The City of San Francisco has just suffered what sounds like the nightmare scenario
of an insider attack on their computing infrastructure.
The 'disgruntled employee' who reportedly was 'disciplined for poor performance' had enough access to critical system components to give himself exclusive control of the infrastructure and apparently lock out other administrators. The system is said to still be running, but administrators have little control over it.
So what's the lesson here?