Nimesh Patel, a former IT employee at Worcester, Mass.-based Allegro MicroSystems, has been accused of putting a malicious computer programming code in the company network.
The Indian-American tech specialist, of Shrewsbury, Mass., worked at Allegro from Aug. 26, 2002, through Jan. 8, 2016 in the company’s IT department.
He is accused of violating the Computer Fraud & Abuse Act, trespassing, and conversion, according to a lawsuit filed in August 2016.
Patel, who had systems administrator privileges on Allegro’s network, had access to a computer file containing company password files, according to court documents, the report stated.
Patel considered an expert in Oracle programming, which Allegro relies on for various aspects of its business, supported & developed code updates to improve the company’s Oracle finance module, the suit stated.
At the time of his resignation in January last year, he returned one of his 2 company laptops, the court documents stated, according to the Worcester, Mass.-based publication.
When Allegro discovered that Patel hadn’t returned his 2nd business laptop, it had requested for it to be returned, since it was proficient of accessing Allegro IT systems if the user had an active password, the report stated.
Though Patel returned an old laptop after having wiped clean the operating system installed on the laptop when he received it, court documents state.
Then on Jan. 31, 2016, Patel purportedly trespassed onto the grounds of Allegro to come within the wireless network’s range at which time he used the secondary notebook from Allegro, allegedly used the password for another employee of Allegro, & gained access to the company’s network, the Telegram & Gazette report stated.
He then purportedly used a system administrator login & password to upload and insert the malicious Oracle programming code to Allegro’s finance module, it said.
The code was intended to copy certain headers or pointers to data into a separate database table and then purge those headers from the finance module, thereby providing the data in the module worthless, it said.
Allegro’s IT department received notice from the company’s finance department of inconsistencies in the Oracle environment on April 14 last year, the report stated.
A week and a half later, the company detected the malicious code while performing a comparison with a prior version of the code as part of its effort to investigate the discrepancies.
An investigation led to the result of Patel making many unauthorized sign-ins after his resignation, according to the report.
Patel’s code cost the company more than $100,000, according to the report.