The long gone Contractor

The Network: Federal government agency

The Expectation: Common practice to engage contractors to perform IT related tasks, well established clearance procedure to perform background checks before permitting access to the network

The Catch: Accounts setup for IT contractors are not disabled after the task is completed or the contract has ended.

The Find: This allows a unguarded door into the network. No activity “should” be seen on an account set up for a person who n longer needs access to the network but how do you know?

The Lesson: Exit procedures are as important as entry procedures.