The real identity of the company and developer have not been released, but the details have. The developer, referred to as Bob, works for a “US-based critical infrastructure company.” Bob is a guy who lists 7+ programming languages on his resume and is in his mid-40s, meaning he’s an experienced developer. He’s also been duping his employer for months.
The company he worked for contacted Verizon when it discovered a VPN connection it couldn’t explain on its network. The connection was from Shenyang, China, which set alarm bells ringing. Verizon investigated and discovered the login being used to access the network from China belonged to Bob who sat at his desk every day in the US seemingly working very hard. It was also remaining logged in all day and had been used for months.