Security Audit Finds Developer Outsourced His Job to China

January 16th, 2013

Via: The Register:

A security audit of a US critical infrastructure company last year revealed that its star developer had outsourced his own job to a Chinese subcontractor and was spending all his work time playing around on the internet.

The firm’s telecommunications supplier Verizon was called in after the company set up a basic VPN system with two-factor authentication so staff could work at home. The VPN traffic logs showed a regular series of logins to the company’s main server from Shenyang, China, using the credentials of the firm’s top programmer, “Bob”.

After getting permission to study Bob’s computer habits, Verizon investigators found that he had hired a software consultancy in Shenyang to do his programming work for him, and had FedExed them his two-factor authentication token so they could log into his account. He was paying them a fifth of his six-figure salary to do the work and spent the rest of his time on other activities.

The analysis of his workstation found hundreds of PDF invoices from the Chinese contractors and determined that Bob’s typical work day consisted of:

9:00 a.m. – Arrive and surf Reddit for a couple of hours. Watch cat videos

11:30 a.m. – Take lunch

1:00 p.m. – Ebay time

2:00-ish p.m – Facebook updates, LinkedIn

4:30 p.m. – End-of-day update e-mail to management

5:00 p.m. – Go home

Posted in Outsourced, Technology | Top Of Page

2 Responses to “Security Audit Finds Developer Outsourced His Job to China”

  1. steve holmes says:
    January 16, 2013 at 10:54 am

    What a genius. CEO material.

  2. MBerger47 says:
    January 16, 2013 at 2:58 pm

    Genius. That guy should have gotten a raise and given a few subordinates to “manage”. That kid has “management” written all over him. Yup. Creative employ-ee-entrepeneur-ship in action. Gotta love capitalism.

Leave a Reply

You must be logged in to post a comment.