Two Moroccan men have been jailed for releasing the Zotob computer worm, which wreaked havoc on an estimated 250,000 Windows PCs last year.
Farid Essebar, 19, was sentenced to two years in prison yesterday by a Moroccan court, according to a report by AFP (Agence France-Presse). An accomplice, Achraf Bahloul, also of Morocco, received a one-year sentence.
A third man, 22 year-old Turk Atilla Ekici, has been charged with financing the attack, which shut down PCs in a number of major corporations in mid-August 2005.
The worm primarily affected Windows 2000 systems, taking advantage of a bug in the OS's (operating system's) Plug and Play service that had been patched by Microsoft just days before the outbreak.
Though it did not infect as many computers as more widespread worms such as Sasser or MyDoom, Zotob did take out systems at media outlets, including CNN, prompting widespread publicity.
Ekici and Essebar, known also by the hacker names 'Coder' and 'Diabl0' respectively, were arrested just 12 days after the release of Zotob, but authorities had also been investigating 16 other individuals in connection with a credit card theft ring that may have been linked to the worms.
It is not unusual for hackers to create networks of compromised computers, like the one created by the Zotob worm, for identity theft, said Graham Cluley, a senior technology consultant with antivirus vendor Sophos.