Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

Fired techie created virtual chaos at pharma company

A former IT staffer has pleaded guilty to using a secret vSphere console to wipe company servers

Logging in from a Smyrna, Georgia, McDonald's restaurant, a former employee of a U.S. pharmaceutical company was able to wipe out most of the company's computer infrastructure earlier this year.

Jason Cornish, 37, formerly an IT staffer at the U.S. subsidiary of Japanese drug-maker Shionogi, pleaded guilty Tuesday to computer intrusion charges in connection with the attack on Feb. 3, 2011. He wiped out 15 VMware host systems that were running e-mail, order tracking, financial and other services for the Florham Park, New Jersey, company.

"The Feb. 3 attack effectively froze Shionogi's operations for a number of days, leaving company employees unable to ship product, to cut checks, or even to communicate via e-mail," the U.S. Department of Justice said in court filings. Total cost to Shionogi: US$800,000.

Cornish had resigned from the company in July 2010 after getting into a dispute with management, but he had been kept on as a consultant for two more months.

Then, in September 2010, the drug-maker laid off Cornish and other employees, but it did a bad job of revoking passwords to the network. One employee, who was Cornish's friend and former boss, allegedly refused to hand over network passwords to company officials and eventually was fired because of this.

Using a Shionogi account, Cornish was able to log into the company's network from a public McDonald's Internet connection in February and fire up a vSphere VMware management console that he'd secretly installed on the company's network a few weeks earlier.

Using vSphere, he deleted 88 company servers from the VMware host systems, one by one.

Cornish was charged in July. He faces a maximum of 10 years in prison when he's sentenced on Nov. 10. He could not be reached for comment Tuesday. Shionogi did not return messages seeking comment.

Robert McMillan covers computer security and general technology breaking news for The IDG News Service. Follow Robert on Twitter at @bobmcmillan. Robert's e-mail address is robert_mcmillan@idg.com

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: Department of Justice, DOJ, etwork, IDG, McDonald's, VMware
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: cybercrime, health care, industry verticals, it management, legal, security, server virtualization, U.S. Department of Justice, Virtualization
Latest Blog Posts
Whitepapers
  • Endpoint Buyers Guide
    It takes more than antivirus to stop today’s advanced threats. Protecting corporate assets requires a complete security solution that includes anti-malware, host-based intrusion prevention (HIPS), web protection, patch assessment, application and device control, network access control, data loss prevention, firewall and other capabilities. In short, you need an endpoint protection solution. We examine the top vendors according to market share and industry analysis: Kaspersky Lab, McAfee, Sophos, Symantec and Trend Micro. Each vendor’s solutions are evaluated according to: Product features and capabilities, Effectiveness, Performance, Usability, Data protection, and Technical support.
    Learn more »
  • Teleworking made simple—and secure—with desktop virtualisation technology
    Businesses of all sizes are increasingly focused on creating flexible work environments and offering telework options for employees. By administering policies and providing the technical capability for employees to work remotely, these companies can improve job satisfaction and worker attraction and retention. This paper explores the implementation of teleworking based on a foundation of desktop and server virtualisation.
    Learn more »
  • Getting real about Virtual Backup and Recovery
    Virtualisation continues to grow in popularity with real implications when it comes to backup and disaster recovery. Acronis compiles an annual survey of worldwide confidence in backup and disaster recovery. This year the survey has also thrown up a number of key global findings some of which are discussed further in this whitepaper, where we look at the continued spread of virtualisation, the implications in terms of backup and recovery.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments