"The attack took place on May 14, 2021, and saw Schultz use the credentials to reset approximately 2,500 passwords at the affected organization. This meant thousands of employees and contractors across the US were unable to access the company network. Schultz admitted to running a PowerShell script to reset the passwords, searching for ways to delete system logs to cover his tracks - in some cases succeeding - and clearing PowerShell window events, according to the Department of Justice."
"If it was Waste Management, the largest US garbage company is not alone in its woes. Malicious insiders sabotaging IT systems is a common tale, and one that continues to be told in 2025. Be it Coinbase or FinWise in the US, the spate of rogue North Korean IT workers targeting Western organizations, local authorities, or even GCHQ in the UK, insider threats continue to wreak havoc across all types of organizations, and that's just in 2025."
An Ohio IT contractor pleaded guilty to illegally accessing a former employer's network and causing nearly $1 million in damage. The attack occurred on May 14, 2021, when the contractor impersonated another contractor after his credentials were revoked and used those credentials to reset approximately 2,500 passwords. Thousands of employees and contractors across the US were locked out of the company network. The contractor ran a PowerShell script to reset passwords, attempted to delete system logs and cleared PowerShell events. Prosecutors attributed more than $862,000 in damages to downtime, disrupted customer service, and remediation costs. Sentencing is scheduled for Jan 30, 2026.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]