Slashdot Mirror

← Back to Stories (view on slashdot.org)

Before You Fire the Company Geek

Posted by Zonk on from the check-his-pockets-on-the-way-out dept.

An anonymous reader writes "A new 'insider threat' survey by the US Secret Service and Carnegie Mellon University finds that 82 percent of people who hack their company 'exhibited unusual behavior in the workplace prior to carrying out their activities.' A somewhat amusing writeup at washingtonpost.com points to a bunch of more interesting gems hidden deep in the study, including: 'Almost all - 96 pecent - of the insiders were men, and 30 percent of them had previously been arrested, including arrests for violent offenses (18 percent), alcohol or drug-related offenses (11 percent), and non-financial-fraud related theft offenses (11 percent).' The blog post also notes that 86 percent held technical positions at the companies: '...if you're going to fire someone (particularly company geeks who have the motive, means and access to inflict pain on your computer systems) make double sure you cut off their e-mail and network access at the same time you hand them their walking papers.'

15 of 624 comments (clear)

  1. you don't even have to be suspicious by yagu · · Score: 5, Informative

    I guess I get it as far as policy goes, but I experienced this a year ago from a large corporation when I got laid off... My manager came to my desk and did the perp walk with me to the office. Told me that in the interest of cutting cough costs the company was willing to offer me a one year severance package and let me go.

    I said, "You're offering me a one year severance package???" He looked confused, but said, "yes".

    I said, "Well then I respectfully decline your offer.... I would like to continue working for this company."

    He said, "It's not optional."

    I said, "Then you're not offering anything to me, you are doing something to me."

    A couple of notes about the treatment therein:

    • By the time I got back to my desk, all access was gone to all systems, man they're fast!
    • The one year package turned out to be 60 days pay (required by the federal WARN law), then one month's pay for every year I'd put in.... with a 10 month maximum. I had 21 years, so I got ten months pay plus the sixty days... I consider that a ten month package.
    • I found it interesting that any others with ten years, eleven years, twelve years, thirteen, fourteen, fifteen, sixteen, seventeen, eighteen, nineteen, and twenty years all also got the same package as mine.... so much for any extra benefits for being a long time and loyal employee.
    • No information as to who else was gone was given, and those who would still talk to me (funny how one laid off somehow develops a quick case of leprosy) had no information internally who was laid off -- they could only tell by seeing around them -- no lists were dispersed.
    • Those who may have had info would not give it (a bit of a pain since I no longer had access to directories, phone numbers, etc.) making the process of setting up contacts for references nigh impossible (turned out, my entire management hierarchy was gone... and I never did find out where they all went).
    • I had a few years left for qualifying for full retirement.

    In my career at this company I had received the highest award given by the company and was flown to a special ceremony to present my project and receive that award.

    Bottom line here: you don't have to be a criminal, act like a criminal, or even be suspected of being a criminal to be treated like one....

    1. Re:you don't even have to be suspicious by yagu · · Score: 3, Informative
      it makes sense to get rid of the highest paid people. If you've been there for 10 years, not only are you normally get paid more then other people, you also get more time off, and require more severance pay. Since getting rid of one high paid employee can in a lot of cases fund two lower paid ones, it also doesn't look as bad to the public.

      What you are describing is evil.... what's more, it is illegal. Companies today pay millions to their legal staff to ensure when they do lay off that their numbers will pass legal muster, but that's about all they do. It's well documented (I can cite the research, ahem, and have done some on my own) how difficult it is to prove age discrimination, but plain and simple, this is what it is. And, it is still illegal.

  2. Re:Apologies to Tyler Durden... by Anonymous Coward · · Score: 3, Informative

    If you're stupid enough to get caught, you're not earning your reputation anyway.

  3. Coincidence by Praetorian42 · · Score: 2, Informative

    That's quite coincidental. The company I work for fired a sys admin last week for drug abuse, and we are at this very second combatting a DoS attack from him. He's also using our servers to route spam to all over the place hoping to get our servers listed on spam blacklists so that we can't use corporate mail.

  4. Re:Apologies to Tyler Durden... by Anonymous Coward · · Score: 0, Informative

    Until they look through their logs...
    What will the logs show? That (for instance) an outside hacker used an unpatched exploit on one of your machines to gain access to your network and crack the password to your production server, where they altered or deleted data. This was done from a open wi-fi connection somewhere in your city.

