A 55-year-old Chinese language nationwide has been sentenced to 4 years in jail and three years of supervised launch for sabotaging his former employer’s community with customized malware and deploying a kill change that locked out workers when his account was disabled.
Davis Lu, 55, of Houston, Texas, was convicted of inflicting intentional harm to protected computer systems in March 2025. He was arrested and charged in April 2021 for abusing his place as a software program developer to execute malicious code on his employer’s pc servers.
“The defendant breached his employer’s belief through the use of his entry and technical data to sabotage firm networks, wreaking havoc and inflicting tons of of hundreds of {dollars} in losses for a U.S. firm,” mentioned Appearing Assistant Lawyer Normal Matthew R. Galeotti of the Justice Division’s Felony Division.
“Nevertheless, the defendant’s technical savvy and subterfuge didn’t save him from the implications of his actions.”
Court docket paperwork present that Lu was employed as a software program developer for the unnamed firm primarily based in Ohio from November 2007 to October 2019. However after his tasks and system entry had been decreased following a 2018 company realignment, Lu enacted a scheme to intentionally introduce malicious code round August 2019, leading to system crashes and stopping person logins.
To drag this off, Lu is alleged to have created infinite loops in supply code to set off server crashes by repeatedly creating new Java threads with out correct termination. He additionally deleted coworker profile recordsdata and carried out a kill change that might lock out all customers if his credentials within the firm’s Lively Listing had been disabled.
“The ‘kill change’ code – which Lu named ‘IsDLEnabledinAD,’ abbreviating ‘Is Davis Lu enabled in Lively Listing’ — was robotically activated when he was positioned on depart and requested to give up his laptop computer on September 9, 2019, and impacted hundreds of firm customers globally,” the Division of Justice mentioned.
“Lu named different code ‘Hakai,’ a Japanese phrase which means ‘destruction,’ and ‘HunShui,’ a Chinese language phrase which means ‘sleep’ or ‘lethargy.'”
Moreover, on the day Lu was instructed to return his company-issued laptop computer, the defendant deleted encrypted volumes and tried to erase Linux directories and two extra tasks. His web search historical past laid naked the strategies he researched to escalate privileges, cover processes, and delete recordsdata, suggesting an try and hinder the corporate’s efforts to resolve the problems.
Lu’s illegal actions are estimated to have value the corporate tons of of hundreds of {dollars} in losses, per the division. This case additionally underscores the significance of figuring out insider threats early, added Assistant Director Brett Leatherman of the Federal Bureau of Investigation’s (FBI) Cyber Division.
