Sysadmin Gets Two Years In Prison For Sabotaging ISP

After being let go over a series of "personal issues" with his employer, things got worse for 26-year-old network administrator Dariusz J. Prugar, who will now have to spend two years in prison for hacking the ISP where he'd worked. An anonymous reader writes: Prugar had used his old credentials to log into the ISP's network and "take back" some of the scripts and software he wrote... "Seeking to hide his tracks, Prugar used an automated script that deleted various logs," reports Bleeping Computer. "As a side effect of removing some of these files, the ISP's systems crashed, affecting over 500 businesses and over 5,000 residential customers."

When the former ISP couldn't fix the issue, they asked Prugar to help. "During negotiations, instead of requesting money as payment, Prugar insisted that he'd be paid using the rights to the software and scripts he wrote while at the company, software which was now malfunctioning, a week after he left." This tipped off the company, who detected foul play, contacted the FBI and rebuilt its entire network.
Six years later, Prugar was found guilty after a one-week jury trial, and was ordered by the judge to pay $26,000 in restitution to the ISP (which went out of business in October of 2015). Prugar's two-year prison sentence begins December 27.

Lucky he got off so light

"Judge Rambo ordered Prugar to pay $26,000 in restitution."

I guess its better than getting sentenced by Judge Dredd.

Amateur Sys-admin deserves the time

[adosch]

As making a living out of being all things 'admin' (sys/network/engineering, ect.), he totally deserves this. This guy is total amateur-hour and quite simply deserves what he got. If it was really about your scripts, then they were probably garbage anyway. Any admin with have a brain keeps copies of their stuff; I actually use version control systems right long with software developers and engineers, so an even bigger reason to manage your domain better.

I'm sure he had a fair bit of perceived egotism and elitism in his attitude and work ethic, which made the situation what it was and resulted into today for him.

Even that, if he was able to log on to absolutely anything after his contract was terminated, then shame on the ISP, too. That's probably why they don't exist anymore. In any fairy constructed IT shop of sys-admins, regardless of how the rest of his co-workers felt about the situation of all of it, his access to everything would have been gone the second he was being walked out the door by security, HR, ect.

Re:Smart but foolish

[ClickOnThis]

You gotta hand it to the guy for negotiating for the rights to the software. He kinda was *TRYING* to do the right thing by making sure he had the proper rights to the software (presumably before he sold it himself). A more unscrupulous man might just have stolen the software and used it to start his own business without any notification at all.

There is no way to parse what he did as the "right thing." He stole from his former employer and sabotaged their system. And then tried to extort them for the rights to his software.

He should have been a professional and just walked away. Or at least he should have talked to a lawyer about his claim to the software he wrote. Although most likely his employment agreement considered it a "work for hire" so he had no claim.

Re:He would have been better off ...

[Kjella]

And keep a copy of your stuff on hand before you get fired.

If you were doing it at work on company systems it's probably not "your stuff" anyway, it's probably small utilities he used to make his job easier. If you want to do something for yourself do it on your own time on your own machine, don't use any company resources and try not to do anything that would make them question your loyalty to your day job. Being a consultant or contractor is fine because everyone knows that. Being an employee with a secret double agenda is not.

Re:He would have been better off ...

[AmiMoJo]

Real pros design their code with subtle flaws that will make it fail a few weeks after they get fired, and then obfuscate it in a way that looks like they are just a plausibly crap programmer. Throw in a few random frameworks for misdirection and convert the odd critical function to COBOL, and you have guaranteed employment for life.

At least, that's what I assume pros do, based on the code I have to maintain.