    There is NOTHING there that leads back to you. Except why that one machine was left unpatched. But that's hardly conclusive.

    Besides, you can just take advantage of 'the system' that you used to have to work under. For example: Let's say you know that your former place of work requires a certain amount of paperwork to be done before patches are rolled out. You can then, 6 months ofter you are (wrongfully) fired, take advantage of that delay to exploit the not-yet-patched machines immediately after the exploit is publically released. No comeback.

  5. Re:Don't ask, don't tell by MindStalker · · Score: 3, Informative

    There is a difference between Reference and Previous Employment. Essentially when they call your previous Employer all they can ask is "Did they work here?"
    When they call your references they can get good or bad information.

  6. Re:Apologies to Tyler Durden... by Anonymous Coward · · Score: 1, Informative

    And in this day and age, as an employeer, you're liable if you say anything negative about a former employee when another company comes calling. So, unless they have a record with the cops detailing what they did under your employ, they're free and clear.

    The best you can do anymore is say "Yeah, Billy Bob Joe Jr. worked here, from xxxx date to yyyy."

  7. Re:Further down in the report... by ichin4 · · Score: 2, Informative

    It's often called the prosecutor's fallacy. Just google for it.

    It involves confusing the odds of A, given B, with the odds of B, given A.

  8. Employment "at will" in the US by dereference · · Score: 2, Informative
    Companies are required BY LAW to give severance pay and/or notice when laying off employees.

    In the US this is not true, at least as a general statement. Under the doctrine of At-will employment you can be fired at any time for (almost) any reason.

  9. Re:Further down in the report... by SatanicPuppy · · Score: 4, Informative

    It's the "Fallacy of Affirming the Consequent"

    Basically, it's whenever you have a one way relation (A->B) and you turn it around to say (B->A), implying that A and B are logically equivalent when it isn't the case.

    Good argument, btw.

    --
    ad logicam Claiming a proposition is false because it was presented as the conclusion of a fallacious argument.
  10. Re:Further down in the report... by redrhino · · Score: 3, Informative

    um ... we statisticians call this fallacy "confusion of the inverse".

  11. Re:These number mean nothing by wfberg · · Score: 2, Informative

    For those clamoring for stats:

    http://www.csmonitor.com/2003/0818/p02s01-usju.htm l

    If current trends continue, it means that a black male in the United States would have about a 1 in 3 chance of going to prison during his lifetime. For a Hispanic male, it's 1 in 6; for a white male, 1 in 17. ..
    An estimated 4,299,000 former prisoners are still alive..By 2010, the number of American residents in prison or with prison experience is expected to jump to 7.7 million, or 3.4 percent of all adults, according to the new report.

    And that's probably just people who went to prison; that doesn't include people who were only fined for a felony and/or received a suspended sentence and/or did community service, and perhaps even excludes people who went to jail rather than prison.

    Not 1-in-5, but even for white males, uncomfortably close.

    --
    SCO employee? Check out the bounty
  12. Re: planes, automobiles. by 123abc987 · · Score: 2, Informative

    Here's a really old chart with real statistics. It says that going to work is way more dangerous than flying in airplanes OR crashing your car.

  13. Re:Further down in the report... by tomhudson · · Score: 1, Informative
    Not trying to correct you here, but I heard on the radio this morning that the real statistic was something like 15 out of every 100,000,000. That's crazy. I'd bet that the car accident stat is closer to your 10 of 10,000 example.
    ... and what part of the GP posters ...
    Using totally random numbers,
    ... didn't you understand?
  14. Why I disclose / request access be denied by Anonymous Coward · · Score: 1, Informative

    I occasionally teach sysadmin and related topics. One concept I try to impart is "the finger". It's not the finger that flies like a bird, but the finger that points: if you have root, webmaster, Administrator, DBA, or any other privileged (or otherwise) access to systems, then when something happens, the finger that points eventually swings around to you.

    I've left a number of organizations under a number of circumstances. In all cases, I document systems to which I have access, the accounts, and request either passwords be changed or accounts disabled. In some informal arrangements, I've taken the step of removing myself from privileged groups (eg: sudo files) and scrambling my passwords (long random sequences, changed and forgotten).

    Where affiliated organizations offered systems access, I'll notify the third party, copied my former manager, that access be denied.

    I don't want the shadow of a doubt shading me, and I want to make clear that any and all accesss modifications are the responsibility of the organization.