Slashdot Mirror

← Back to Stories (view on slashdot.org)

Wall Street IT Engineer Hacks Employer To See If He'll Be Fired (bleepingcomputer.com)

Posted by EditorDavid on from the that's-what-they-all-say dept.

An anonymous reader writes: A Wall Street engineer was arrested for planting credentials-logging malware on his company's servers. According to an FBI affidavit, the engineer used these credentials to log into fellow employees' accounts. The engineer claims he did so only because he heard rumors of an acquisition and wanted to make sure he wouldn't be let go. In reality, the employee did look at archived email inboxes, but he also stole encryption keys needed to access the protected source code of his employer's trading platform and trading algorithms.

Using his access to the company's Unix network (which he gained after a promotion last year), the employee then rerouted traffic through backup servers in order to avoid the company's traffic monitoring solution and steal the company's source code. The employee was caught after he kept intruding and disconnecting another employee's RDP session. The employee understood someone hacked his account and logged the attacker's unique identifier. Showing his total lack of understanding for how technology, logging and legal investigations work, the employee admitted via email to a fellow employee that he installed malware on the servers and hacked other employees.

30 of 198 comments (clear)

  1. Wall Street IT Engineer Hacks Employer To See If by Anonymous Coward · · Score: 5, Funny

    Yes...

  2. Idiot. by YukariHirai · · Score: 5, Interesting

    It didn't seem to occur to him that if he hacked them, it would make the answer to the question of "will he be fired?" a very definite "yes".

    Of course, that's if we take his claims at face value; he was clearly looking to get a lot of other stuff, and that's the best excuse he could find. But he's still an idiot for thinking he wouldn't get caught and admitting in an email that he did it.

  3. Wow. by Frosty+Piss · · Score: 3

    So a guy hacks his employer to steal proprietary code, gets caught and arrested? Who would have thought!

    --
    If you want news from today, you have to come back tomorrow.
    1. Re:Wow. by lucm · · Score: 5, Funny

      The guy hacked A UNIX NETWORK! I heard those networks are hardcore, some even use the vi protocol to load balance the kernel across multiple NFS loopbacks. It's basically POSIX grade security with layers upon layers of nmaps.

      --
      lucm, indeed.
    2. Re:Wow. by Aighearach · · Score: 5, Funny

      This is UNIX. Semantics matter here. Go away, muggle. The gnomes are trying to talk about the System.

    3. Re:Wow. by mysidia · · Score: 4, Interesting

      No, he didn't. He had some credentials, both his own and some stolen. Nothing was "hacked".

      It wasn't hacking. It was abuse of privileges. The crime would be possible attempts to falsify access logs (By rerouting through backup system and fraudulently using a co-worker's account) and expropriate proprietary company information.

    4. Re:Wow. by Opportunist · · Score: 5, Insightful

      Should've gone into finance, embezzle some millions and pay a few thousands as a fine instead. Far more profitable.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    5. Re:Wow. by Antique+Geekmeister · · Score: 2

      I must admit that "Aspirer syndrome" is funnier. Given the behavior of some of my technical acquaintances who claim that their self diagnosis of Aspbeerger's disease somehow makes them more intelligent, I might call it a better label than Aspberger's. But not in a workplace sensitive to "trigger words".

    6. Re:Wow. by koreanbabykilla · · Score: 2

      There is actually no such thing anymore according to the DSM V :D
      http://www.parents.com/health/...

    7. Re:Wow. by networkBoy · · Score: 2

      no, that's not why it was taken out.
      It shares quite a bit with other disorders on the autism spectrum.

      An apt analogy:
      there is a group of people that don't like lots of little tools in the linux kernel, so they aggregated the stupp into systemd.
      Now there are those of us who prefer the more granular control (identification) of our systems (neurobehavioral) issues and take exception to that.

      Sadly unlike linux, the psych community only supports the systemd version.

      Yes I'm an aspie, yes I still identify as such even though DSM-V says I should identify as "autism spectrum"

      --
      whois gawk date unzip strip find touch finger mount join nice man top fsck grep eject more yes exit umount sleep dump
    8. Re:Wow. by david_thornley · · Score: 2

      Names keep changing, but the thing persists. I've been diagnosed with dysthymia, neurotic depression, and dysthymic disorder that I noticed on the sheets, all for the same thing. I believe that what used to be "Asperger's" is now part of "Autism Spectrum Disorder".

