Maricopa Security Breach

The rest of the story

By

Miguel Corzo speaks to Governing Board | Maricopa Security Breach

The Governing Board voted on 7/22/2014 to terminate Miguel Corzo. The entire video of the Board meeting is now available here.  

Follow-up articles:
- The Arizona Daily Independent ‘MCCCD denies due process, fires whistleblower’
- Az Central Maricopa Hacking Scandal: Same Old Excuses’
- Databreaches.net ‘MCCCD Breach: View from the underbus
- 3 TV – AZ Family ‘School fires IT manager who warned of breach

Board Members were operating with inaccurate and incomplete information

  • MCCCD refuses to call Mr. Corzo’s witnesses
  • MCCCD  refuses to provide Mr. Corzo with public records
  • MCCCD had been breaking OML laws since April 2013
  • Board-established employee policies violated
  • Mr. Corzo civil rights and due process violated
  • Board Members silenced
  • MCCCD  unwilling to provide any evidence to support their accusations
  • MCCCD Board Member misinformed about database ownership in Stach and Liu report. Not a single database was mentioned by name in that report.
  • Famous Stach & Liu report of 2011 was a 13 page PowerPoint pointing to network and security issues. All databases in the report resided on the compromised webservers only.
  • MCCCD ignores content of signed and dated IT Grievance that will hold up in Court.
  • Read More

By

Wrongful employee termination – MCCCD Security Breach

Attached is the response to the Chancellor’s recommendation to terminate Mr. Miguel Corzo’s employment.
The letters below were sent to the Governing Board in response to the upcoming Board meeting.

The MCCCD Administration is accusing Mr. Corzo of not doing a job that wasn’t his to do, being responsible for systems he wasn’t supposed to be responsible for, knowing about a document that was never shared with him, not communicating upwards when he repeatedly did so, and not doing enough during an incident in 2011 when he was onsite, working with his staff and others to help MCCCD address a small security breach.  In 2013 when the second and larger breach took place, Mr. Corzo was no longer assigned to any supervisory or database duties.

The ERPs at MCCCD that Mr. Corzo was responsible for were never compromised in 2011. A small database residing on the main maricopa webservers was compromised.  This database was the responsibility of the marketing department and the network and server team at MCCCD not Mr. Corzo’s team.
It is not what happened in 2011 that matters as much as what the Administration did after 2011 and before the 2013 incident. The 2011 incident was indeed minor.  Nothing really happened of any significance. The Administration simply ignored or decided to take a chance on documents provided to them that clearly stated that something had to be done to repair our systems after a minor breach.  That was a calculated risk that unfortunately had serious consequences and no one in the Administration wants to be responsible for. Mr. Corzo warned the Administration multiple times with 12 letters, including 3 emails regarding an IT grievance that clearly stated that MCCCD was at great risk of exposing personal data. Mr. Corzo followed every process in place. He gave the Chancellor more than enough time to at least meet with him to discuss his concerns.  Nothing ever happened and MCCCD is now facing their biggest legal battle in their history and the highest attrition levels in IT ever. Not only that, the Administration is using the very same employees that tried to help MCCCD as scapegoats.

Read More