Former IT administrator says he's ready to give the keys back to the city
Terry Childs, the former IT administrator accused of kidnapping the city of San Francisco's data network, is ready to give up the administrative passwords to the system, his attorney said yesterday.
Childs is accused of changing all of the city's network passwords so that only he could access the network, which contains email, payroll, law enforcement, and inmate booking files, apps and data. (See San Fran Insider Threat Gone Wild.)
According to a report in Wired, Childs pleaded not guilty yesterday to four felony counts of denying access to the city's network and of producing an unauthorized access device to control the government's network remotely.
Childs is being held on $5 million bail, as the authorities fear he could unleash a wave of attacks on the FiberWAN system he built for the city. Security officials said the hijacking could have been avoided had the city undertaken proper security measures, such as limiting administrative rights given to IT staffers.
Childs' attorney, Erin Crane, said that the ordeal is a "misunderstanding," according to the report. "As the case unfolds, you'll see that," Crane said. "He's been willing to hand over the passwords since Tuesday."
Crane said "we have negotiations underway" with prosecutors, but she refused to provide details. She said Childs worked under a "hostile environment" at the city's Department of Technology Information Services, but declined to elaborate.
— Tim Wilson, Site Editor, Dark Reading
About the Author(s)
You May Also Like
Beyond Spam Filters and Firewalls: Preventing Business Email Compromises in the Modern Enterprise
April 30, 2024Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy
May 15, 2024Safeguarding Political Campaigns: Defending Against Mass Phishing Attacks
May 16, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024