Multiple process failures allowed the Insider Threat to do extreme damage: 1. Improper (no) offboarding process 2. Poor Elevated Privilege management process: Principle of Least Access 3. credentials stored in plaintext on a device 4. weak, formulaic password generation process allowed successful guesses and interpolation 5. No 3-2-1 backup process, no off-site, disconnected backups 6. probably no disaster recovery nor continuity of business process either, the recovery was an unrehearsed surprise The Academy's systems survived until they met their first disgruntled junior employee. Total reliance on the good faith of people. Great episode as per usual. Thanks for spoiling us. I hope Adam is doing well; he's had a hard go of things.

Hey Jack, You might not ever read this, however, I just want to thank you for your compassion and understanding when interviewing people. There are so many judgements and paths that could be followed, but you chose the path of interest and learning, and lead us on that path too... As an Australian, I can confirm it is a difficult place to grow up with limited school opportunities... Your handling of this journey is deeply compassionate. So many don't make it through. Thank you.

This felt like Adam is a sociopath and is trying to justify it being normal to do this simply out of spite.

I was just binge listening to old Darknet diaries episodes and open KZbin to see "1 minute ago" on a NEW episode? Hyped! Thanks, Jack Edit- ik it's not a new episode. Still excited

Bro! So happy! I’m working 3rd shift, you just made my day! Thanks for your great content!

the irony: he wasn't the one making any trouble but he was the one sent to the behaving school

the moral of the story is to wait for the police report before you hire someone

What on Earth was he thinking when he went on another rampage after just being let out of custody for his first rampage? Not that I had much to begin with, but I had zero sympathy for him after that.

Another illustration that not all who work in IT have basic cyber security knowledge.

A lot of companies have gone bankrupt when their systems were wiped like that ... That likely cost them Millions of dollars overall .... Holy hell you destroyed that.

Jack .. best show on the web. I always get excited when a new video shows up. Thank you and your team. Keep up the great content.

Moral of the story, don't be like Adam.

Person gets fired for having a criminal record. Person proceeds to do criminal things. Looks like the company made the right call.

I remember getting in the cookie jar when I was about 4 years old and having too many. 😊 It is a good memory I never have forgotten

Thanks Jack as always. We got your back.

i wake up Thursday mornings just to listen to you jack like always , love from Ethiopia

Moral of the story - don't piss off IT.

I have my junior info sec analyst interview in a few hours. Will update this comment after.

Literally just scrolling through realising Ive watched every video, then this pops up. Have learnt a lot Jack, thank.

Thanks Jack for sharing these amazing stories!!

this guy sounds so nice but his story exposes that he legitimately has some kind of psychological disorder, narcissism maybe. He brushes the attacks off as panicked but it sounds like more an impulsive rage. Should follow up and see what he's up to now that he's out?

The moral of the story is that IF you decide to be a dick to your former employers, plan accordingly so you don't get caught . Adam got what he deserved because he couldn't be bothered to cover his tracks properly and has now proven to future employers that he's an IT liability to hire . So congratulations, Adam, you are now a convicted cyber criminal with no way forward as an IT hire .

There are certainly more things IT related that could get you into trouble in the UK than here in the US, considering the very broad wording of the Computer Misuse Act.

There's no requirement to ever 'change passwords'. There is a requirement to lock this guy out as soon as he's left and not share passwords.

I'm so happy there's a new episode to listen to this morning, this just made my workday way better

great story as usual, thanks jack

Great episode Jack! Makes me wonder how often this happens that doesn't cause such a disruption as to make it on the news or a podcast. I can't even imagine how many "skiddies" get in over their head's after watching "too many" Hammond, Bombal, Chuck, Mentor, Hak videos and try to *test and explore* with their newly discovered skills and quickly get in too deep.

HI Jack! Thanks for the awesome stories!

Apparently he was arrested for fraud back in his home country, twice. Its hard to say whats accurate here, the news articles or he himself 🤔 His story is pretty easy to find, he got a 21 month sentence, half of which hed be out on license which is essentially probation/parole.

It's kind of nuts because psychologically his whole life was impacted by being bullied as a youth.

video starts at 2:00 as always

Wait this came out just now? But was recorded in 2021?

his gang story was 🧢 say good bye to any job with computers/access to anything of importance

This Adam guy is a real turkey.

perfect example of why you shouldn't hire criminals.

With the sudden realization that he got in, and didn't cover tracks, I wonder if he could have come forward and say I do security testing and was able to traverse the network easily and here are a set of findings and recommendations. Yes he did it without being asked, and they could call the police and go after him, however, I think they would be more grateful, and if he did get caught, he would be worse off. Now to un pause and see what happened

Yes!!!! Let's go!!!! Wake up to a long cleetus sick week vid, whistling diesel and now darknet!! Today is gunna be a good day!

That dopameme gag was brutal.

This really is a missed opportunity for a NordVPN sponsorship.

15:00 I've had the domain admin login for all the schools in my town sence 6th grade, It didn't really seem like a big deal and all the IT people knew it as well some teachers. Is this normal or did my town just have super poor security?

This a public service announcement reminding everyone to use Tor. It is better to be safe than sorry.

24:00 Ok I understand that technically this is privilege escalation, but it isnt truly the meaning of privilege escalation. Usually a hack would be called this when an exploit or something similar is used from one user to a ussr wirh higher privileges, not just resetting a user with higher privileges. Disappointing to here you describe this as privilege escalation. I know the average viewer doesnt realize this, but I'd still recommend you accurately describe things.

