Recently a report coming from a security check revealed that one of the staff of a United States firm was outsourcing his job to China. In his 40s, the software developer thought of spending his workdays browsing eBay and Reddit, watching cat videos on Youtube and surfing the web. To do his job, he reportedly compensated just a fifth of his six-figure wages to a firm based in Shenyang, China.
The scam appeared after the United States firm demand for an audit as it suspects a security gap, says by the operator Verizon. The infrastructure firm asked the operator’s risk team last year to observe some irregular activities on its VPN or virtual private network logs, it was according to Andrew Valentine of Verizon.
He was cited as saying on an internet security website that this company had been moderately moving into a more telecommuting oriented workforce and they had consequently begun to let their developers to work from their home for several days. They had established a fairly standard VPN concentrator nearly two years prior to receiving the call, in order to be able to perform it.
Mr. Valentine said that the firm had found out the entity of an open and running VPN connection coming from Shenyang to the staff’s workstation that went back months. And it had then took in Verizon to focus into what it had suspected had been malware used to access confidential information from the region to China. Mr. Valentine said that the main focus of the investigation was the employee himself, the person whose credentials had been utilized to start and control a VPN connection from China.
He also added that further investigation with the employee’s computer had unveiled hundreds of PDF documents of invoices that came from its Shenyang contractor. Apart from that he stated that the employee, a calm and silent but talented man who is veteran in several programming languages had used up less than one fifth of his six-figure salary for a Chinese company to perform his job.
Mr. Valentine affirmed that the employee actually FedExed his RSA token to China in order for the third-party contractor could sign-in over his credentials throughout his working days. It would execute that he was working approximately nine to five work day. Apart from that the evidence even revealed that he had the same scam running all over multiple firms in the area. It seemed like he earned hundred thousand dollars in a year and only had to pay the Chinese firm for almost $50,000 per year. And this employee was no longer at the company.
REFERENCES:
http://www.bbc.co.uk/news/technology-21043693
http://mashable.com/2013/01/17/employee-outsourced-china/
http://news.ycombinator.com/item?id=5066813
http://www.npr.org/blogs/thetwo-way/2013/01/16/169528579/outsourced-employee-sends-own-job-to-china-surfs-web
http://edition.cnn.com/2013/01/17/business/us-outsource-job-china
