zlacker

[return to "IoT hacking and rickrolling my high school district"]
1. ubermo+Qs[view] [source] 2021-10-12 22:29:56
>>revico+(OP)
Three things are remarkable about this, and make it a happy story.

First, that the pranksters were so egregiously responsible in the way they went about it. They avoided disrupting any actual educational activities; it was meant to be harmless fun, not vandalism. No harm came to anything here.

Second, that they documented their findings to the administration as part of the action, including recommendations for improvements.

Third, the administration took this as exactly that: a harmless prank by smart, ethical kids who ALSO did them a favor by pointing out the vulnerabilities. If the admin had a panicked fit about this, they could have made it an ugly situation.

My educational experience was populated far more by "freak out and yell" types than this school district, which was a shame.

◧◩
2. nutwit+ZH[view] [source] 2021-10-13 00:33:09
>>ubermo+Qs
The school district itself was relatively chill, however the individual deans freaked out. Because the penetration report was sent to the tech team and not the deans, the deans were intent on finding out exactly who did the hack to find something to report to their bosses (and according to them concern about the grade book system being exposed?? Not sure how you’re supposed to rick roll a grade book but if anyone has an idea i’d love to know). As the earliest poster of footage of this event, I actually got tracked down (despite the fact that the only information they had to go off of was my youtube channel which had no references to my actual name whatsoever) and interrogated about what I knew of the event by the dean. The penetration report had been sent a while prior to this (which I knew about, as being a sibling of the original blog poster can have many benefits) which made the entire thing so much funnier. I was thankful that masks were a requirement for in person students at the time, as my mouth was literally twitching the entire time during the interrogation.
◧◩◪
3. dr_orp+Yv2[view] [source] 2021-10-13 15:53:46
>>nutwit+ZH
> grade book system being exposed

In our high school they didn't expose the gradebook in that you could get in and change it, but we were able to see everyone else's grades. Teachers would post grades for their class and "obscure" it by posting it with the student ID (you were only supposed to know your own) next to the grade. But when the posted, the entire list was still in alphabetical order so it wasn't hard to figure out everyone's grade and student ID.

And the cherry on top of this was that all the students' passwords were their student ID.

[go to top]