Developer Jailed After Revenge Cyberattack on Former Employer
Credit: Shutterstock
David Lu, a former software developer at Eaton Corporation, was sentenced to four years in prison after he used computer code to damage the company’s systems as revenge for being fired. This case is a powerful reminder that sometimes, the biggest threat to a business comes from trusted employees, not from hackers or outside attackers.
Insider threat happens when someone inside a company misuses their access, knowledge, and privileges to harm a company. Insider threat is not new and there have been many cases of trusted insiders using their power to sabotage their company’s computer networks. According to cybersecurity insiders’ recent 2024 Insider Threat Report, 83% of organizations reported at least one insider threat attack in the past year. Some of the high profile incidents include Tesla’s data exfiltration caused by a disgruntled employee, and Capital One data breach.
In Eaton Corporation’s case, Lu secretly planted malicious code after his job changed in a way that he didn’t like. The code was designed to crash systems and lock employees out after he was no longer part of the company. The code worked exactly when his work account was shut down. Thousands of employees were locked out of their computers and the company spent hundreds of thousands of dollars to fix the damage.
While companies often worry about cybercriminals trying to break in from the outside, sometimes the real danger is from employees or ex-employees who already have access. They know how the systems work, where the weaknesses are, and what could cause the most harm.
Trusted employees can become serious threats if they feel wronged or angry. For businesses, it’s not just about protecting against outside hackers, it’s about protecting against all threats. When someone on the inside decides to do damage, the results can be devastating. That’s why strong security is not just about firewalls and passwords, it’s about people, trust, and being prepared.
Need help finding malicious code on your systems?
Reach out to Dani Security at [email protected] or visit our website: https://danisec.com