Skip to content
Tech News
← Back to articles

Twin brothers wipe 96 gov't databases minutes after being fired

2026-05-12 | original
read original get Cybersecurity Data Wipe Tool → more articles
Why This Matters

The incident involving the Akhter brothers highlights the critical importance of robust cybersecurity measures and timely access revocation when employees are terminated. It underscores the potential risks posed by insider threats, especially when former employees retain access to sensitive government and corporate data, emphasizing the need for stronger security protocols in the tech industry and government agencies.

Key Takeaways

In the US, fired and laid-off workers often have their digital credentials deactivated before they learn about the loss of their jobs; indeed, the inability to log in to a corporate system may be the first an employee knows of the situation.

Though not a generous or humane approach to staff reduction, it does follow from the simple fact that a fired employee with access to company systems is a security risk.

Just ask the Akhter twin brothers, accused of wiping out 96 databases hosting US government information in the minutes after both were fired last year from their shared employer.

DROP DATABASE

Muneeb and Sohaib Akhter, now both 34, had been in trouble before. Back in 2015, the brothers pled guilty in Virginia to a scheme involving wire fraud and computers. Muneeb was sentenced to three years in prison, while Sohaib got two.

After their stints in jail, the brothers worked their way back into the tech world. In 2023, Muneeb got a job with a Washington, DC, firm that sold software and services to 45 federal clients; Sohaib got a job at the same company a year later.

According to the government, however, the two couldn’t stay out of trouble. For instance:

On Feb. 1, 2025, Muneeb Akhter asked Sohaib Akhter for the plaintext password of an individual who submitted a complaint to the Equal Employment Opportunity Commission’s Public Portal, which was maintained by the Akhters’ employer. Sohaib Akhter conducted a database query on the EEOC database and then provided the password to Muneeb Akhter. That password was subsequently used to access that individual’s email account without authorization.

This was not a one-off. Muneeb had been assembling usernames and passwords—5,400 of them taken from his own company’s network data. He then built custom Python scripts to try these logins against common websites; for instance, his “marriott_checker.py” application tested the logins against Marriott’s hotel chains. Muneeb managed to log in successfully hundreds of times, including to DocuSign and airline accounts. Sometimes, if victims had airline miles stored, Muneeb would book travel for himself.

Explore topics: government databases akhter brothers database wipe federal clients cyber security
Related:
Australia warns of ClickFix attacks pushing Vidar Stealer malware
Middle East Cyber Battle Field Broadens — Especially in UAE
Surfshark Promo Codes: 87% Off | May 2026
AI Agent Designed To Speed Up Company's Coding Wipes Entire Database In 9 Seconds
20 Years in Cyber: Dark Reading Marks Milestone With Month of Special Coverage

© 2026 GoKawiil

About | Editorial Policy | Contact