Chetan S. Bendale, of Pune, India, was indicted on computer hacking and extortion charges Thursday at the U.S. District Court for the Northern District of California in San Jose.

Two years ago he allegedly took over the MyDomain.com account of technology staffing firm oDesk and changed the password and administrative contact. On July 18, 2009, after oDesk had been locked out, Bendale starting sending oDesk executives "a series of threatening e-mails demanding that the company pay him one million dollars or he would sell oDesk's information or release it on the Internet," according to the grand jury indictment in the case.

To prove he had access to oDesk's account, Bendale e-mailed company executives a list of the more than 70 domains they had registered, along with the last four digits of one executive's credit card number, according to the indictment. Using the assumed name Rohit Kumar, he "claimed to have hacked oDesk's servers and demanded to be paid in exchange for information that would prevent future intrusions," the indictment states.

On Friday, oDesk said no user information had been compromised by the hack. "We will continue to work with law enforcement to ensure that the person who unlawfully accessed our domain registry in 2009 is held accountable for their actions," the company said.

ODesk isn't the only company to have had its domain name account hacked. Last year, a group calling itself the Iranian Cyber Army took over similar accounts belonging to Baidu and Twitter. These type of attacks can cause big problems for victim companies. Once hackers take over domain name accounts they can reroute Web traffic and e-mail to servers under their control.