What’s new: A former software developer, Davis Lu, has been sentenced to four years in prison for sabotaging his Ohio employer’s network using custom malware. Lu deployed a kill switch that locked out employees when his account was disabled, causing significant operational disruptions and financial losses estimated in the hundreds of thousands of dollars.
Who’s affected
Employees of the unnamed Ohio-based company were impacted by Lu’s malicious actions, which resulted in system crashes and prevented user logins for thousands of users globally.
What to do
- Review and enhance insider threat detection measures to identify potential risks from employees with elevated access.
- Implement strict access controls and monitoring for sensitive systems to prevent unauthorized actions.
- Conduct regular security training for employees to recognize and report suspicious activities.
