Developer Sentenced to Four Years for Sabotaging Employer’s Systems
None
<p>A former software developer for power management company Eaton Corporation who sabotaged the company’s IT systems will now spend four years in prison.</p><p>Davis Lu after a six-day trial in March was found guilty of creating malicious code that created “infinite loops” that caused system crashes within Eaton’s environment, deleted employee data and prevented people from logging in. He was <a href="https://www.justice.gov/opa/pr/texas-man-convicted-sabotaging-his-employers-computer-systems-and-deleting-data" target="_blank" rel="noopener">sentenced to prison</a> late last week.</p><p>Lu also developed a “kill switch” that he could trigger if he was ever fired that would lock out Easton workers from the company’s software. The kill switch was automatically deployed when he was fired in September 2019.</p><div class="code-block code-block-12 ai-track" data-ai="WzEyLCIiLCJCbG9jayAxMiIsIiIsMV0=" style="margin: 8px 0; clear: both;"> <style> .ai-rotate {position: relative;} .ai-rotate-hidden {visibility: hidden;} .ai-rotate-hidden-2 {position: absolute; top: 0; left: 0; width: 100%; height: 100%;} .ai-list-data, .ai-ip-data, .ai-filter-check, .ai-fallback, .ai-list-block, .ai-list-block-ip, .ai-list-block-filter {visibility: hidden; position: absolute; width: 50%; height: 1px; top: -1000px; z-index: -9999; margin: 0px!important;} .ai-list-data, .ai-ip-data, .ai-filter-check, .ai-fallback {min-width: 1px;} </style> <div class="ai-rotate ai-unprocessed ai-timed-rotation ai-12-1" data-info="WyIxMi0xIiwxXQ==" style="position: relative;"> <div class="ai-rotate-option" style="visibility: hidden;" data-index="1" data-name="VGVjaHN0cm9uZyBHYW5nIFlvdXR1YmU=" data-time="MTA="> <div class="custom-ad"> <div style="margin: auto; text-align: center;"><a href="https://youtu.be/Fojn5NFwaw8" target="_blank"><img src="https://securityboulevard.com/wp-content/uploads/2024/12/Techstrong-Gang-Youtube-PodcastV2-770.png" alt="Techstrong Gang Youtube"></a></div> <div class="clear-custom-ad"></div> </div></div> </div> </div><p>Lu, a Chinese national who was living in Houston, worked for Eaton from 2007 to 2019, and became disgruntled in 2018 when the company – which is based in Beachwood, Ohio – when a corporate reorganization reduced his responsibilities and limiting his access to IT systems. He began writing the malicious code that year, according to prosecutors.</p><p>The infinite loop was “designed to exhaust Java threads by repeatedly creating new threads without proper termination and resulting in server crashes or hangs,” Justice Department (DOJ) prosecutors wrote after Lu was convicted.</p><div class="code-block code-block-15" style="margin: 8px 0; clear: both;"> <script async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2091799172090865" crossorigin="anonymous" type="a34fe1f131f8efa8d1209d8a-text/javascript"></script> <!-- SB In Article Ad 1 --> <ins class="adsbygoogle" style="display:block" data-ad-client="ca-pub-2091799172090865" data-ad-slot="8723094367" data-ad-format="auto" data-full-width-responsive="true"></ins> <script type="a34fe1f131f8efa8d1209d8a-text/javascript"> (adsbygoogle = window.adsbygoogle || []).push({}); </script></div><p>According to a report compiled by Eaton investigators, the malicious code deployed by Lu resulted in more than $360,000 in losses for the company, which also noted that it took more than a year to remove Lu’s code from the systems.</p><h3>Damaging Protected Computers</h3><p>A federal jury in Ohio convicted Lu of causing intentional damage to protected computers, and he faced 10 years in prison. Instead, U.S. District Judge Pamela Barker sent him to prison for four years, followed by three years of supervised release.</p><p>“The extreme chaos caused by just one person who used his creative mind and technical talents to thwart his employer’s business operations was not only disruptive – it was criminal,” U.S. Attorney David Toepfer <a href="https://www.justice.gov/usao-ndoh/pr/chinese-national-sentenced-prison-deploying-destructive-computer-code-ohio-based" target="_blank" rel="noopener">said in a statement</a> after the sentencing.