Comment by tredre3
> Given that his friend was fired, if I ever had an inkling of doing free pentesting for McDonald's, I sure as hell don't now.
What is a company supposed to do when they detect an employee repeatedly try to access different systems they shouldn't have access to (nor have reason to even try)?
Nothing? The employee is using their own legitimate credentials on an internal system.