Fired IT manager hacks into CEO's presentation, replaces it with porn

by Graham Cluley on June 22, 2011 |

Imagine you're giving a presentation to the board of directors at your company. You have your PowerPoint slides all ready, you're projecting onto a 64 inch screen... what could possibly go wrong?

Well, what would you do if your carefully composed presentation was replaced on the big screen by images of a naked woman? My guess is that you wouldn't know where to put your laser pointer..

52-year-old Walter Powell used to be an IT manager at Baltimore Substance Abuse System Inc, until he was fired in 2009. Clearly someone who believed that revenge should be served red hot, Powell used his computer knowledge to hack into his former employer's systems from his home and install keylogging software to steal passwords.

On one occasion, Powell took remote control of his former CEO's PowerPoint presentation to the board of directors, and projected pornographic images on the 64 inch TV.

more
http://nakedsecurity.sophos.com/2011/06/22/hacker-ceo-presentation-porn/

That is fundamental.

:dunce:

If the disruption took place live, as it was happening, no amount of checking beforehand would have helped.

hijacking. What an asshole...

Debbie does someone's Power Point.

Sounds like it might be doing some good. Unrecced.

Having learned to read bureaucratese a long time ago, I've learned to read between the lines of official BS.
It's an inverse relationship between amount of buzzwords and actually doing something besides getting assorted grant money.

I watched a crisis counseling agency go downhill after the bureaucrats took over. When numbers became more important than actually helping the clients.

What a mess of gibberish. You can't tell what the hell they're actually doing, outside of the obvious "helping poor addicts in Baltimore."

that you mention.
And what the IT guy did was mild to some of the thoughts that crossed my mind over the years as the "the bottom line" resulted in dangerous and deadly patient care.

In this job climate, I would not be burning any bridges.

and he's 52. Not saying anything, I'm just sayin'...

I personally wouldn't do anything like that because I want potential employers to contact my former boss. It's one thing to request a future employer to not contact your current employer (that is widely accepted as reasonable), but asking to not contact former employers is a huge red flag.

which is going to be an even bigger problem in trying to find a job. However, whether or not to request a potential employer not contact a previous employer when you've been fired seems to be a Morton's fork to me, both give the same negative result.

He's still this mad 2 years later, then I think he's got some anger issues. Although, it would have been funny to see the CIO's expression when the porn went up in front of the board.

You want the guys wo know where the security flaws are in order to build defenses against them

It's analagous to getting burglarized by the house-sitter.

He had an administrative password that wasn't changed when they fired him.

No one would pay very much money for a consultant to tell them "change your passwords".

If this was a security company, that right there is a great reason to pass them by.

like that. I mean, come on.


If management screwed up that firing this bad, I'm sure the IT guy was unjustly fired as well.

When A workplace screws up something this bad you can be sure they have been fucking things up for a long time in a lot of areas.

52-year-old Walter Powell used to be an IT manager at Baltimore Substance Abuse System Inc, until he was fired in 2009. Clearly someone who believed that revenge should be served red hot, Powell used his computer knowledge to hack into his former employer's systems from his home and install keylogging software to steal passwords.

"For only $500, I'll show you how to make your house less vulnerable to burglary."
"I can demand that you give me back my house key for free."

He's still this mad 2 years later, then I think he's got some anger issues.

Ehhh, not so sure about that. He's a brainy type and brainy types don't act in the heat of anger. In fact, they just might wait...two years!...to make sure their target is off guard.

I like this guy, I like what he did, and I don't necessarily agree he'll never work in the industry again.


Cher

Folks, he didn’t wait 2 years! Quite the contrary. Read the press release at the link: “Just days after being fired from his job at BSAS in Sept. 2009, Powell started hacking the …system.”

He also pled guilty, got a 2-year suspended sentenced + 2-3 wks. community service and other penalties. We don’t know whether his anger at the organization was justified or not, but what he did he had to know was criminal trespass and unauthorized use of “property.”

In the end, he really only hurt himself. Yes, clever and cunning – and surely he got a kick out of it himself -- and a lasting legacy at the organization. But except for egg on the face of BSAS’s computer security staff, and some laughs at the Board meeting, this was childish AND criminal (unfortunately).

Anger issues? Yeah.
But I agree: better than shooting up the place, like some ex-employees hell-bent on revenge do!

He may be found out, sent to jail for a bit, come out... but people who can pull off that kind of a stunt will get hired by someone.

It's the vindictive behavior that will keep him from being hired.

How can you hire a guy you know will pull stunts like this if you ever have to fire him?

It wasn't just a hack, it was the revenge factor that will keep him out of the industry.

At 52 he was fired? I don't blame him. They must have really screwed him over for him to plan this one. I wonder what other surprises they have to find.

This is why he got fired: the dude lacks imagination.

So you hack into a CEO's presentation and you have perfect license to ambush him by transforming it. And what do you go with? Porn. Bleh. Not something funny or subversive or biting (well...depends what kind of porn, I guess), but porn.

Dimwitted and predictable.

Why not replace the CIO slides with an IT strategy based around old Commodore 64's? Or employee bicycle powered backup power supplies? The opportunities are all there and he went predictable.

i'm sure this happens more than we realize. most hackers probably do something more creative or at least specific to the job or people involved.

but THOSE stories don't get press covereage! it's the pr0n that gets media attention.

Also this is only getting story 2 years after it happened because it was prosecuted.

Pretty much only porn pranks and destruction make it to court.

Cher

That's what makes his lame insertion so sad. He figured out the technical side - no doubt an achievement that speaks to his technical skill - then followed that up with the most ho-hum move imaginable. If only he could have paired his technical acumen with the slightest bit of imaginative work, he'd probably still have a job. But you can tell from this move exactly what kind of worker he was: so enamored with his technical skill set that he was unable to exercise any vision whatsoever. It's actually kind of pathetic.

Tell us what would be imaginative.

Keep in mind that whatever you put up there has to shock, horrify, and humiliate in .02 of a second.

You're getting your standards mixed up with his. His only objective was to humiliate and make a fool out of this person. He is not concerned with clever content. Doesn't have to be to accomplish what he wanted.


Cher

doing this would be child's play. This is pathetic and juvenile and probably speaks to the reason he was fired in the first place.

It would have been funnier if he had subtly changed the text to say something slightly different than what the author intended but he couldn't quite figure out when and where the changes were made.

Not saying it's right but....HAHAHAHAAHAHA

:rofl:

Everyone knows, you always blame the person most recently gone from the company. :eyes: