Ex-Cisco engineer charged with wiping Webex Teams accounts

Sudhish Kasaba Ramesh has pleaded guilty to accessing Cisco's cloud infrastructure and deploying code that deleted 456 VMs

The Cisco Webex as seen on a computer display with the webcam light activated

A former Cisco employee has pleaded guilty to damaging Cisco’s internal network in an incident during 2018, leading to the deletion of 16,000 Webex Teams accounts belonging to company employees.

Sudhish Kasaba Ramesh was charged with intentionally accessing a protected computer without authorisation and recklessly causing damage after he accessed Cisco’s cloud infrastructure and deleted 456 virtual machines (VMs).

Several months after resigning from the company in April 2018, he concsiously deployed a piece of code from his Google Cloud Project that destroyed these VMs in Cisco’s cloud infrastructure, hosted by Amazon Web Services (AWS)

These VMs hosted Cisco’ Webex Teams application, which meant that more than 16,000 employees lost access to video conferencing, video messaging, file sharing and other collaboration tools, as their accounts were wiped.

This shutdown lasted two weeks and caused Cisco to spend around $1.4 million in time to restore the damage, as well as more than $1 million in refunds to consumers. No customer data was compromised as a result of these actions, according to the US Attorney’s Office fo the Northern District of California.

“Cisco addressed the issue in September 2018 as quickly as possible, ensured no customer information was lost or compromised, and implemented additional safeguards,” a Cisco spokesperson told IT Pro

“We brought this issue directly to law enforcement and appreciate their partnership in bringing this person to justice. We are confident processes are in place to prevent a recurrence.”

Ramesh was charged on 13 July and pled guilty to the single count, admitting that he acted recklessly in deploying the code, and consciously disregarded the substantial risk of his actions harming Cisco. His hearing is scheduled for 9 December 2020. 

The maximum penalty for committing such an offence is five years imprisonment and a fine of $250,000, although Ramesh’s guilty plea is likely to mean the final sentence is much softer than this.

Featured Resources

Virtual desktops and apps for dummies

An easy guide to virtual desktop infrastructure, end-user computing, and more

Download now

The total economic impact of optimising and managing your hybrid multi-cloud

Cost savings and business benefits of accelerating the cloud journey

Download now

A buyer’s guide for cloud-based phone solutions

Finding the right phone system for your modern business

Download now

What’s next for the education sector?

A new learning experience

Download now

Recommended

Hackers use open source Microsoft dev platform to deliver trojans
Security

Hackers use open source Microsoft dev platform to deliver trojans

14 May 2021
Cyber attacks on manufacturing up 300% in a year
Security

Cyber attacks on manufacturing up 300% in a year

11 May 2021
New DarkSide ransomware targets hidden files in disk partitions
Security

New DarkSide ransomware targets hidden files in disk partitions

18 May 2021
Cisco to acquire threat intelligence provider Kenna Security
Acquisition

Cisco to acquire threat intelligence provider Kenna Security

14 May 2021

Most Popular

KPMG offers staff 'four-day fortnight' in hybrid work plans
flexible working

KPMG offers staff 'four-day fortnight' in hybrid work plans

6 May 2021
Hackers use open source Microsoft dev platform to deliver trojans
Security

Hackers use open source Microsoft dev platform to deliver trojans

14 May 2021
How to move Windows 10 from your old hard drive to SSD
operating systems

How to move Windows 10 from your old hard drive to SSD

30 Apr 2021