From IT World
A former network engineer for oil and gas company EnerVest has been sentenced to four years in federal prison after pleading guilty in January to sabotaging the company’s systems badly enough to disrupt its business operations for a month.
…he decided to reset the company’s servers to their original factory settings. He also disabled cooling equipment for EnerVest’s systems and disabled a data-replication process
The actions left EnerVest unable to “fully communicate or conduct business operations” for about 30 days, according to Booth’s office. The company also had to spend hundreds of thousands of dollars on data-recovery efforts, and part of the information could not be retrieved.
“Imagine having your company’s computer network knocked out for a month,” …that kind of attack is devastating.”
Not only do we need to worry about malicious hackers from Belarus or your neighborhood burglar stealing stuff we have to worry about the people we trust in the office.
Small businesses in general and dentists in particular are susceptible to dishonest employees. Every dentist knows a colleague who has lost money to employee theft. Happily most people are in fact honest and trustworthy…but not everybody.
If you are forced to dismiss an employee, do it at the start of the day and ask them to leave the office immediately. It is even a good idea to have someone escort them to retrieve any personal items and then help them to the parking lot.
Disable their passwords and change the main password to access your system. If the staff member has internet access disable that as well.
When you hire an outside IT specialist you will be giving them access to PHI (Protected Health Information), be sure they sign a HIPAA business agreement. Check references. If possible get a performance bond.
Once again if you are forced to change services immediately disable any passwords and online access points. The fact is your IT pro knows more about the system than you do.