The company’s security team eventually found that someone was logging in from Shenyang, China with the American employee’s credentials—while that employee was staring at a computer monitor in his U.S. office.
In his blog, Valentine described the employee as being in his mid-40s with a “relatively long tenure with the company, family man, inoffensive and quiet. Someone you wouldn’t look at twice in an elevator.”
A search of the employee’s computer found hundreds of PDF invoices from a third party contractor/developer from Shenyang.
Eventually, it was discovered that the employee had outsourced his own job to a Chinese consulting firm, paying about $50,000 to the firm out of his salary of several hundred thousand dollars.
If the dummy had just allowed his contractor to VPN to his home network first and then into work, no one would have known. So smart and yet so dumb.
I would think the IRS might be interested in this as well.