A fired developer gets four years in prison for sabotaging his former employer’s network. The attack caused system crashes, deleted data, and exposed the risks of insider threats.
The Sabotage
David Lu, age 55, worked for Eaton Corporation from 2007 until his dismissal in September 2019. In 2018, after managers reduced his job duties, he secretly inserted malicious code into the company’s infrastructure.
He sabotaged systems with infinite Java thread loops and deleted user profiles. He also coded a kill switch named “IsDLEnabledinAD,” which caused system failures the moment administrators removed his account from Active Directory.
Malicious Intent
On the day he was ordered to return his company laptop, Lu deleted encrypted data. His browser history showed searches on privilege escalation, process hiding, and rapid file deletion. Investigators said this confirmed his intent to obstruct recovery efforts.
Legal Consequences
In March 2025, a jury convicted Lu of intentionally damaging protected systems. On August 21, 2025, a federal judge sentenced him to four years in prison, followed by three years of supervised release. Restitution will be decided at a later hearing.
Lessons for Organizations
The case demonstrates the serious threat posed by insider sabotage. Even long-term employees can misuse technical access to damage systems. Security experts highlight the need for strict offboarding protocols, privileged access monitoring, and fast detection of unusual activity.
Conclusion
A fired developer gets four years for planting a kill switch and destroying data. The case reinforces that insider threats can cause severe damage, and companies must adopt strong safeguards to prevent sabotage when employment ends.
0 responses to “Fired Developer Gets 4 Years for Sabotaging Employer’s Systems”