Too Long; Didn't Read
In December 2020, technology company Ubiquiti found itself the victim of a ransomware attack. A software engineer on the company’s cloud team whose credentials had been used in the attack was a suspect in the case. He allegedly changed the logs from the attack to erase evidence of his involvement. Nickolas Sharp was arrested just a few months after the attack and may find himself spending the next 37 years in confinement. This story should serve as a warning for security teams thinking about how to prevent this kind of incident where a trusted member decides to abuse their privileges for malfeasance.