←back to thread

USPS text scammers duped his wife, so he hacked their operation

(blog.smithsecurity.biz)
460 points wglb | 1 comments | 08 Aug 24 23:00 UTC | HN request time: 0s | source
Show context
cvoss ◴[09 Aug 24 17:59 UTC] No.41204016[source]
> The creator is a current computer science student in China who is using the skills he's learning to make a pretty penny on the side.

There's a strong argument right here for teaching technology ethics as part of a typical CS curriculum. I'm not saying that would have stopped this student from making his own unethical choices, but it does highlight the fact that we equip people with these really powerful technical skills, but we don't even try to equip them with the ethics to be responsible about it. We just sort of hope they were raised right, I guess.

Anyone here have experience with a curriculum that includes the ethics aspect?

replies(11): >>41204091 #>>41204188 #>>41204218 #>>41204422 #>>41204470 #>>41205067 #>>41205273 #>>41205319 #>>41206298 #>>41208191 #>>41217480 #
y-c-o-m-b ◴[09 Aug 24 20:51 UTC] No.41205319[source]
In high school (over 2 decades ago), I figured out how to crack the school security software (and obtain its master password, thank you Windows swap file!) and after doing so, I installed a keylogger on the school library computers. I got access to dozens of email accounts, instant messaging accounts, etc. I'm self-taught all the way. In fact I dropped out of high school junior year with a 1.76 GPA. I knew what was right and wrong, but not yet mature enough to fully grasp the harm it does. I don't think any sort of ethics teachings would've changed anything.
replies(2): >>41205539 #>>41205994 #
1. BlueGh0st ◴[09 Aug 24 22:46 UTC] No.41205994[source]
My lesson came while ARP poisoning, when I saw that a teacher was using their social security number as their password.

Suddenly I realized even dumping passwords was an invasion of privacy, even if I didn't use them. And that passwords should never contain sensitive information!