What a Disgruntled Ex-Employee Who Cost a Company $678,000 Can Teach All Business Owners

What a Disgruntled Ex-Employee Who Cost a Company $678,000 Can Teach All Business Owners

In early June, Kandula Nagaraju, a 39-year-old former National Computer Systems employee from India, received a two-year, eight-month prison sentence for unauthorized access and deletion of 180 test servers at his previous workplace.

Despite being terminated in October 2022 due to performance issues, Nagaraju retained access to company systems. He used this access to develop and execute scripts that deleted the servers. This action cost NCS approximately $678,000 to rectify. Fortunately, his nefarious deeds did not compromise sensitive data as the servers were isolated and used for app testing. But, the company still suffered an enormous financial loss. Plus, things could have been a lot worse.

This single case serves as a critical reminder: ex-employees can still be a liability, and if they maintain their insider access, they can exploit said access to inflict extensive damage. Not only monetarily, but on a much wider and more consequential scale. So harmful, that it could bring a company down and ruin its reputation to the point of no return.

Why Businesses Should Always Delete the Credentials of Former Team Members

Sadly, Nagaraju is just one example of many. Several companies have suffered immensely – but unnecessarily – simply because those organizations did not take the proper steps to protect themselves. Instead, they were complacent or too late to act and the results were disastrous. Because of these instances, businesses should always remove ex-employee credentials to keep their corporate data and work product secure for several reasons:
  • Data security. Ex-employees may still have access to sensitive company information, such as customer data, trade secrets, or financial information. Removing their access ensures that this data remains secure and is not accessed or misused by unauthorized individuals.
  • Prevent unauthorized access. Even if an ex-employee has left the company – even on good terms – there is always a risk that they could use their access to the company’s systems to make changes or access data without approval. Removing their credentials prevents this from happening.
  • Compliance. Many industries have regulations that require companies to protect sensitive data. By removing ex-employee credentials, companies can ensure they are meeting these compliance requirements.
  • Insider threats. Ex-employees may be disgruntled or may have left the company under less-than-ideal circumstances. They could potentially use their access to company systems to sabotage the company or steal data. Removing their credentials helps to mitigate this risk.
  • Avoid confusion. If an ex-employee’s credentials are not removed, it can lead to confusion about who has access to what. This can make it more difficult to manage access to systems and data.
And last but not least, data breach prevention. If an ex-employee’s credentials are compromised, it could lead to a data breach. Removing their credentials helps to prevent this. By deleting their access, companies have less risk of sensitive information getting out into the public domain. Because once that data is out, it’s up for grabs for anyone to capture it.

So, businesses of all sizes should have a process in place to address such security issues. When an employee leaves the company voluntarily or a team member is terminated, that person’s credentialed access should immediately be removed. Additionally, steps must be taken to fill that new void to ensure workflow continues virtually uninterrupted in order to meet benchmarks and deadlines. Moreover, to keep proprietary data safe.

Want to Accomplish More?

Do you want your company to grow faster and earn more while you spend more time with your family doing all the things you started your business to do?

We can make that dream a reality. Give us 30 minutes and we will show you how to get your life back. Skeptical? Good! Put us to the test.

You can call us for your free appointment at (602) 541-1760, or, if you prefer, Waters Business Consulting Group to learn more about us and the services we offer.

Like this article?

