Iain Thompson at The Register is probably giving these kids too much credit:
“Three high school juniors have been arrested after they devised a sophisticated hacking scheme [...]“
They broke into an office. That takes guts (and stupidity) but it’s hardly a “sophisticated hacking scheme”. What could make it “sophisticated” is that they somehow installed key-logging software on computers that teachers used – presumably requiring a hack to gain administrative access to those machines. However, while the report doesn’t explicitly state so, it appears the students didn’t need to make any effort to gain administrative rights to install software. The article simply says:
“The school has also upgraded its security and has advised teachers to change their passwords”
“Upgraded its security”? The Register is missing part of the story. How did the students gain root access to the computers to install the key-loggers? Likely, they didn’t “hack” anything. I bet all they did was break and enter to get physical keys and then install/use software (that any idiot could figure out) using a poorly kept secret. That is, I doubt a sophisticated cyber attack was launched to acquire the information needed to get root.
But more importantly, I think expelling the students is too harsh. Some service time to the school would be more constructive. Students shouldn’t be expelled unless they pose a physical risk to others or prevent others from benefiting from educational services.
Tags: grades, hacking, Palos Verdes High School
February 17, 2012 at 5:28 pm |
A student at my school last year told me that he had worked out how to “hack” into a teacher network account. I said “Would you like to show me?” figuring that I can always learn from cluey tech-savvy kids. He then proceeded to log on using a teacher login and a password obviously gathered from a teacher who had used it openly in front of the class (I think the password was “password”) and this was “hacking” in his mind. Maybe the hacking community needs a new word to describe their skills and actions as the phrase “hacking” seems to match the journalist’s in many people’s mind!
February 19, 2012 at 9:38 am |
The correct term would be “cracking”…that is, the security is compromised by skilfully exploiting a flaw and harm is done. “Hacking” is actually a term that is a great compliment. I tell my students I want them to become hackers – they usually look at me like I’m crazy – like I’m wishing they all become thieves.
Unfortunately, the mainstream media has replaced the term “cracking” with “hacking” over the past couple of decades. But yes, looking over another’s shoulder to get their password is simply “dishonest”.