A Chinese aerospace engineer, Song Wu, has been charged with stealing sensitive software from the US military and NASA by impersonating researchers and requesting access to the materials. For four years, Wu deceived dozens of researchers at prominent institutions, including universities, into providing him with the desired software, potentially violating US laws in the process. Wu, who has been on the FBI's wanted list since September 2024, faces 14 counts of wire fraud and 14 counts of aggravated identity theft1. The simplicity of Wu's approach highlights the vulnerability of organizations to social engineering tactics. The fact that Wu was able to evade detection for an extended period raises concerns about the effectiveness of current security measures. This incident matters to practitioners because it underscores the need for robust verification procedures to prevent similar breaches, which can have significant national security implications.