U.S. Ex-Inspector General Indicted for Stealing Data on 250,000 DHS Employees

March 10, 2020

A federal grand jury in the District of Columbia returned a 16-count indictment against a former Acting Inspector General for the U.S. Department of Homeland Security (DHS) and a former subordinate for their alleged theft of proprietary software and confidential databases from the U.S. government as part of a scheme to defraud the U.S. government.

According to the U.S. Department of Justice, the indictment charges Charles K. Edwards, 59, of Sandy Spring, Maryland, and Murali Yamazula Venkata, 54, of Aldie, Virginia, with conspiracy to commit theft of government property and to defraud the United States, theft of government property, wire fraud, and aggravated identity theft. The indictment also charges Venkata with destruction of records.

According to the allegations in the indictment, from October 2014 to April 2017, Edwards, Venkata, and others executed a scheme to defraud the U.S. government by stealing confidential and proprietary software from DHS Office of Inspector General (OIG), along with sensitive government databases containing personal identifying information (PII) of DHS and USPS employees, so that Edwards’s company, Delta Business Solutions, could later sell an enhanced version of DHS-OIG’s software to the Office of Inspector General for the U.S. Department of Agriculture at a profit. Although Edwards had left DHS-OIG in December 2013, he continued to leverage his relationship with Venkata and other DHS-OIG employees to steal the software and the sensitive government databases.

The indictment further alleges that, in addition to stealing DHS-OIG’s software and the sensitive government databases, Venkata and others also assisted Edwards by reconfiguring his laptop so that he could properly upload the stolen software and databases, provided troubleshooting support whenever Edwards required it, and helped him build a testing server at his residence with the stolen software and databases, which contained PII. As further part of the alleged scheme, Edwards retained software developers in India for the purpose of developing his commercial alternative of DHS-OIG’s software.

With the advent of Internet of Things (IoT) technology and Industrial Internet of Things (IIoT), the cyber security practices are increasingly getting integrated with the physical security practices.

We will provide insight on NDAA Section 889 and how the act has evolved and impacted business, so that organizations can better mitigate risk and stay compliant.