Slashdot Mirror

← Back to Stories (view on slashdot.org)

Rogue System Administrator Faces 10 Years In Prison For Shutting Down Servers, Deleting Core Files On the Day He Was Fired (techspot.com)

Posted by BeauHD on from the bad-day dept.

Joe Venzor, a former employee at boot manufacturer Lucchese, had a near total meltdown after he got fired from his IT system administrator position. According to TechSpot, he shut down the company's email and application servers and deleted the core system files. Venzor now faces up to 10 years in prison and a $250,000 fine. From the report: Venzor was let go from his position at the company's help desk and immediately turned volatile. He left the building at 10:30AM and by 11:30, the company's email and application servers had been shut down. Because of this, all activities ground to a halt at the factory and employees had to be sent home. When the remaining IT staff tried to restart them, they discovered the core system files had been deleted and their account permissions had been demoted. Eventually the company was forced to hire a contractor to clean up all of the damage, but this resulted in weeks of backlog and lost orders. While recovering from the attack was difficult, finding out who did it was simple. Venzor was clearly the prime suspect given the timing of the incident, so they checked his account history. They discovered he had collected usernames and passwords of his IT colleagues, created a backdoor account disguised as an office printer, and used that account from his official work computer.

5 of 237 comments (clear)

  1. Re:this is why you need two factor auth by MichaelSmith · · Score: 3, Insightful

    An admin can still override authentication. Whats needs is to bring the new admin in before you sack the old one. He removes admin privileges from the guy being sacked. That, or isolate the system from the outside world for a while but in this day and age that may be impossible from a business perspective.

    --
    http://michaelsmith.id.au
  2. Re:this is why you need two factor auth by Anonymous Coward · · Score: 2, Insightful

    in this case, they did remove admin privileges from the guy being sacked, he used other people's accounts to access things remotely.

    Two Factor authentication could have blocked that by preventing him from impersonating other admins.

  3. Re:this is why you need two factor auth by Zontar+The+Mindless · · Score: 3, Insightful

    You're spelling it g-o-o-d but pronouncing it "evil and incompetent".

    It's not your system--it's your employer's. If you feel that you have to make yourself "indispensable" in such a fashion, you're doing it wrong.

    --
    Il n'y a pas de Planet B.
  4. Re:this is why you need two factor auth by Anonymous Coward · · Score: 3, Insightful

    If you want to be vengeful, thank your former employer for the job on the way out the door and ask for a letter of reference. Then go get a similar job at another company at a higher wage knowing you would never have gotten such a raise at your former employer's.

  5. 10 years in prison? by Anonymous Coward · · Score: 4, Insightful

    Don't get me wrong, this guy certainly deserves punishment if guilty, but 10 years? Did any CEOs or politicians get 1 day of jail time for the 2008 financial crisis?