End User Robbed, Seeks ADT Inside Leak

By: Carlton Purvis, Published on Mar 25, 2014

New documents obtained by IPVM in the ongoing ADT/Tyco vs. Eli Lilly case, the biggest pharmaceutical heist in American history where $75 million worth of drugs were stolen from an Eli Lilly distribution center in Connecticut, indicates that the plantiffs are going after an ADT inside leak.

In this note, we dig into those court documents and contentions.

Background

Eli Lilly's insurance company, National Union, says the burglars, who have since been arrested, exploited vulnerabilities that were highlighted in a prior ADT audit, leading the company to believe ADT is partially at fault.

It also claims that there is a pattern of ADT customers being burglarized shortly after have vulnerability assessments. The complaint includes narratives of burglaries in Orlando, Grand Prairie, Texas and East Peoria, Illinois. In all of the burglaries, which go as far back as 2008, the facilities had been recently audited by ADT.

The lawyer for one of them men charged with the burglary (who plead guilty) says there is no evidence that her clients had ADT’s security plans for the facility.

Discovery

National Union and Eli Lilly are focused on finding a leak in ADT as a source for the information, recently filed discovery documents show. Among the items ADT is being asked to produce are:

  • All audit logs for ADT servers and databases, “copies of all reports and results from cyber penetration tests, security assessments and risk analysis performed between 2008 and 2010 of ADT’s network
  • “Copies of all documents regarding insider threat countermeasures for cyber, physical or other security that were/are in use by ADT for the year prior to and at the time of the break-in at Eli Lilly’s warehouse”
  • All documents regarding background checks performed on personnel who had access to the Eli Lilly security information
  • “Guidelines to employees about the handling of sensitive documents, including traveling with sensitive documents, taking/working with them at home, shredding them, and disposing of them in the trash.”
  • Copies of all logs of after-hours work or access to ADT computers
  • Policies of how computer hardware is destroyed
  • Acess to anyone who responsible for securing security documents and people who had access to the warehouse security information and were every fired from the company.

Here is the full document. The last two questions are pretty interesting and seem targeted to finding an insider or what ADT was doing to protect from insider threats:

Are these questions specific enough to indicate National Union and Eli Lilly know something or is this a fishing expedition?

National Union, Eli Lilly’s insurance company in the past has declined to comment on pending litigation.

Comments (1) : Members only. Login. or Join.

Related Reports

JCI Sues Genetec For Patent Infringement on Jul 13, 2020
Surprisingly, security giant JCI has sued their partner, security software...
Vape Detection Legal Battle: Soter Sues IPVideo Corp on Jul 22, 2020
The crosstown vape detection rivals are now in a legal battle. While IPVideo...
Dahua Critical Cloud Vulnerabilities on May 12, 2020
Dahua has acknowledged a series of cloud vulnerabilities that researcher...
Drako's Companies (Brivo, Eagle Eye) Take $4+ Million in PPP Funds on Jul 14, 2020
While centimillionaire Dean Drako is the owner of two of the largest SaaS...
Dahua, Hikvision, ZKTeco Face Mask Detection Shootout on Jun 19, 2020
Temperature tablets with face mask detection are one of the hottest trends in...
Anixter Runs Fake Coronavirus Marketing Using Shutterstock Watermarked Images on Jul 24, 2020
Coronavirus faked marketing is regrettably commonplace right now but Anixter...
BluB0X Alleges Lenel, S2, Software House Are Dinosaurs on Feb 13, 2020
BluB0X is running an ad campaign labeling Lenel, S2, Software House,...
Faked Convergint Fever Camera 'Expert' Marketing on Jun 16, 2020
Convergint touts they are "THERMAL CAMERA SOLUTION EXPERTS" while faking...
Faulty Hikvision Cali Colombia Fever Camera Implementation on Jul 20, 2020
The mayor of one of Colombia's largest cities has promoted a faulty Hikvision...
Vulnerability Directory For Access Credentials on Feb 20, 2020
Knowing which access credentials are insecure can be difficult to see,...
ISC News Fakes Fever Screening, Falsely Quotes FDA on Jun 18, 2020
ISC News, the Reed publication behind the ISC East and West trade shows, has...
Breaking Into A Facility Using Canned Air Tested on Jan 28, 2020
Access control is supposed to make doors more secure, but a $5 can of...
Milestone Presents XProtect On AWS on May 04, 2020
Milestone presented its XProtect on AWS offering at the April 2020 IPVM New...
The Problem With Fever Detecting Thermal Sunglasses on Apr 15, 2020
While the media has promoted using thermal sunglasses to detect fevers, this...
Verkada Falsely Claims "First Native Cloud-based Access Control and Video Security Solution" on Jun 18, 2020
Verkada's false claims continue, this time to be the first native cloud-based...

Recent Reports

Dangerous Hikvision Fever Camera Showcased by Chilean City on Aug 07, 2020
Deploying a fever camera outdoors, in the rain, with no black body, is...
"Grand Slam" For Pelco's PE Firm, A Risk For Motorola on Aug 07, 2020
The word "Pelco" and "grand slam" have not been said together for many years....
FLIR Stock Falls, Admits 'Decelerating' Demand For Temperature Screening on Aug 07, 2020
Is the boom going to bust for temperature screening? FLIR disappointed...
VSaaS Will Hurt Integrators on Aug 06, 2020
VSaaS will hurt integrators, there is no question about that. How much...
Dogs For Coronavirus Screening Examined on Aug 06, 2020
While thermal temperature screening is the surveillance industry's most...
ADT Slides Back, Disappointing Results, Poor Commercial Performance on Aug 06, 2020
While ADT had an incredible start to the week, driven by the Google...
AHJ / Authority Having Jurisdiction Tutorial on Aug 06, 2020
One of the most powerful yet often underappreciated characters in all of the...
SIA Coaches Sellers on NDAA 889B Blacklist Workarounds on Aug 05, 2020
Last month SIA demanded that NDAA 899B "must be delayed". Now that they have...
ADI Returns To Growth, Back To 'Pre-COVID Levels' on Aug 05, 2020
While ADI was hit hard in April, with revenue declining 21%, the company's...
Exposing Fever Tablet Suppliers and 40+ Relabelers on Aug 05, 2020
IPVM has found 40+ USA and EU companies relabeling fever tablets designed,...
Indian Government Restricts PRC Manufacturers From Public Projects on Aug 04, 2020
In a move that mirrors the U.S. government’s ban on Dahua and Hikvision...
Directory of 201 "Fever" Camera Suppliers on Aug 04, 2020
This directory provides a list of "Fever" scanning thermal camera providers...
Face Masks Increase Face Recognition Errors Says NIST on Aug 04, 2020
COVID-19 has led to widespread facemask use, which as IPVM testing has shown...
Dahua Loses Australian Medical Device Approval on Aug 04, 2020
Dahua has cancelled its medical device registration after "discussions" with...
Google Invests in ADT, ADT Stock Soars on Aug 03, 2020
Google has announced a $450 million investment in the Florida-based security...