the record, he defines his target as a "cxitical-infrastructure-related company"; off the record, he exhibits ample evidence of his repeated incursions into the corporations 4 niexnal svete. 2 bS -3 On 01/08/2004, LAMO pled guilty in the SDNY to an information for the hack of The New York Times. The plea agreement offered was not a global plea, it only addressed the unauthorized computer intrusion of The New York Times. The SDNY, victims and the NYO support and will cooperate in the prosecution of LAMO for the unauthorized computer intrusion of Worldcom and SBC Communications. LAMO is aware that further charges for his actions are pending and stated that he is willing to accept responsibility for his actions. LAMO is currently released on bond and is awaiting sentencing in June 2004. LAMO's sentencing quidelines fall within 6- 12 months. LAMO is currently residing withD bo -5 While out on bond, LAMO has top7c -5 the media and other individuals that he is continuing his hacking activities including hacking the FBI's telephone system. LAMO is currently being monitored by pre-trial services but as LAMO has stated he is able to bypass any monitoring mechanisms they have put in place. Due to the N¥YO's lack of venue on the unauthorized intrusions of WORLDCOM and SBC COMMUNICATIONS, the NYO is providing the appropriate field offices with the completed investigations FBI(19-cv-1495)-990