      --
      "When you have eliminated the unacceptable, whatever is left, however improbable, must be the truthiness" - Holmes
  4. What about the last guy... by __aaclcg7560 · · Score: 4, Interesting

    Meanwhile, the last guy who stole code from Wall Street, Sergey Aleynikov, who inspired the book, "Flash Boys: A Wall Street Revolt" by Michael Lewis, is still in the legal system after eight year.

    http://nypost.com/2017/02/23/ex-goldman-programmer-appeals-court-conviction/

  5. Re:Now he'll have a job. by plopez · · Score: 3

    And more productive than anything Wall Street does.

    --
    putting the 'B' in LGBTQ+
  6. Rookie by plopez · · Score: 4, Funny

    Typical shenanigans of a newly minted Admin who thinks he suddenly is the master of the universe. I doubt he is even the master of his own domain.

    --
    putting the 'B' in LGBTQ+
    1. Re:Rookie by SeaFox · · Score: 4, Funny

      I doubt he is even the master of his own domain.

      Well, he'll likely have a cellmate, so I should say not.

    2. Re:Rookie by Anonymous Coward · · Score: 2, Interesting

      > Likely KCGs algorithms are better at tracking insider trading than the SECs hence the desperate need for secrecy

      You think you're kidding. I've actually seen spam filters tuned to detect outgoing "insider information" for review before letting the mail pass. The critical email they were filtering was actually about criminal activity, so it made extra sense to keep it secret. The filter tools were kept on a *very* locked down system, the nature of the inappropriate content was never disclosed in the alert messages, and the backup of the filters was kept in a separate vault with an auto-destruct on it.

      I was shocked, amused, and impressed all at the same time.

  7. @Sergey Aleynikov by Anonymous Coward · · Score: 4, Interesting

    "Aleynikov worked as a programmer for Goldman’s high-frequency trading operation until 2009, when he left to take a similar job at a Chicago firm, Teza Technologies....Aleynikov made a copy of the bank’s source code. Goldman complained to the FBI, which arrested Aleynikov at Newark airport.....Aleynikov doesn’t dispute he took the code, but claims he wanted to study it. His lawyer says that he didn’t break any criminal laws, and the matter should be a civil dispute."

    Sort of reminds me of a certain Uber employee who took 19000 documents from Google on their self driving car, and insists he never read them and in no way have they been used by Uber, which bought his 'skills' when they aquired his self driving company.

    Once upon of time this was corporate espionage, now it seems to be common place.

  8. time to move on by lucm · · Score: 5, Funny

    Want to really get the dirt? Bug your bosses phone. That's how it works in the real world.

    Considering "bugging your bosses phone" is one of those red flags that indicate that maybe it's time for a long vacation or for a major change in your career path.

    Other red flags:
    - asking a trusted coworker to setup parental control on your work laptop so you can't use it to watch porn in the bathroom
    - knowing how many heartbeats it takes to do the elevator ride up to your floor
    - opening multiple sock puppet Facebooks to see if the cute girl in HR would ignore friend requests from strangers like she ignored yours
    - knowing the cleaners schedule so you can sift through people's trash cans after business hours without being caught

    --
    lucm, indeed.
  9. IT "Engineer"? by chthon · · Score: 2

    If he wasn't aware of the possible consequences of his actions, then he isn't an engineer.

  10. Oh my by buss_error · · Score: 4, Informative

    I am employed by a company I love working for, with I boss I think is wonderful. I expect to be terminated shortly, for reasons that are partly -my- fault, party just business.

    Yeah, I'd totally not even think of doing something like this. First of all, it's completely unethical. Second, it's against my ethics. Third, it violated the System Administrators Oath.

    https://lopsa.org/CodeOfEthics

    --
    Necessity is the plea for every infringement of human freedom. It is the argument of tyrants; it is the creed of slaves.
  11. Optimization of function breaks determinism by SpaghettiPattern · · Score: 5, Funny

    Anything worth doing is worth overdoing. A hail to code optimization!

    Initially, the optimized function bool::willIBefired() will always return true.

    After optimization the result actually must be one of true or false.

    Lesson learned: Don't let context influence optimization.

    --

    I hadn't the slightest objection to his spending his time planning massacres for the bourgeoisie... (P.G. Wodehouse)
  12. Re:Childish.... by aix+tom · · Score: 4, Funny

    Well, it was a job at Wall Street. Their "good work ethics" radar is probably somewhat out of alignment. ;-P

  13. Bullshit buzzword bingo ! by DrYak · · Score: 2

    The guy hacked A UNIX NETWORK! I heard those networks are hardcore, some even use the vi protocol to load balance the kernel across multiple NFS loopbacks. It's basically POSIX grade security with layers upon layers of nmaps.

