Member-only story
Georgia Tech is hackable — here’s how to protect yourself.
Thanks to The Technique for covering this story.
UPDATES ON THE STORY
[03/28/2018]: It appears that the vulnerable login feature has been disabled, as of today. Patching is complete. Redacted portions of the post have been restored.
[03/28/2018]: According to a credible source, GT CyberSecurity responded that they are aware of the issue and implementing a fix by the end of the day today.
[03/27/2018]: Portions of the article have been voluntarily redacted until further notice, as a safety measure.
Disclaimer: This article contains a serious vulnerability disclosure and is intended for educational and safety purposes only. Do not attempt to violate any Institute policies or laws in your jurisdiction, or make use of this knowledge for malicious purposes — doing so would be unethical and of course, illegal. I hereby waive any personal responsibility and liability in the form of injury, damage or any consequences arising from your actions, should you get yourself “in trouble” by attempting to do anything unlawful or that which is prohibited by Georgia Tech’s policies, or otherwise.
As a Security Researcher and an ethical hacker, I am morally bound by an informal, generally-accepted “code of ethics” practiced by others in…
