account takeover — 3 Technical Articles

Feb 1, 2026 · Information Security

How a Fired Contractor Crippled a Major US Company with a Simple PowerShell Script

In May 2021, a dismissed IT contractor exploited weak account deprovisioning at Waste Management, used a self‑written PowerShell script to reset thousands of passwords, shutting down the entire corporate network and causing over $860,000 in losses, highlighting the severe risk of insider threats.

DOJ casePowerShellaccount takeover

0 likes · 7 min read

How a Fired Contractor Crippled a Major US Company with a Simple PowerShell Script

IT Services Circle

Nov 27, 2025 · Information Security

How a Fired Contractor Crippled Waste Management with a Simple PowerShell Script

A former IT contractor at Waste Management exploited his insider knowledge after being terminated, using a self‑written PowerShell script to reset thousands of accounts, causing a nationwide outage that cost over $860,000 and highlighted critical gaps in enterprise permission revocation processes.

CISAPowerShellWaste Management

0 likes · 7 min read

How a Fired Contractor Crippled Waste Management with a Simple PowerShell Script

Programmer DD

Nov 6, 2020 · Information Security

How a Tiny URL Parameter Let Me Hijack a GitHub Gist Account and Earn $10k

Security researcher William Bowling discovered that Rails' url_for helper can be abused via controllable parameters to create open redirects and account takeover on GitHub Gist, allowing theft of OAuth tokens and earning a $10,000 bounty.

GitHubOAuthOpen Redirect

0 likes · 8 min read

How a Tiny URL Parameter Let Me Hijack a GitHub Gist Account and Earn $10k