Share on Facebook
Share on Twitter
Share on Linkdin
Share on Pinterest

Related Posts

Most Common Scams that Target Entrepreneurs

Starting a new business is an exciting and challenging venture. However, amidst the hustle and bustle, entrepreneurs need to remain vigilant and protect themselves from potential scams that can derail their success. Scammers often prey on the vulnerabilities and limited experience of new business owners. Most Common Scams that Target Entrepreneurs Okay, let’s get ahead of this right now. Entrepreneurs are proud people and willing to take risks. So, they can be a little more susceptible to scams. Even the most skeptical can be fooled. And that means knowing the most common schemes can be very informative. Now, let’s delve into the types of scams that entrepreneurs are most likely to encounter and provide essential steps they can take to avoid falling victim. Fake Invoice Scams One of the most prevalent scams is the fake invoice scheme. Scammers send fraudulent invoices for services or products that were never ordered or received. The invoices may appear legitimate, using logos and details similar to genuine suppliers or service providers. New business owners, caught up in the chaos of managing operations, may inadvertently pay these invoices without realizing the deception. How to Avoid Fake Invoices Implement strict payment protocols: Establish a clear process for verifying and approving invoices. Maintain a record of authorized suppliers and cross-reference all invoices against this list. Double-check all invoices: Scrutinize each invoice for any discrepancies, such as changes in payment details or unexpected price increases. Contact the supplier directly to confirm the legitimacy of the invoice before making any payments. Train employees: Educate your staff about invoice scams and the importance of verifying invoices. Encourage them to report any suspicious invoices or requests for payment. Business Opportunity Scams Entrepreneurs, driven by the desire for success, can become susceptible to business opportunity scams promising quick riches or high returns on investments. These scams often present themselves as legitimate-sounding franchise opportunities (or pyramid schemes or multi-level marketing programs). However, they typically rely on recruiting more individuals rather than selling legitimate products or services. How to Stay Away from Business Opportunities that Sound Too Good to be True Research extensively: Thoroughly investigate any business opportunity before committing. Seek independent reviews and testimonials from individuals who have engaged with the organization and look for the good and bad. Anything that strikes you as a red flag should give you ample pause. Take a step back and look objectively: This is much easier said than done, but it’s worth mentioning. Get some perspective and ask people you trust. Let them evaluate the offer and give you their honest feedback. Phishing and Email Spoofing Phishing and email spoofing scams remain a constant threat to entrepreneurs. Scammers send deceptive emails, often posing as trusted organizations, financial institutions, or even government agencies. These emails attempt to trick recipients into revealing sensitive information, such as passwords, credit card details, or social security numbers. Entrepreneurs may unknowingly compromise their own and their business’s security by falling for these scams. Best Ways to Protect Yourself from Phishing and Spoofing Be cautious with email links: Avoid clicking on suspicious links or downloading attachments from unknown sources. Hover your mouse over links to reveal the actual destination before clicking. Verify email senders: Scrutinize the email address of the sender carefully. Phishing emails often use slight variations or misspellings of legitimate email addresses. When in doubt, contact the organization directly through a trusted source to confirm the authenticity of the email. Utilize security measures: Install reputable antivirus software, spam filters, and firewalls to protect against phishing attempts. Regularly update software and keep your systems patched to minimize vulnerabilities. Business Directory Scams This is an old one, but it’s still in use today. And it targets new entrepreneurs in various forms – usually digital but sometimes, still hardcopy. Scammers may contact business owners, claiming to offer inclusion in a prestigious online directory or publication for a fee. They employ persuasive tactics, promising increased exposure and enhanced credibility. However, these directories often have limited visibility and fail to deliver any real benefits. Effective Protection Tips Conduct thorough research: Before investing in any directory or publication, research its reputation and reach. Look for genuine testimonials and reviews from other business owners. Question unsolicited offers: Be skeptical of unsolicited calls or emails from unfamiliar directories. Ask for detailed information about their services and cross-check their claims with trusted sources. Verify legitimacy: Contact established industry associations or local business bureaus to verify the legitimacy of the directory or publication. What other types of scams would you add to this list? Please take a moment to share your thoughts and experiences so others can avoid making costly mistakes and being victimized by nefarious individuals or criminals. Interested in learning more about business? Then just visit Waters Business Consulting Group to learn more about us and the services we offer.

Read More »

What to Do with an Unwanted Inherited Business

Owning a business is not something that everyone aspires to do. Sure, many people like the idea of being their own boss. But, there are definitely individuals who prefer to avoid the stress and anxiety of being an entrepreneur. Of course, there are many different sets of circumstances. For instance, children who follow their parents and run the family business, taking it over after their parents retire. Or, people who unintentionally fall into their own business without actually setting out to do so. For example, someone who inherits a business from a relative. Although this might seem a bit far-fetched, it does happen more often than one would think. So, what options are available to an heir who really does not want to take over the business? Types of Inherited Businesses Probably the most common form of an inherited business is a family company. Usually, the children grow up in and around the operation and are at least familiar with it. Other times, the children aspire to follow their own career path and never work in the organization. Additionally, there are heirs who inherit a family-owned business that they have never really been acquainted with whatsoever. If you’ve inherited a company, there might be a lot of questions on your mind. You might not want to be an entrepreneur, or even if you do, you might prefer to work in a different industry. Even if you’re ready to take on the business, you might be unsure about how to deal with current employees and suppliers. —Nerd Wallet Though these circumstances are far less common, they do occur. One prime example is someone who inherits a commercial property. That property is leased by several other businesses and generates a profit. The owners may not even be directly involved with the day-to-day operation and rely on a firm or individual to handle the necessities. These would include things like maintenance, repairs, negotiating leases, upgrades, and more. What to Do with an Unwanted Inherited Business Your first instinct could be to just sell it and be out of the situation as quickly as possible. But, if it’s generating a consistent profit, that might not be a wise idea. On the other hand, even if it does generate a profit and you’re completely unfamiliar with it, it could turn into a gigantic mess. Here are some possible options to explore: Learn about the business. Regardless if you’re set on selling it or remotely considering taking it over, you’ve got to know what you’re dealing with first. It’s imperative that you educate yourself about the business in order to make an informed decision as to which way to go. Don’t make the mistake of letting your emotions take over. Instead, take at least a little time to understand precisely what it is and more importantly, how much it’s really worth. Consider being an absentee owner. Although this is quite common in the business world, it’s always a risky proposition. And, it’s probably why you don’t want to get involved in the first place. If you let other people run it, you’re putting your trust into others and that could easily lead to a very regrettable set of circumstances. However, if it is something like commercial property and your relative was also an absentee owner, at least give it some serious thought. Invest in the business. If you do want to give it a try, don’t go it alone. Bring in a business coach to guide you through the process of taking on an entrepreneurial role and become familiar with all it takes to head up this type of operation. If you find it isn’t a good fit, you can always sell it and move on. What other suggestions would you give someone in this position? Please take a moment to share your thoughts and experiences so others can benefit from your perspective! Interested in learning more about business? Then just visit Waters Business Consulting Group.

Read More »

Imagine Selling Your Business…

How Would Your Life Change?

You didn’t start your business just to stay busy—you built it to create freedom, security, and options for yourself and your family. Selling your business can be life-changing, but the real question is whether you’re intentionally building toward that outcome or simply leaving it to chance.

Sign up below for a free consultative session to learn what your business could be worth today and in the future! 

Thank you for your interest in learning what your business is worth. We will be in touch shortly.