Incomplete background check leads to costly IT sabotage
Recent news stories highlight what experts say could be a growing problem: disgruntled IT staffers using their knowledge and skills to cause expensive problems for their employers.
Terry Childs, an IT staffer for the city of San Francisco, made headlines in July when he blocked access to critical parts of the city’s network and refused to turn over the password.
He was arrested, held on $5 million bail and eventually turned the passwords over while in prison.
In another recent case, former IT manager Steven Barnes was sentenced to a year in jail after he hijacked his ex-employer’s e-mail system.
Barnes was fired by Blue Falcon Networks, and took revenge by hacking into the company’s mail server and using it to send spam containing viruses and pornography.
Problems could be even more widespread than many companies realize. More than 88% of IT staff said they’d take sensitive company data with them if they were fired, according to a recent survey by security firm Cyber-Ark.
Can insider hacking be prevented?
Experts warn that insider IT sabotage could become more common. As the economy continues to sink, more tech workers are laid off and overall job security and satisfaction decreases.
But experts also say many problems can be avoided. HR and IT management both have a role to play in preventing attacks like those listed above.
The first line of defense: a thorough background check for all IT workers.
After the Childs case, San Francisco officials admitted its criminal background check only looked at records in California. But Childs had a list of convictions from other places, including four years spent in the Kansas state prison.
Of all the cases of insider sabotage, 30% involve an employee with a criminal history, according to a study by the Computer Emergency Response Team at Carnegie Mellon University.
IT managers should also be on the lookout for the warning signs of potential security threats. The signs could include staffers suddenly working long hours for no apparent reason, asking for access to information unrelated to their jobs, and printing or e-mailing large amounts of data.
And since many incidents happen when staffers are angry about losing their jobs, IT should be sure passwords are changed when an employee exits.
Comments
4 Comments on Incomplete background check leads to costly IT sabotage
-
Sean on
Tue, 18th Nov 2008 1:30 pm
-
fred on
Tue, 18th Nov 2008 2:14 pm
-
Nathan on
Tue, 18th Nov 2008 4:26 pm
-
Justin on
Wed, 19th Nov 2008 11:18 am
Please stop using the Terry Childs case as an example. You are being disingenuous and are not presenting the true facts revolving around his case. You are demonizing someone who took their job very seriously, worked in adverse conditions, and was wrongly accused. He did not, contrary to popular opinion, cause any stoppages, outages, or failures.
Please stop spreading lies and propaganda.
For example, see this link for more information;
http://www.infoworld.com/article/08/07/30/31NF-terry-childs-fact-fiction_1.html
so …. 70% of all IT sabatoge is comitted by “normal” people ……..
Of all the cases of insider sabotage, 30% involve an employee with a criminal history, according to a study by the Computer Emergency Response Team at Carnegie Mellon University.
If I got fired I would tell anyone anything. I wouldn’t sabotage anything either.
Interesting, 70% of sabatoge cases are ‘normal people’, maybe we should hire criminals…
