Okay, this story begs the question, why didn’t someone at the Naval Research Laboratory notice disappearing equipment…?
“Navy computer specialist sentenced for theft”
Where were the controls…physical and information security…that should have noticed 19,000 pieces of computer equipment missing…???
Yes, it says he got away with it by creating “security badges”…but there should have been some type of inventory system tracking the pieces and flagging whenever something came up missing.
The really sad thing is, it was the criminal’s ex-wife who alerted law enforcement about the prolonged theft scheme; doesn’t sound like th Naval Research Laboratory would ever have noticed otherwise!
10 years of stealing without anyone; incredible!
Tags: awareness and training, computer crime, crminal, Information Security, insider threat, IT compliance, IT training, Naval Research Laboratory, policies and procedures, privacy training, risk management, security training, theft, Victor Papagno