This person is a narcissist

Update no reason and new Darknet Diaries episode! What a good night it is turning out to be! Thanks Jack

Another great episode !

That cookie story though... Jack is truly a criminal mastermind just like the rest of his guests.

He literally said that he spent the money and the director said he could pay it back That’s stealing!!!

Wiping a bunch of random citizens phones is a serious piece of shit move. Wow.

Never been this early for a new drop. 😊

If i knew the passwords, i would just sell them to some1 else on internet on black market. Then wipe any info of talking to that person. Since you dont log in into a network, your IP will not be shown there.

The most devious click

Thanks Captain Jack, another interesting story....cheers.

Its actions like this that make it hard for peopke to give second chance to folks with past lives that were not palatable, even when they say they have changed.

I love your videos thank u so much jack

I know what I'm listening to on today's run

Would love an update on this one.

Woohoooo .. he found another gr8 story!

Hey Jack I am trying to reach out to you personally now...

I've listened to every episode at least x4 - x30 each,.....shit sum of them x100.. i lisyen listen to him when i sleep every night if i could... Should have his own xfm radio show!!

Great channel and story like always,whoops marketing, apologise for that, all ❤ 😬

Is this a reupload, feel like I've heard this episode before.

What command did he run? asking for a friend!

Couple of these stories always end bad because a guy got depressed with a break up.

The school should have done a criminal background check sooner, but not allowing him to work there was the right thing. They have a duty to protect their students, and an assault/robbery on your record is a red flag they shouldn't overlook, no matter if you've learned from it.

Only 21 months for literally destroying virtual property and basically removing an academy? Fuck our systems suck. And yeah, I'd gladly hire someone who was good at their job, but some nut job like this guy who might fly off the handle because someone slights him in any way. Especially when he lies the 2nd time he destroys a network. Personally, for someone like this guy, there is not enough rehab in the world to bring him back to a good morale stance. I think this would be more of a "do not pass go, do not collect $200, do not ever play this game again"... Aka the death sentence. No need to waste time putting him in jail.

Omg haha the cookie thing 😂 i did that exsact thing with a chocolate pie. Except I ate all Except one slice and i cane up with a genius idea. I put the pan on the floor and ran off, as the dog scarfed down that remaining slice and my mom walked in just in time to see her eating it haha totally got away with it

How far back do you have these episodes stacked up? This guy was supposed to get out last year. Maybe you never got a follow up and are pressed for content due to research? Either way I am glad to have the episode and even happier you are trying to start a digital privacy movement.

35:11 and you will know my name as The Lord....

yeahhh boizzz lets gooooo!

@DarknetDiaries Any word on if Adam has been released and how he is doing? 🤔

Wait this was posted one day ago and it's 2024 so is the guy out of jail or what

thank you

Jack is bacc!

Okay I'm confused. I understood Jack's story about going all in on the cookie theft when he was a child. I thought Adam was covering his tracks by wiping everything. But there were firewall logs? So was it in for a penny in for a pound? They're going to catch me so I might as well do as much damage as possible? I'm tech challenged so be gentle

Change all the pw’s and lock everyone out of the cloud portal and internal school network. Then hold it for ransom

I guess Jack was never able to get an update on what happened to this person.

It would only fully wipe the device if it was fully managed. These would be user enrolled so only wipe company data. This is something I use every day. You can remove the passcode on an iPhone though which is interesting.

Wouldn’t routing through the onion net protect him? Why didn’t he do that?

Jack why are You reposting old episodes as new one?

Was that a juvenile criminal record he got fired for?

adam is a noob. didnt even use a vpn

I think we can all relate to that intro story

Uh what i still dont understand is why he was on his local ip address especially when he was working in the it field.

mistakes were made, but the Fates are like that.

Of course we use 1 local password.. You can't keep changing it... There is thousands of computers on a network and all it takes is one network adapter fault and you can't actually log in via domain admin account so you need the local admin... If it had a custom password we would have to maintain a spreadsheet with those and that is a vulnerability in its self

You sound like my brother I feel like I heard that story before h7h😊

If my kid did that I would probably forget too

I guessing your silence can be used against you in the uk

>He’s due to be released sometime in 2023 Then where's the update?! It's 2024 now.

I wonder how he is now.

Dopameme, OOF!

Am I tripping or have I heard this before 🤔 this must be new to KZbin not Apple podcast rt???

shout out Runescape best mmorpg that will ever exist

Dopa-meme, lol.

Testing a post?

i really feel for this Adam as he kept getting screwed over by people. The academy did not know basics of cyber security.

Anyone else catch the Pulp Fiction reference?

Old episode.......🤔😩✌️

As a man I've noticed we as male develop three types of mindset after a heart wrenching break up. 1) the felon: Add up a bunch of domestic violence charges, becomes a stalker, finds out places she is going to be, then he shows up like he had no idea she was going to be there. 2) the good guy: cries all day for months. Tell everyone he meets about how heartbroken he is. Eventually he moves on with his boring life until he meets someone else, and continues this cycle. 3)the gladiator: he gets into the gym, puts his life in the best position possible, masters new things, and will do anything to achieve extraordinary success...no matter the price. I became number 3 after my first breakup, with my ex of 10 yrs. Today I'm happy I went Thur that. Today I'm a successful beast 💪🏾!!!

I remember being able to access and browse through the NAS for the entire school district because the password was + which simple enough because the school id was the folder name. The crazy diacovery was the education service center ID and zipcode was the admin access anything password.... for everything windows LoL edit: this was when bypassing the network filter just meant you turned off *use proxy* in the internet options