Vengeful sacked IT bod destroyed ex-employer's AWS cloud accounts. Now he'll spent rest of 2019 in the clink

Bloke hit delete on £500,000 of 'business-critical data' after he was let go for 'poor' performance

An irate sacked techie who rampaged through his former employer's AWS accounts with a purloined login, nuking 23 servers and triggering a wave of redundancies, has been jailed.

Steffan Needham spent four weeks working for software biz Voova before he was let go for "below-par performance". The "embittered" IT consultant, of Atherton, near Wigan, England, got hold of a former colleague's AWS login and destroyed what police and prosecutors claimed was £500,000 worth of business-critical data.

As a result Voova lost a significant number of clients and even had to make redundancies as a result, Thames Valley Police claimed.

Thirty-six-year-old Needham was sentenced to two years in prison by Her Honour Judge Sarah Campbell sitting at Reading Crown Court at the beginning of this month. The jury found him guilty of two charges under sections 1 and 3 of the UK's Computer Misuse Act.

In January the court heard how Needham's May 2016 rampage hinged on his having acquired the login credentials of fellow Voova worker Andy "Speedy" Gonzalez and set about shutting down the firm's Amazon Web Services instances, according to court reports from the Daily Mail and Daily Mirror.

As a result of Needham's vandalism, Voova lost several big contracts with transport companies, including, Voova chief exec Mark Bond told the court.

Prosecuting barrister Richard Moss told the jury: "What has occurred is user Steffan Needham accesses Amazon Web Services for Voova, changed Mr Gonzalez password and secured his user login 'Speedy'. He has then terminated servers, checked the settings and logged out. They were done by the defendant, who used the Speedy login covering up that it was he deleting the servers."

Moss conceded that Voova did not implement multi-factor authentication. Reg readers will be aware that MFA could potentially have prevented the attacks altogether, had Needham been unable to log in. Needham's identity was traced through his IP address, with Moss telling the court that the IP address used to log in to Gonzalez's AWS account had been traced to a company called Metronet, which bought M247, a British connectivity 'n' cloud reseller, in 2016.

"One of their customers is Valtech, and the defendant was employed by Valtech in Manchester and was dismissed... at the time of the attack," Moss said.

Under current sentencing laws, Needham will spend no more than 12 months of his two-year sentence behind bars. ®

Similar topics

Narrower topics

Other stories you might like

  • Despite global uncertainty, $500m hit doesn't rattle Nvidia execs
    CEO acknowledges impact of war, pandemic but says fundamentals ‘are really good’

    Nvidia is expecting a $500 million hit to its global datacenter and consumer business in the second quarter due to COVID lockdowns in China and Russia's invasion of Ukraine. Despite those and other macroeconomic concerns, executives are still optimistic about future prospects.

    "The full impact and duration of the war in Ukraine and COVID lockdowns in China is difficult to predict. However, the impact of our technology and our market opportunities remain unchanged," said Jensen Huang, Nvidia's CEO and co-founder, during the company's first-quarter earnings call.

    Those two statements might sound a little contradictory, including to some investors, particularly following the stock selloff yesterday after concerns over Russia and China prompted Nvidia to issue lower-than-expected guidance for second-quarter revenue.

    Continue reading
  • Another AI supercomputer from HPE: Champollion lands in France
    That's the second in a week following similar system in Munich also aimed at researchers

    HPE is lifting the lid on a new AI supercomputer – the second this week – aimed at building and training larger machine learning models to underpin research.

    Based at HPE's Center of Excellence in Grenoble, France, the new supercomputer is to be named Champollion after the French scholar who made advances in deciphering Egyptian hieroglyphs in the 19th century. It was built in partnership with Nvidia using AMD-based Apollo computer nodes fitted with Nvidia's A100 GPUs.

    Champollion brings together HPC and purpose-built AI technologies to train machine learning models at scale and unlock results faster, HPE said. HPE already provides HPC and AI resources from its Grenoble facilities for customers, and the broader research community to access, and said it plans to provide access to Champollion for scientists and engineers globally to accelerate testing of their AI models and research.

    Continue reading
  • Workday nearly doubles losses as waves of deals pushed back
    Figures disappoint analysts as SaaSy HR and finance application vendor navigates economic uncertainty

    HR and finance application vendor Workday's CEO, Aneel Bhusri, confirmed deal wins expected for the three-month period ending April 30 were being pushed back until later in 2022.

    The SaaS company boss was speaking as Workday recorded an operating loss of $72.8 million in its first quarter [PDF] of fiscal '23, nearly double the $38.3 million loss recorded for the same period a year earlier. Workday also saw revenue increase to $1.43 billion in the period, up 22 percent year-on-year.

    However, the company increased its revenue guidance for the full financial year. It said revenues would be between $5.537 billion and $5.557 billion, an increase of 22 percent on earlier estimates.

    Continue reading

Biting the hand that feeds IT © 1998–2022