    But is this UNIX webscale ? And does it enough Apps to synergize the user experience integration with cyberwarfare cryptosecurity ?

    --
    "Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
  14. Re:Now he'll have a job. by Opportunist · · Score: 3, Interesting

    At least the outcome will be far more useful to the average person.

    And less damaging, too.

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
  15. Re:Surprised he was arrested by Dr.+Evil · · Score: 2

    I suspect he was planning to market the data, or already had a buyer. His explanation doesn't make sense.

  16. Fear by luis_a_espinal · · Score: 3, Interesting

    Wall Street IT Engineer Hacks Employer To See If He'll Be Fired

    What is it with people in this industry who fear getting laid off (or fired, which is distinct)? You should expect a turnover every 4-5 years and plan accordingly. Unless you live in the middle of nowhere where employers are scarce (NYC certainly does not fit that label), all you need to do is brush up your skills, be proactive and cultivate a professional network to survive turn-overs.

    If you are passive and lackadaisical with your career, however, I can see why you'd shit bricks every so often enough to think hacking your employer this way is a good idea :/

    1. Re:Fear by HornWumpus · · Score: 4, Interesting

      HR checks typically have _nothing_ to do with competence.

      The best employees come in via the 'side door', bypassing HR. Those people usually know enough other people that they are the quickest to get hired, bypassing the HR morons saves time.

      --
      John McAfee 'It was like that time I hired that Bangkok prostitute; to do my taxes, while I fucked my accountant'
  17. This reminds me of the nuclear boy scout story. by hey! · · Score: 3, Insightful

    You know, the one where a kid figured out how to refine thorium by reading the Golden Book of Chemistry and turned his mother's garden shed into a Superfund site.

    The moral of the story is that even a stupid human being can be pretty smart. Particularly a sufficiently motivated stupid person.

    Of course it also helps that intelligence comes in different flavors. Some people are good at spatial reasoning, others are good at verbal reasoning. But we often overlook social reasoning because it's not part of the traditional IQ tests. I think another reason that Social IQ testing hasn't caught on is that there is good reason to believe that social reasoning ability isn't fixed. Changes in attitude can strongly impair or enhance an individual's ability to process social information.

    Which leads to the flip side of the stupid people being able to be smart: even smart people can be stupid, particularly in making social judgments.

    --
    Post may contain irony: discontinue use if experiencing mood swings, nausea or elevated blood pressure.
    1. Re:This reminds me of the nuclear boy scout story. by swillden · · Score: 2

      The moral of the story is that even a stupid human being can be pretty smart. Particularly a sufficiently motivated stupid person.

      That's an odd thing to say, since stupid is the antonym of smart. I think what you meant to say is:

      The moral of the story is that even a foolish human being can be pretty smart. Particularly a sufficiently-motivated fool.

      Foolishness is the opposite of wisdom, and the foolish/wise axis is roughly orthogonal to the stupid/smart axis.

      Of course it also helps that intelligence comes in different flavors. Some people are good at spatial reasoning, others are good at verbal reasoning. But we often overlook social reasoning because it's not part of the traditional IQ tests. I think another reason that Social IQ testing hasn't caught on is that there is good reason to believe that social reasoning ability isn't fixed. Changes in attitude can strongly impair or enhance an individual's ability to process social information.

      I don't think this has anything to do with social intelligence. It's perfectly possible to have high intelligence across every category, including social intelligence, and still be foolish. Wisdom/foolishness is in how you think about things more than in how your are able to think about things. Wise people consider the consequences of their actions carefully. I'm sure this guy was fully capable of thinking through what would happen if he got caught... he just didn't bother to do it.

      --
      Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
  18. Yeah, that's hacking in. [Re:Wow.] by XXongo · · Score: 2

    The guy hacked A UNIX NETWORK!

    No, he didn't. He had some credentials, both his own and some stolen . Nothing was "hacked".

    (emphasis mine)

    Getting into a system using stolen credentials is an activity known colloquially as "hacking in to an account".

    From the article:
    "starting December 2016, when Zhang was promoted to his supervisor role, the suspect installed malware on the company's servers to record credentials for other users...
    "Zhang had used these credentials to access and steal parts of the source code of the company's trading platform and trading algorithms...
    "Zhang rerouted traffic to backup proxy servers, managed by KCG, to hide the data transfers that exfiltrated the proprietary source code to a remote server."

    So, he installed malware, stole access credentials, accessed other users' accounts, and rerouted data transfers through a different proxy server to avoid security. Yeah, that's hacking.