Two Virginia men wiped 96 government databases minutes after being fired. The brothers used their insider knowledge of the contractor Opexus to strike. This rapid destruction has left public services in chaos.
Investigators are now tracing the digital trail left behind. The breach has exposed a massive failure in agency security protocols. The speed of the attack suggests the pair was prepared to strike the moment their access was threatened.
The deletion took only minutes
Two Virginia men wiped 96 government databases shortly after being fired. The destruction happened within minutes of their dismissal from the contractor. This rapid attack targeted systems hosted by com/threads/two-brothers-deleted-96-federal-databases-after-being-fired-%E2%80%93-one-googled-how-to-hide-the-evidence-afterward.2634654/post-41606014">Opexus.
Sohaib Akhter and his twin brother used their access to strike. The speed of the breach suggests a pre-planned strike rather than a random hack. They also managed to steal 5,400 user IDs during the incident.
Recovery appears unlikely.
The brothers likely overwrote data or disabled backup systems to ensure the damage stuck. This wiped information spans multiple departments and public services. The scale of the loss remains difficult to measure as investigators assess the wreckage.
A targeted strike from within
Two Virginia men orchestrated the destruction of the databases. The brothers, who were previously employees of the contractor Opexus, used their insider knowledge to bypass security. They had been working within the system before their dismissal.
Sohaib Akhter was one of the individuals involved. He was convicted of deleting 96 federal databases and stealing 5,400 user IDs. The attack began minutes after the brothers were notified of their termination.
They did not need to hack the system from the outside. Instead, they used high-level administrative credentials to access the sensitive records. This allowed them to move through the network without triggering immediate alarms.
It was an inside job.
Investigators found that the brothers had a history of digital crime. The pair were previously convicted of hacking the government in 2015. This familiarity with federal infrastructure made the breach particularly effective.
One brother even searched for ways to hide evidence on Google after the deletion. The breach exposed a massive failure in the agency's offboarding process. Their access rights remained active even after their employment ended.
The damage is still being counted
Every wiped database contained sensitive operational data and public records. The scale of the loss affects multiple departments and public services. The destruction of these 96 federal databases has stalled several government functions and administrative workflows.
Recovery remains uncertain. The brothers likely used methods that involved overwriting data or disabling backup systems. This makes the possibility of a full restoration highly unlikely.
Investigators are still assessing the wreckage. It is difficult to determine exactly which pieces of information were permanently lost. The sheer volume of the deletion makes a complete audit of the damage nearly impossible at this stage.
Security protocols failed at the gate
The breach exposed a massive gap in how the agency manages departing staff. The brothers maintained active access rights long after their employment ended. This failure allowed them to bypass standard security checks with ease.
Investigators are now looking into how their credentials remained valid. The access was not a random error. It was a breakdown of the basic offboarding process at Opexus.
Security experts call this a classic insider threat. The attackers already knew the system's weaknesses. They used high-level administrative credentials to strike from within.
An emergency audit is underway. The agency is now checking every administrative access permission across its entire network. They must find where else these permissions might still be active.
No one is safe.
This incident serves as a warning for all federal contractors. The brothers had a history of such activity, having been convicted of hacking the government in 2015. The fact that their access was never revoked suggests a systemic failure in monitoring.
The investigation moves to the courtroom
Law enforcement agencies are tracking the digital footprint left by the deletion. Investigators are following the trail of commands used to wipe the systems. This work aims to identify every piece of data that was compromised.
Sohaib Akhter and his brother face severe legal consequences. They are facing potential criminal charges for computer fraud and data destruction. Federal prosecutors are looking at violations of the Computer Fraud and Abuse Act. The scale of the breach makes this a high-priority federal case.
Prosecutors are also examining the brothers' previous criminal history. The pair were convicted of hacking the government in 2015. This pattern of behavior suggests a calculated effort to target federal infrastructure.
Justice remains the goal.
Opexus, the contractor at the center of the breach, is under scrutiny. The agency has promised a full report on the security lapse by next month. This document will detail how the credentials remained active after the dismissal.
A formal hearing is expected later this year. It will address the agency's negligence in managing administrative access. The court will determine if the security failure constitutes a criminal conspiracy.
Two men from Virginia were arrested for their roles in the conspiracy[1]. They are now held to account for the destruction of the 96 databases. The legal battle is just beginning.
A formal hearing is expected later this year. The court will determine if the security failure constitutes a criminal conspiracy. Federal prosecutors are currently reviewing the brothers' previous criminal history to build their case.