</p><p>According to The New York Times, Lu’s attorney, Peter Zeidenberg, said his client was <a href="https://www.nytimes.com/2025/08/22/business/eaton-corporation-hack-prison-sentence.html?fbclid=IwQ0xDSwMYc1ZleHRuA2FlbQIxMQABHhh2tQdiJWse_tdvnPmkYKzOE07oaC9wLfuLt9N_NZQW3cnwf_T-mGV5GwFM_aem_vejwUhzJpTRLFERt14tmoA&sfnsn=mo" target="_blank" rel="noopener">disappointed by the jury verdict</a> in March and continues to say he’s innocent. Lu is “weighing his appeal options,” Zeidenberg said, according to the news organization.</p><p>The lawyer reportedly asked for a two-year sentence for Lu. Prosecutors asked for more than five.</p><h3>Naming the Malware</h3><p>FBI Special Agent Greg Nelsen said in after the sentencing that “Davis Lu was intent on inflicting widescale damage to his employer with reckless disregard.”</p><p>According to prosecutors, Lu named the kill switch he created “IsDLEnabledinAD,” which is short for “Is Davis Lu enabled in Active Directory.”</p><p>In addition, he gave names to other malware, including calling one program “Hakai,” a Japanese word for “destruction,” and another “HunShui,” a Chinese word meaning “sleep” or “lethargy.”</p><p>They also said that on the day he was told to turn in his company laptop, Lu deleted a range of encrypted data and ran a command aimed at making it impossible to use forensic software to recover the data.</p><p>Investigators also noted that his internet search history showed that Lu had studied ways to escalate privileges, hide processes, and rapidly delete files, which they said indicated “an intent to obstruct efforts of his co-workers to resolve the system disruptions.”</p><div class="spu-placeholder" style="display:none"></div><div class="addtoany_share_save_container addtoany_content addtoany_content_bottom"><div class="a2a_kit a2a_kit_size_20 addtoany_list" data-a2a-url="https://securityboulevard.com/2025/08/developer-sentenced-to-four-years-for-sabotaging-employers-systems/" data-a2a-title="Developer Sentenced to Four Years for Sabotaging Employer’s Systems"><a class="a2a_button_twitter" href="https://www.addtoany.com/add_to/twitter?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2025%2F08%2Fdeveloper-sentenced-to-four-years-for-sabotaging-employers-systems%2F&linkname=Developer%20Sentenced%20to%20Four%20Years%20for%20Sabotaging%20Employer%E2%80%99s%20Systems" title="Twitter" rel="nofollow noopener" target="_blank"></a><a class="a2a_button_linkedin" href="https://www.addtoany.com/add_to/linkedin?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2025%2F08%2Fdeveloper-sentenced-to-four-years-for-sabotaging-employers-systems%2F&linkname=Developer%20Sentenced%20to%20Four%20Years%20for%20Sabotaging%20Employer%E2%80%99s%20Systems" title="LinkedIn" rel="nofollow noopener" target="_blank"></a><a class="a2a_button_facebook" href="https://www.addtoany.com/add_to/facebook?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2025%2F08%2Fdeveloper-sentenced-to-four-years-for-sabotaging-employers-systems%2F&linkname=Developer%20Sentenced%20to%20Four%20Years%20for%20Sabotaging%20Employer%E2%80%99s%20Systems" title="Facebook" rel="nofollow noopener" target="_blank"></a><a class="a2a_button_reddit" href="https://www.addtoany.com/add_to/reddit?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2025%2F08%2Fdeveloper-sentenced-to-four-years-for-sabotaging-employers-systems%2F&linkname=Developer%20Sentenced%20to%20Four%20Years%20for%20Sabotaging%20Employer%E2%80%99s%20Systems" title="Reddit" rel="nofollow noopener" target="_blank"></a><a class="a2a_button_email" href="https://www.addtoany.com/add_to/email?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2025%2F08%2Fdeveloper-sentenced-to-four-years-for-sabotaging-employers-systems%2F&linkname=Developer%20Sentenced%20to%20Four%20Years%20for%20Sabotaging%20Employer%E2%80%99s%20Systems" title="Email" rel="nofollow noopener" target="_blank"></a><a class="a2a_dd addtoany_share_save addtoany_share" href="https://www.addtoany.com/share"></a></div></div>