I'll translate this for you, because it happened hours ago back in my country, Argentina. You can use Google Translator over the spanish website.
A 3rd year Informatics Engineering student was arrested last night for introducing malware into his university's server, therefore modifying his grades by logging into staff's accounts. The crime was detected after a professor realised his book's information wasn't the same stated on the webcampus. A month ago after changing it back, he detected the student's grades were once again modified. He then proceeded to inform the authorities about it.
The youngster was arrested under a very IT attractive operative. Two drones were put to fly near the hackers house, to look out he wouldn't escape. The whole block's electricity was shut down to avoid a possible information delete.
He was found locked on his room trying to delete the aforementioned information and prints that could incriminate him, but without electricity the process was complicated.
STRANGE FACTS
Firstly, a real hacker won't attack anything from his house without obsfuscating his real IP. In this case, the young man did no effort to hide his IP from the logs. Disabling the whole block's electricity was not necessary, the own's building should have been enough. Surround the whole block was also useless, taking into account it's not the case of a spiderman hacker. There's more, if the electricity was shut down, how come he was found trying to erase information from a hard disk? (my own comment: i suppose he could be destroying it).
Plus, there's no way to permanently destroy information with so little time. It won't be enough with running the Recicle Bin. Actually this deletes nothing. A whole disk erasing would take a few hours (normally 9-12). And why would a hacker need to erase his information? Starting, he wouldn't. What he would do would be encrypting it from the disk or phone.
HOW HE DID IT
The studen had discovered some vulnerabilities on the Android app students used to log in into the university's webcampus, called Mi UADE (UADE is the building's name), which allowed him to jump between users until finding the ones belonging to the security admin and system admin. Firstly he would just investigate and "see", using his own user: as a measure to delete prints, something basic and elemental, he wasn't very smart.
Then, with the obtained admin accounts, he started modifying.. Specially,he changed his exam grades. After that, for more comfort, he planted into the system what's known as ASP shell, meaning this a cmd type tool to administrate servers, in this case, Microsoft's ASP technology. With other words, no malware at all.
Installed the ASP shell, he was able to modify his grades remotely, until a teacher found out the differences, reported it to authorities and the investigation began. Until know, it's not know if the "hacker" left all this prints and files because of errors (fatal errors) or he just thought he would never get caught.
The university provided all registry to the cause: how and when the student had logged, and the commands used on the shell.
EXTRA
The student was already under the cops sight for being a suspect on deriving money from multiple bank accounts into his.
ORIGINAL SPANISH ARTICLE: El estudiante "hacker" de la UADE, un atacante que dejó huellas por todos lados
A 3rd year Informatics Engineering student was arrested last night for introducing malware into his university's server, therefore modifying his grades by logging into staff's accounts. The crime was detected after a professor realised his book's information wasn't the same stated on the webcampus. A month ago after changing it back, he detected the student's grades were once again modified. He then proceeded to inform the authorities about it.
The youngster was arrested under a very IT attractive operative. Two drones were put to fly near the hackers house, to look out he wouldn't escape. The whole block's electricity was shut down to avoid a possible information delete.
He was found locked on his room trying to delete the aforementioned information and prints that could incriminate him, but without electricity the process was complicated.
STRANGE FACTS
Firstly, a real hacker won't attack anything from his house without obsfuscating his real IP. In this case, the young man did no effort to hide his IP from the logs. Disabling the whole block's electricity was not necessary, the own's building should have been enough. Surround the whole block was also useless, taking into account it's not the case of a spiderman hacker. There's more, if the electricity was shut down, how come he was found trying to erase information from a hard disk? (my own comment: i suppose he could be destroying it).
Plus, there's no way to permanently destroy information with so little time. It won't be enough with running the Recicle Bin. Actually this deletes nothing. A whole disk erasing would take a few hours (normally 9-12). And why would a hacker need to erase his information? Starting, he wouldn't. What he would do would be encrypting it from the disk or phone.
HOW HE DID IT
The studen had discovered some vulnerabilities on the Android app students used to log in into the university's webcampus, called Mi UADE (UADE is the building's name), which allowed him to jump between users until finding the ones belonging to the security admin and system admin. Firstly he would just investigate and "see", using his own user: as a measure to delete prints, something basic and elemental, he wasn't very smart.
Then, with the obtained admin accounts, he started modifying.. Specially,he changed his exam grades. After that, for more comfort, he planted into the system what's known as ASP shell, meaning this a cmd type tool to administrate servers, in this case, Microsoft's ASP technology. With other words, no malware at all.
Installed the ASP shell, he was able to modify his grades remotely, until a teacher found out the differences, reported it to authorities and the investigation began. Until know, it's not know if the "hacker" left all this prints and files because of errors (fatal errors) or he just thought he would never get caught.
The university provided all registry to the cause: how and when the student had logged, and the commands used on the shell.
EXTRA
The student was already under the cops sight for being a suspect on deriving money from multiple bank accounts into his.
ORIGINAL SPANISH ARTICLE: El estudiante "hacker" de la UADE, un atacante que dejó huellas por todos lados
