Author: Gary HuntForensicsIndustry Insights

Zynga v. Scopely et al – A Study in Recovering Stolen Trade Secrets


These days loyalty to a company is not as common as it used to be. It is becoming more and more uncommon to find someone who has worked for the same company 30+ years as seen in our parents’ generation. The Bureau of Labor Statistics (BLS) stated in a September 2016 report “the median number of years that wage and salary workers had been with their current employer was 4.2 years in January 2016, down from 4.6 years in January 2014.” With an ever increasing employee change-over rate there is a greater risk that an employee will leave on bad terms.

Given this information, it is becoming evident how important properly formulated exit procedures are so that if an employee does leave, issues can be investigated and addressed in a timely manner. A set of exit procedures may include some combination of the following actions:

  • Exit interview with the employee
  • Preservation of digital media (Computers, USBs, phone, email)
  • Examination of work space (papers, loose devices, etc.)
  • Review of social media accounts

In recent news, Ars Technica reported that two employees resigned from mobile game developer Zynga to work for a competing mobile game developing company, Scopely. Upon their departure, a formal forensic investigation was conducted upon their Zynga work computers. It was discovered that critical data was downloaded from a Zynga maintained Google Drive, saved to a USB drive and taken with the individuals to their new employer. Armed with forensic evidence, Zynga filed suit against the ex-employees and Scopely to enjoin Scopely from using Zynga’s trade secrets, recruiting Zynga personnel and profiting from information obtained from Zynga’s former employees. The basis for Zynga’s suit is not only that Scopely stole trade secrets from them via the two former Zynga employees, but that Scopely unlawfully interfered with contracts between Zynga and its employees.

A forensic investigation of a departed employee’s computer can provide an enormous amount of useful information, typically answering these questions, and more:

  • What files were they accessing?
  • Did they delete any files?
  • Were any files printed, uploaded to a cloud storage account or emailed to a personal email address?
  • What websites were they browsing in the weeks leading up to their departure?
  • Were any USB devices plugged into the computer that are not accounted for?

The QDiscovery forensic practice group has hundreds of cases related to departed employee disputes. We have been instrumental in the collection, analysis and reporting which often leads to Temporary Restraining Orders or other injunctions entered against the former employee.


Gary Hunt is a Senior Digital Forensic Examiner for Forensicon, a QDiscovery Company. Gary holds the Certified Computer Examiner (CCE) certification, is an active member of the International Society of Forensic Computer Examiners (ISFCE) and High Technology Crime Investigation Association (HTCIA) organizations and is one of QDiscovery’s testifying experts. Prior to joining Forensicon, Gary managed the Midwest presence for TransPerfect Legal Solutions’ Forensic Technology and Consulting division. His diverse background in technology, forensics and eDiscovery provides a unique perspective to many challenges faced in the eDiscovery industry.

(888) 427-5667


Because eDiscovery insights, company news and more await. Enter your email below.