Tag Archives: logic bombs

CyberSecurity: A contractor planned logic bombs to keep his services going.

Very interesting story about a contractor who planned logic bombs in company spreadsheet so that company keeps calling the same contractor every time spreadsheet crashed.

Logic Bomb: Logic bombs, unlike viruses & Trojans are a type of malware that deliberately installed, generally by an authorized user. A logic bomb is a piece of code that sits dormant for a period of time until some event or date invokes it’s malicious payload. For example, Logic bomb could be a simple program which checks your payroll regularly, tracking different things regularly. Read in for more about malware

Abstract

LOGIC BOMBS WENT UNDETECTED FOR TWO YEARS

According to court documents, Tinley provided software services for Siemens’ Monroeville, PA offices for nearly ten years. Among the work he was asked to perform was the creation of spreadsheets that the company was using to manage equipment orders.

The spreadsheets included custom scripts that would update the content of the file based on current orders stored in other, remote documents, allowing the company to automate inventory and order management.

According to a report from Law360, the scheme fell apart when Tinley(Contractor) was out of town, and had to hand over an administrative password for the spreadsheets to Siemens’ IT staff, so they could fix the buggy scripts and fill in an urgent order.

Siemens IT employees found the logic bomb, and it all went downhill from there. Tinley was charged this May, and pled guilty last week, on July 19. The contractor’s sentencing hearing is scheduled for November 8.

Advertisement