![]() ![]() The bomb was set to activate on 31 January 2009 and could have wiped all of Fannie Mae's 4000 servers. The bomb was planted by Rajendrasinh Babubhai Makwana, an IT contractor who worked at Fannie Mae's Urbana, Maryland facility. On 29 October 2008 a logic bomb was discovered at American mortgage giant Fannie Mae.The charges held a maximum sentence of 10 years and a fine of US$250,000. Lin pleaded guilty and was sentenced to 30 months in jail in a federal prison in addition to $81,200 in restitution. It failed to work due to a programming error, so Lin corrected the error and reset it to go off on his next birthday, but it was discovered and disabled by a Medco computer systems administrator a few months before the trigger date. ![]() ![]() On 2 October 2003 Yung-Hsun Lin, also known as Andy Lin, changed code on a server at Medco Health Solutions Inc.'s Fair Lawn, New Jersey headquarters, where he was employed as a Unix administrator, creating a logic bomb set to go off on his birthday in 2004.Removing and cleaning up after the bomb allegedly took several months. The bomb, planted in 1996, had a trigger date of 20 July 2000, but was discovered by other programmers in the company. In February 2000, Tony Xiaotong Yu, indicted before a grand jury, was accused of planting a logic bomb during his employment as a programmer and securities trader at Deutsche Morgan Grenfell.The logic bombs went undetected for two years, but was then discovered while he was out of town and had to hand over the administrative password to his software. The software was intentionally made to malfunction after a certain amount of time, requiring the company to hire him to fix it for a fee. On 19 July 2019, David Tinley, a contract employee, pleaded guilty for programming logic bombs within the software he created for Siemens Corporation.On 20 March 2013, in an attack launched against South Korea, a logic bomb struck machines and "wiped the hard drives and master boot records of at least three banks and two media companies simultaneously." Symantec reported that the malware also contained a component that was capable of wiping Linux machines.Duronio was later convicted and sentenced to 8 years and 1 month in prison, as well as a $3.1 million restitution to UBS. In June 2006 Roger Duronio, a system administrator for UBS, was charged with using a logic bomb to damage the company's computer network, and with securities fraud for his failed plan to drive down the company's stock with activation of the logic bomb.As an example, trial programs with code that disables certain functionality after a set time are not normally regarded as logic bombs. To be considered a logic bomb, the payload should be unwanted and unknown to the user of the software. Trojans and other computer viruses that activate on certain dates are often called " time bombs". Some viruses attack their host systems on specific dates, such as Friday the 13th or April Fools' Day. This technique can be used by a virus or worm to gain momentum and spread before being noticed. Software that is inherently malicious, such as viruses and worms, often contain logic bombs that execute a certain payload at a pre-defined time or when some other condition is met. For example, a programmer may hide a piece of code that starts deleting files (such as a salary database trigger), should they ever be terminated from the company. Security information and event management (SIEM)Ī logic bomb is a piece of code intentionally inserted into a software system that will set off a malicious function when specified conditions are met.Host-based intrusion detection system (HIDS).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |