Earlier today, in federal court in Brooklyn, Juliana Barile pleaded guilty to one count of computer intrusion arising from the defendant’s unauthorized intrusion into, and destruction of data on, the computer system of a New York credit union (the “Credit Union”) following her termination as an employee of the Credit Union. The guilty plea took place before United States District Judge Eric N. Vitaliano. When sentenced, Barile faces up to 10 years’ imprisonment and a fine.
Jacquelyn M. Kasulis, Acting United States Attorney for the Eastern District of New York, and Michael J. Driscoll, Assistant Director-in-Charge, Federal Bureau of Investigation, New York Field Office (FBI), announced the guilty plea.
“In an act of revenge for being terminated, Barile surreptitiously accessed the computer system of her former employer, a New York Credit Union, and deleted mortgage loan applications and other sensitive information maintained on its file server,” stated Acting U.S. Attorney Kasulis. “Protecting private financial data from being compromised or destroyed by unauthorized computer intrusions is an important priority of this Office.” Ms. Kasulis also thanked New York City Police Department for their valuable assistance with the case.
“Ms. Barile may have thought she was getting back at her employer by deleting files, however she did just as much harm to customers. Her petty revenge not only created a huge security risk for the bank, but customers also depending on paperwork and approvals to pay for their homes were left scrambling,” stated FBI Assistant Director-in-Charge Driscoll. “An insider threat can wreak just as much havoc, if not more, than an external criminal. The bank and customers are now faced with the tremendous headache of fixing one employee's selfish actions.”
According to court filings, Barile was fired from her position as a part-time employee with the Credit Union on May 19, 2021. Two days later, on May 21, 2021, Barile remotely accessed the Credit Union’s file server and deleted more than 20,000 files and almost 3,500 directories, totaling approximately 21.3 gigabytes of data. The deleted data included files related to mortgage loan applications and the Credit Union’s anti-ransomware protection software. Barile also opened confidential files. After she accessed the computer server without authorization and destroyed files, Barile sent text messages to a friend explaining that “I deleted their shared network documents,” referring to the Credit Union’s share drive. To date, the Credit Union has spent approximately $10,000 in remediating Barile’s unauthorized intrusion and destruction of data.
The government’s case is being handled by the Office’s Cybercrime Task Force and the National Security and Cybercrime Section. Assistant United States Attorneys David K. Kessler and Meredith A. Arfa are in charge of the prosecution.
The Eastern District of New York’s Cybercrime Task Force was formed in May 2021 to combat cybercrime, which is proliferating in the United States, including in this district, as well as internationally. The Task Force’s goals are to initiate cybercrime investigations and prosecutions, disseminate information about emerging cybercrime issues and trends, and heighten awareness about a wide variety of cybercrime schemes. The Task Force works with our traditional law enforcement partners, including the FBI, the United States Secret Service, Homeland Security Investigations and the Cybersecurity and Infrastructure Security Agency, as well as the Drug Enforcement Administration. The Task Force also coordinates with regulatory partners, including the U.S. Securities & Exchange Commission and the Federal Trade Commission, as well as state and local counterparts, such as the New York State Department of Financial Services, New York City Cyber Command and the New York City Police Department.
Brooklyn, New York
E.D.N.Y. Docket No. 21-CR-441 (ENV)