Fired techie created virtual chaos at pharma company

A former IT staffer has pleaded guilty to using a secret vSphere console to wipe company servers

Robert McMillan (IDG News Service)
17 August, 2011 09:14
Comments

Logging in from a Smyrna, Georgia, McDonald's restaurant, a former employee of a U.S. pharmaceutical company was able to wipe out most of the company's computer infrastructure earlier this year.

Jason Cornish, 37, formerly an IT staffer at the U.S. subsidiary of Japanese drug-maker Shionogi, pleaded guilty Tuesday to computer intrusion charges in connection with the attack on Feb. 3, 2011. He wiped out 15 VMware host systems that were running e-mail, order tracking, financial and other services for the Florham Park, New Jersey, company.

"The Feb. 3 attack effectively froze Shionogi's operations for a number of days, leaving company employees unable to ship product, to cut checks, or even to communicate via e-mail," the U.S. Department of Justice said in court filings. Total cost to Shionogi: US$800,000.

Cornish had resigned from the company in July 2010 after getting into a dispute with management, but he had been kept on as a consultant for two more months.

Then, in September 2010, the drug-maker laid off Cornish and other employees, but it did a bad job of revoking passwords to the network. One employee, who was Cornish's friend and former boss, allegedly refused to hand over network passwords to company officials and eventually was fired because of this.

Using a Shionogi account, Cornish was able to log into the company's network from a public McDonald's Internet connection in February and fire up a vSphere VMware management console that he'd secretly installed on the company's network a few weeks earlier.

Using vSphere, he deleted 88 company servers from the VMware host systems, one by one.

Cornish was charged in July. He faces a maximum of 10 years in prison when he's sentenced on Nov. 10. He could not be reached for comment Tuesday. Shionogi did not return messages seeking comment.

Robert McMillan covers computer security and general technology breaking news for The IDG News Service. Follow Robert on Twitter at @bobmcmillan. Robert's e-mail address is robert_mcmillan@idg.com

"Darn those pesky laws that get in the way of commercial exploitation ..."

Larry Page wants to see your medical records
"Instead of partitioning the device between corporate and personal data, another approach ..."

Dual-Persona Smartphones Not a BYOD Panacea
"Well that's a nice back-handed compliment isn't it? So now, finally, my ..."

After two-year hiatus, EFF accepts bitcoin donations again
"Actually, both Mobile App developers and CIOs should be blamed for it. ..."

CIOs struggle to deliver timely mobile business apps: survey
"Too little too late. Spice normally has better standards than this. I ..."

Spiceworks' free management software gets integrated MDM

Tags: U.S. Department of Justice, virtualization, Server Virtualization, security, legal, health care, IT management, industry verticals, cybercrime

Latest Blog Posts

Whitepapers

Protecting Your Data, Intellectual Property, and Brand from Cyber Attacks
Enterprises and government agencies are under virtually constant attack today. It is clear that the cybercriminals, nation-states, and hacker activists waging these attacks are growing increasingly sophisticated and more effective in their efforts to steal and sabotage. Why are today’s security defenses failing? In this battle, your security teams are using outdated arsenal - download now to learn more.

Learn more »
Best Practice in BYOD
The key trend affecting enterprise mobility today can be summarized in four letters: BYOD – Bring Your Own Device. As the number of end-users bringing devices into your organization grows, so does the need for an effective Enterprise Mobility Management (EMM) solution. Learn how to manage devices across multiple platforms all from a single, centralised and unified management console. Download for more!

Learn more »
NetApp FAS6240 Clustered SAN Champion of Champions
Storage systems today must match agility with diversified I/O performance to satisfy an enterprise’s changing needs. In their review, Silverton Consulting ranks the NetApp FAS6240 Clustered SAN, as an Enterprise OLTP “Champion of Champions.” Read the results of their benchmark testing and the features that impressed them the most.

Learn more »

All whitepapers

Most Read
Most Commented

Get exclusive access to Invitation only events CIO, reports & analysis.

Latest Jobs

FT.NET - Sitecore Developer - Melbourne - PermNSW
FTR&D EngineerSA
FTJob Title: Mac Systems/ Enterprise Systems EngineerNZ
FTSenior Python Web Applications DeveloperNSW
FTSenior Python DeveloperNSW
FTLead Software EngineerSA
FTOS Web Applications DeveloperNSW
FTSenior Python DeveloperNSW
FTFlash / ActionScript Developer - ContractNSW
FTQuality ManagerSA

Zones

Featured Whitepapers

Cloud Computing for Midsize Businesses: Delivering Innovation and Efficiency

It’s time for midsize companies to start thinking differently about infrastructure. This white paper provides a brief overview of cloud computing, explains how midsize companies can benefit, and describes the ...

Recent comments

"Darn those pesky laws that get in the way of commercial exploitation ..."
Larry Page wants to see your medical records
"Instead of partitioning the device between corporate and personal data, another approach ..."
Dual-Persona Smartphones Not a BYOD Panacea
"Well that's a nice back-handed compliment isn't it? So now, finally, my ..."
After two-year hiatus, EFF accepts bitcoin donations again
"Actually, both Mobile App developers and CIOs should be blamed for it. ..."
CIOs struggle to deliver timely mobile business apps: survey
"Too little too late. Spice normally has better standards than this. I ..."
Spiceworks' free management software gets integrated MDM

Follow CIO

Market Place

Australian Breakfast Road Show: Enabling Proactive Security for Tomorrow's Business Trends

Deploying mobility worthwhile challenge hear what CIOs have to say.. Read more

Now out of the office never means out of the loop. Office 365 – your complete office in the cloud.

Switch on The Symantec Business Critical Virtualisation Content Zone

Latest Jobs

Subscribe to CIO

Critical. Authoritative. Strategic. CIO magazine addresses the issues vital to the success of IT and business executives. Solutions-oriented editorial provides a greater understanding of the role IT plays in achieving corporate goals. Subscribe to the print edition today.

Download OPML file for import with all IDG RSS feeds

CSO Online Data Security Briefing

Fired techie created virtual chaos at pharma company

Recommended

BT Financial embraces BI to better understand customers

Microsoft launches local region for Azure cloud

More Australians are using mobiles to connect to ...

IT sourcing: in or out?

Avoiding your cloud vendor’s success trap

Big Data, Little Innovation

10 Tips for Dealing with a Bully Boss

How to define the scope of a project

5 open source help desk apps to watch

Think Tank: Tips for IT strategic planning success

PMBOK vs PRINCE2 vs Agile project management

Opinion: Why national e-health is not for everyone

Dual-Persona Smartphones Not a BYOD Panacea

Larry Page wants to see your medical records

ACS to help redundant staff in Queensland

eBay bids on big data challenge

Symantec Business Critical Virtualisation Content Zone

BlackBerry Enterprise Service 10 Zone

HP Tech Connect Resource Centre

Cloud Computing for Midsize Businesses: Delivering Innovation and Efficiency

Enable Flexible Working

Legal Compliance in Electronic Record Keeping

Forrester: The Three Stages of Cloud Economics

How to Navigate Today’s Supply Chain Challenges