An engineer who deleted company code in retaliation for being fired was sentenced to two years in prison and ordered to pay more than 70 million yen in compensation.

In March 2020, an incident occurred in which a cloud engineer who resented being fired from his company deleted server data and code from a GitHub repository in retaliation. In the trial of this case, the man was sentenced to two years in prison and ordered to pay more than $500,000 (approximately 73 million yen) in compensation.

Northern District of California | Disgruntled Cloud Engineer Sentenced To Two Years In Prison For Intentionally Damaging His Former Employer's Computer Network After He Was Fired | United States Department of Justice

https://www.justice.gov/usao-ndca/pr/disgruntled-cloud-engineer-sentenced-two-years-prison-intentionally-damaging-his

Cloud engineer gets 2 years for wiping ex-employer's code repos
https://www.bleepingcomputer.com/news/security/cloud-engineer-gets-2-years-for-wiping-ex-employers-code-repos/

On March 11, 2020, a man named Miklos Daniel Brody, who lives in San Francisco, was fired from First Republic Bank (FRB), where he worked as a cloud engineer. The Federal Reserve is a mid-sized bank headquartered in San Francisco, but in May 2023 , it became the second-largest American bank in history to go bankrupt , and its deposits and assets were acquired by a major bank, JP Morgan Chase. .

Brody was fired because he violated company policy by connecting a USB drive containing pornography to a company computer. However, Brody, who held a grudge against his dismissal, did not return his company laptop and, from the night of his dismissal to the next morning, used an employee account that was still valid to access the Fed's computer network and use the company's laptop to access the company's computer network. is said to have caused damage.

Brody ran malicious scripts to wipe data from FRB's servers, delete Git logs and Git commit history for specific scripts, and access FRB's GitHub repositories to delete hosted code. It is said that he did something like that. He also left abusive comments about former colleagues in the Fed's code, tried to disguise his identity by opening sessions under the names of other employees, and lost more than $5,000 worth of his work. He even sent a code to himself via email.

In addition, after Brody was fired, he allegedly engaged in sabotage to cover up his crimes, such as filing a false complaint with the San Francisco Police Department stating that his company-issued laptop was stolen while he was training at the gym. About. After his arrest in March 2021, he apparently repeated the same false claims, but in April 2023 he was found guilty of making false statements to government agencies and network intrusion against the Federal Reserve. I admitted it.

U.S. Senior State District Judge William Orrick determined that the damage to the Fed's systems amounted to at least $220,621 (approximately 32 million yen). On December 11, local time, Brody was sentenced to 24 months (2 years) in prison, to pay a total of $529,266 (approximately 77 million yen) in restitution, and to be supervised for three years after the end of his sentence. A period of time was ordered.