Chinnavan Tamilarasan, a 32-year-old Indian national, was sentenced to nine months in jail on June 16 following his guilty plea for theft in a dwelling and housebreaking. While employed as a technician at SIA Engineering’s Changi office, Chinnavan used his access to a server room to steal two laptops and 16 hard disk drives, according to court documents.
Chinnavan bypassed electronic security measures by using an electrical test pen to tamper with a control box, allowing him to unlock the server room door without triggering an access card log.
The Sequence of the Theft
On January 9, Chinnavan utilized his authorized access to the server room—granted for air-conditioning maintenance—to initiate the theft. He concealed two laptops, valued at US$2,699.20 (approximately S$3,475), within the room’s false ceiling. The following day, he returned to retrieve the items, using an electrical test pen to unlock the door to avoid leaving a digital trail on his access card.
One laptop was stored in his personal locker, while the other was handed to his uncle at the International Business Park in Jurong East. Court documents state the uncle was unaware the item was stolen and had been asked to assist in resetting the laptop’s password.
Discovery and Final Attempt
The theft was discovered on January 12 when an SIA Engineering manager questioned Chinnavan about the missing hardware. Despite his denial, Chinnavan returned to the Changi premises that same evening to commit further theft. He bypassed security personnel by jumping over a fence and used his previous method to gain entry to the server room.
Upon exiting the room with a tray of 16 hard disk drives, he was intercepted by a security guard and subsequently detained. Police recovered the stolen drives and one laptop from the technician, while the second laptop was retrieved from his uncle.
This case highlights the vulnerabilities inherent in facilities that rely on third-party contractors for maintenance. When personnel are granted physical access to sensitive infrastructure like server rooms, the reliance on digital logs can be circumvented by simple manual tampering, as seen here with the electrical test pen. Organizations may need to re-evaluate physical security hardware to ensure that control boxes cannot be easily manipulated from the exterior.
Implications and Future Risks
The sentencing of Chinnavan marks the conclusion of the legal proceedings regarding the theft. As a result of the conviction, it is likely that the technician will face deportation or restrictions regarding future employment in the engineering sector, given his status as a foreign national. SIA Engineering may also conduct a review of their site security protocols to prevent similar unauthorized entries, particularly regarding fence perimeters and server room access points.
Frequently Asked Questions
How did Chinnavan gain access to the server room?
He initially had authorized access as part of his job duties to service the air-conditioning system. He later bypassed security logs by using an electrical test pen to unlock the door manually.
What items were stolen during the incident?
The stolen items included two laptops with a combined value of US$2,699.20 (about S$3,475) and 16 hard disk drives.
Was the uncle involved in the theft?
No, court documents indicate the uncle was unaware the laptop provided to him was stolen; he had been asked by Chinnavan to help keep it safe and reset its password.
How should companies balance the need for contractor access with the security of sensitive equipment?
