Sacked worker blames porn on malware
Published: 03 Oct 2007 17:12 BST
A US district judge has upheld a motion to dismiss in the case of hospital respiratory therapist David Farr, who filed a lawsuit against his former employer for unlawful termination after losing his job in August 2005.
Farr blamed malicious software for bookmarking pornographic websites on his work computer, an argument that was supported by a computer forensics specialist.
Employed at St Francis Hospital in Indianapolis, Farr had started his job there in October 2000, and was the only male respiratory therapist.
All of the seven respiratory therapists shared a small office divided into individual cubicles with one computer in the centre of the room. Each therapist was assigned a password, although it's unclear whether logs were kept of each user's individual activities.
In July 2005, Farr's supervisor informed him he was suspended from work because pornographic entries were found in his "favourites" file, apparently a reference to bookmarked websites. Farr denied being responsible and said he was rebuffed when he asked for details about the allegations.
Farr was fired in August 2005. An email message from the hospital's lawyer at the time claims the hospital had "evidence that provides us with reasonable belief that he was accessing pornographic websites on his work computer".
After losing his job, Farr went through the formal grievance process listed in the hospital handbook and met with no success. He filed a lawsuit after the grievance committee upheld his termination in December 2005.
Farr claims that "St Francis failed to install and update effective antivirus protection on its computers" and that any pornographic bookmarks were inserted by malicious software. He also claims that antivirus software is required by the US Health Insurance Portability and Accountability Act (HIPAA).
Farr even retained a computer forensics specialist who concluded: "No-one had intentionally loaded the list of websites on the computer. Rather, the list was placed on the respiratory therapists' computer by a common and well-known internet virus that promotes fee-generating pornographic sites."
That is plausible. One of the malicious programs known to inject porn bookmarks is CoolWebSearch, also called CWS or CoolWWWSearch, and it's been around since 2003. Some reports have estimated that five million sites are infected with it and that more than 60 strains of it exist.
Probably the most famous example of someone seemingly ensnared by malware is the criminal prosecution of substitute teacher Julie Amero, who was arrested after a computer (which had been in use by students) began displaying porn ads. Amero's conviction was overturned and she was granted a new trial in June.
In Farr's case, though, the courts weren't as willing to listen. The district judge granted St Francis' request to dismiss four counts in Farr's complaint: allegations of unfair dealing, negligence, defamation, and wrongful discharge. (He has also alleged gender discrimination, saying he was singled out because he was male.)
The thing is, though, that it should have been relatively easy to figure out if Farr had actually been a customer of those pay-to-play porn sites. A cursory examination of the browser's cache and other log files would have showed whether just the home pages were visited (probably malware) or whether pages requiring payment were visited (probably a human). In addition, anti-spyware tools would have detected the presence of malicious software. However, there is no evidence that the hospital carried out either type of analysis.
Excerpts from the judge's opinion:
Farr argues that St Francis breached two duties owed to him: 1) a duty imposed by the St Francis Handbook to conduct a "thorough and fair investigation of allegations of wrongdoing that can result in termination of employments," and 2) a duty imposed by HIPAA, to install and maintain antivirus software on the computer used by the respiratory therapists in the course of their employment.
Although artfully phrased, Plaintiff's first claim is nothing more than a general claim of negligent performance of an employment at-will contract on the part of St Francis. As such…
Previous
Did you find this article useful?
11 out of 14 people found this useful
- Share this article:
