An alleged LulzSec member was arrested yesterday in Arizona in connection with the major hacking of Sony Pictures Entertainment earlier this year. Cody Kretsinger, 23, has been charged with conspiracy as well as the unauthorized impairment of a protected computer, Reuters reports. Kretsinger and others used a common hack called an “SQL injection” to reap data from the movie studio’s computers, a federal indictment claims.
Kretsinger posted the data—including the names, addresses, and passwords of thousands of Sony contest entrants—on LulzSec’s website, the indictment alleges. “From a single injection we accessed EVERYTHING,” LulzSec said in a statement after the breach. “Why do you put such faith in a company that allows itself to become open to these simple attacks?” Kretsinger has been released on his own recognizance, but he isn’t allowed to use the Internet outside of his workplace and must remain in one of three states. He faces up to 15 years in prison. (Read more LulzSec stories.)