The boy faces one count of Unauthorized Use of Computer and one count of Mischief in Relation to Data
As weird as it might sound but we have here the first known arrest for exploiting the Heartbleed bug. Stephen Arthuro Solis-Reyes is the 19 year old Canadian whose from London, Ontario and was arrested on Tuesday for his role in the breach of the Canada Revenue Agency (CRA) website. The boy is facing one count of Unauthorized Use of Computer and one count of Mischief in Relation to Data.
The CRA Commissioner Andrew Treusch made an announcement on Monday that within a short time span of 6 hours, the Social Insurance Numbers of about 900 taxpayers were removed from CRA systems and the hack took place only a day after CRA services were fully restored which was a follow up event after last week's temporary shutdown due to the Heartbleed bug.
The Assistant Commissioner Gilles Michaud said in a statement that "The RCMP treated this breach of security as a high priority case and mobilized the necessary resources to resolve the matter as quickly as possible." After the suspect's house was fully searched, some computer equipment was seized from the premises but the police have provided no further details on the ongoing investigation. This Heartbleed weakness has been there for the past two years and its presence has led personal data to be exposed and wide open for scammers.