'Insiders Don't Need To Break In': A Developer Crippled Company Networks With Malicious Code And A 'Kill Switch' After Being Sacked - And Experts Warn It Shows The Huge Danger Of Insider Threats
ITPro, Monday, April 7th, 2025
Security experts have warned ITPro over the risks of insider threats from disgruntled workers after a software developer deployed a 'kill switch' to sabotage his former employer's networks.
55-year-old Davis Lu was convicted in March after being found guilty of 'causing intentional damage to protected computers', according to the US Department of Justice (DOJ).
Lu, who worked for power management company Eaton Corp, reportedly grew disgruntled at his employer after a corporate realignment 'reduced his responsibilities', the DOJ said.
Courts heard how Lu conducted a campaign of internal sabotage on the company's networks, planting an array of malicious code and causing havoc for colleagues. This included creating 'infinite loops' that prevented users from logging into corporate accounts, causing system crashes, and deleting co-worker user profiles.