A former contract employee from Ohio has pleaded guilty to computer fraud after accessing his previous employer's network following his termination, according to an announcement by U.S. Attorney Nicholas J. Ganjei.
Maxwell Schultz, 35, of Columbus, was fired from his position in the company's IT department on May 14, 2021. After being terminated, Schultz gained unauthorized access to the company’s systems by impersonating another contractor and acquiring login credentials.
He used a PowerShell script to reset about 2,500 passwords, which resulted in thousands of employees and contractors across the country being locked out of their computers. Schultz also attempted to delete logs and clear system events in an effort to conceal his actions.
The cyberattack caused over $862,000 in losses for the company due to employee downtime, interruptions in customer service, and efforts required to restore the affected network.
As part of his plea agreement, Schultz admitted that he carried out the attack because he was upset about losing his job.
Sentencing is scheduled for January 30, 2026 before U.S. District Judge Lee Rosenthal. Schultz could face up to ten years in federal prison and a maximum fine of $250,000.
The Federal Bureau of Investigation conducted the investigation into the incident. Assistant U.S. Attorneys Rodolfo Ramirez and Michael Chu are prosecuting the case.
