A former software developer has been sentenced to four years in federal prison after sabotaging his former employer’s network with a malicious “kill switch.” Davis Lu, 55, triggered a massive system failure that locked thousands of employees out of critical company infrastructure immediately following his termination.
The Mechanics of the Sabotage
Lu intentionally embedded malicious code into the company’s network architecture designed to execute if his employment status changed. According to the Department of Justice, the code—aptly named “IsDLEnabledinAD”—monitored whether Lu’s credentials remained active within the company’s Active Directory.
When the firm deactivated his account, the logic bomb triggered, effectively crashing the company’s servers. This deliberate act of digital retaliation resulted in widespread operational paralysis, preventing thousands of staff members from accessing essential systems.
Financial Impact and Investigation
While the employer was not officially named in the court documents, reports indicate the victim was power management technology firm Eaton. The incident caused hundreds of thousands of dollars in damages, forcing the company to undertake significant recovery efforts.
Investigators successfully linked Lu to the sabotage through his digital footprint. A review of his internet search history revealed incriminating queries, including research into “methods to escalate privileges, hide processes, and rapidly delete files.”
Justice Department Prosecution
The Department of Justice led the prosecution, highlighting the severity of the developer’s actions. The four-year sentence serves as a stark warning regarding the legal repercussions of using technical expertise to retaliate against former employers.