Colin Mc Hugo

0 %
Colin Mc Hugo
Security Engineer Manager & CEO at Quantum Infinite Solutions Group Ltd.

Vengeful IT worker gets jail time for deleting company’s Microsoft user accounts

March 25, 2021

The corporate was left to cope with three months’ price of IT issues

An IT contractor has been sentenced to 2 years in jail and ordered to pay $567,000 in restitution to cowl the injury he attributable to deleting the vast majority of an organization’s Microsoft Workplace 365 person accounts in an act of revenge, in response to the United States’ Department of Justice (DoJ).

Deepanshu Kher, who was working for an unnamed expertise consulting firm from 2017 by way of Could 2018, was employed to assist a agency primarily based in Carlsbad, California migrate its belongings to an Microsoft Workplace 365 atmosphere.

Nonetheless, the corporate wasn’t precisely impressed with Kher’s work efficiency and relayed as a lot to his employer, which relieved him of his duties on the shopper. Inside a number of months, the corporate fired Kher, whereupon he returned to Delhi, India.

An extra two months later, the IT specialist determined to “get even” with the corporate and proceeded to interrupt into its servers and delete over 1,200 of its 1,500 Microsoft Workplace 365 person accounts.

The corporate was pressured to close down its operations for 2 days, as employees couldn’t entry the instruments they should carry out their jobs, together with emails, contacts lists, assembly calendars, paperwork, company directories, video- and audio-conferencing software program, and Digital Groups environments. The results of the incident have been additionally felt exterior the corporate, as clients, distributors and shoppers weren’t in a position to get in contact with the corporate’s workers.

“Sadly, even after these two days, the issues remained. Workers weren’t receiving assembly invitations or cancellations, workers’ contacts lists couldn’t be utterly rebuilt, and affected workers might now not entry folders to which they beforehand had entry. The Carlsbad Firm repeatedly dealt with multitudes of IT issues for 3 months,” reads the DoJ’s press launch.

Unaware that there was an impressive warrant for his arrest, Kher returned to the US in January of this yr and was apprehended. Two months later, he was sentenced to jail and three years of supervised launch. Kher was additionally ordered to pay the corporate US$567,084, the precise quantity that it spent to repair the issues he induced.

In a method, the incident is strikingly just like a case that occurred in Britain a number of years in the past, the place a resentful IT employee was sentenced to 2 years in jail after wiping his ex-employer’s business-critical data. Certainly, organizations would do nicely to use measures that protect their data from disgruntled insiders.

Posted in SecurityTags:
Write a comment