Feeds

Water utility auditor resigns, transfers $9m offshore

In that order

Beginner's guide to SSL certificates

California and federal officials are searching for a former employee of a large water utility who is suspected of trying to transfer more than $9m to an offshore account after quitting the company.

Abdirahman Ismail Abdi made the brazen transfers on April 27, just hours after resigning from the California Water Services Company, according to documents filed in federal court in Northern California. The following morning, he allegedly put his wife and two small children on a plane bound for Frankfurt, Germany, and then tried to deposit a $25,000 check that was stolen from his former employer.

The account is the latest reminder of the security threat posed by insiders. Over the past year, organizations from the London branch of Sumitomo Mitsui Bank to Countrywide Home Financial have fallen victim to large attempted heists that were in part carried out by employees. Many more businesses have been hobbled by sabotage allegedly carried out by disgruntled employees.

In Abdi's case, it would appear his former employer failed to take basic precautions in preventing the transfers.

On the evening of April 27, for instance, Abdi was able to use his electronic key card to access a secured parking lot just hours after resigning as an auditor at the utility, according to court documents. Abdi, who is now 33, then accessed two password-protected computers located in separate buildings to wire more than $9m out of his former employer's Bank of America account into accounts in Qatar.

The California Water Services Company, which bills itself as the largest investor-owned American water utility west of the Mississippi River and the third largest in the country, has yet to explain how a former employer could gain access to some of its most sensitive buildings. It also is unclear how Abdi had knowledge of two separate passwords.

It would appear that Abdi's plan may not have succeeded. Two of the three of the wire transfers were blocked and funds from the third are believed to have been frozen, according to court documents. Police believe Abdi fled California for New Westminster British Columbia. ®

Protecting users from Firesheep and other Sidejacking attacks with SSL

More from The Register

next story
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Jihadi terrorists DIDN'T encrypt their comms 'cos of Snowden leaks
Intel bods' analysis concludes 'no significant change' after whistle was blown
Home Depot: 56 million bank cards pwned by malware in our tills
That's about 50 per cent bigger than the Target tills mega-hack
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
China hacked US Army transport orgs TWENTY TIMES in ONE YEAR
FBI et al knew of nine hacks - but didn't tell TRANSCOM
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Protecting users from Firesheep and other Sidejacking attacks with SSL
Discussing the vulnerabilities inherent in Wi-Fi networks, and how using TLS/SSL for your entire site will assure security.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.