Student Finds Hidden Devices in the College Library - Are they nefarious? 

Dude, cmonn. If u'd do it in my country (Turkey) they will probably go panic and scream and consider it as a bomb xD even military could involve this operation :D don't do this :D people are not that smart to understand what u r doing :D

@@ArgeKumadan Yok be abi. Ben direkt malın biri çakallık yapıp milletin bilgilerini ele geçirmek isterken bana bedava pi zero hediye etmiş oldu diye düşünürdüm.

@@ArgeKumadan yep we were dumb

Did you get it back or did oc keep the one he stole?

I should think so, too! Leaving unlabelled devices out in public (Or mostly open access) places is probably going to land you with a high level of equipment loss from inquisitive fellows and eBay opportunists enjoying an arguable Pi giveaway! :-o Put some ownership info on these, and then you might have a case respect of those which go walkabout. Otherwise, it's an unidentifiable object that could've slipped out of someone's bag ages ago and for whom the rightful owner might be impossible to identify! :-)

This guys has no idea what he is doing. If you want to see some real world uses ask a real Linux admin. This video is embarrassing.

Still got to the solution, so what does it matter? Also maybe don’t just judge from a single video that had very specific constraints ;)

Well he had baby owls, have you seen baby owls?

Or, as the saying goes, a month in the laboratory can often save an hour in the library.

except, no one but them were bothered and it was really fun even just as a story too! the "twist" at the end was exceptionally great too!

Or add a Readme file

At my university some kid actually went and hid raspberry pi’s and connected them to all of the computers in the library, turned out he was keylogging to try and find out if his ex was dating another dude (I guess she used the library computers when working and opened up social media in the background.) Kid was expelled, but you aren’t wrong lol it was definitely a project

@@shreddded6403 lol

@@shreddded6403 that would mean you need to have already removed it from where it is to be able to read that, possibly ruining said project

@@genesisreaper2113 yeah but at least then they know to put it back.

I don't think so. I still haven't figured out how to read qr code with my phone

@@propagandalf123 just use your camera app.. most camper apps now will automatically detect the QR code and have something pop up that you click

I feel like they also could have just packaged the board and stuff in something innocent looking. Like a CO detector body or something.

@@jackbootshamangaming4541 Yep, and if for whatever reason that doesn't work, Snapchat will also read QR codes

Qr code ffs don't scan random qr codes you fkn m0r0n

And even more importantly, label your devices with a sticker or a small tag, this whole thing could have been avoided if the Pi just had a "Property of Waitz [link to project website]" attached to it somehow.

This is a super super niche service, so all they would have to do is post bulletins at/near the library and common parts of the campus. No seo necessary.

@@Rwdphotos Any SEO is good SEO, especially for a company.

@@saiverx yes, because it's so incredibly necessary to have people anywhere other than ucsd to know how many people are in the geisel library at any moment

@@saiverx they only need to optimize for 'waitz ucsd', general traffic doesn't need to be driven to the website because there's literally zero motive to do so

Props for Pokemon reference

Love the reference! xD

lel pokemon

YES.

@@misceryyt2897 lel

@@meep.472 r/whoooooosh

How’s your dad doing?

Thanks, Jesus.

@@meep.472 how is he fake? he has a verified check so he's definitely real.

Lmao 😂

I mean yeah that's pretty basic, but it's still not something anyone new to Linux would know about? And for casual Linux users they could easily use Linux for a long time without knowing what the home folder is.

What's the home folder?

@@MrSquirrel1693 It's a folder in the root of the file system "/home/". Some users (specifically humans or some programs) have a folder in the home folder that's the same as their username, then in that is all their personal files. It's kind of like "C:/Users" on Windows, and very similar to the "/Users/" directory on Mac. But do note that when people say the "home folder" they mean the folder that contains all of the user files. It doesn't have to be in /home/, it can be in other places, e.g. root's is normally in /root/ instead. This is why ~ is used, as it will always expand to the home folder location regardless of where it is. Obviously somewhat a simplification since we're talking about linux, it doesn't have to be true on some systems, or has exceptions, etc.

First I would've checked systemd directories and then the package manager data. Rasp Pi usually uses a Debian based distro. While I'm not familiar with apt, it's probably in /var/lib/apt or /var/cache/apt for cached packages. /var/log probably has a pkg mgr log to parse out what was explicitely installed by the sudo user.

@@krozareq PJ

I used cloneCD by slysoft. And it is still around.

Well, he has to make money in some way.

@@bryancampbell4604 You aren't going to make any money that way.

@@thedevilsadvocate5210 It's advertising, and if someone is being dumb and just clicking through, the software that advertised it will get paid. So yes, you would make money.

@@bryancampbell4604 a lot of the time you dont even have to click it

Cutting deep here

So Windows is fat?

@@FishlandicFishy she thick

@sw4gr1d Linux users...yeah go FSCK yourselves. hahaha....

@Ultracloud thats the jokes, man

lol

Literally lol

You are still spying!

yes

same like: "don't forget your passport before you go on a terrorist attack"

Or even just label them.

They said the unmarked ones were for testing, they installed permanent ones and probably forgot where they put all the temp ones lmao

School project... main lesson learned: packaging is key.

ikr how unprofessional.

@@kba They still should have been labeled, including contact details. And, if they were installed with the university's consent, they should have been put in legitimate places (ceiling voids, locked cabinets, etc.) rather than in places that looked massively dodgy.

Do you feel old?

naw that only happens on tv

me too i thought this was gonna be a creepypasta boy was i wrong , this was very technically educational but soo boring i had to skip through it for the ending lol kinda let down , i was wishing it belongs to anonymous or illuminati i was wrong , (Sad trumpet sound)

@@veg4life. *lol*

hahahahhahhahhahahhahahhahhaha! John Wick, James Bond, Jason Bourne style......

lol, If it did you wouldn't have seen it in the first place.

big time

Screw anything the devs at JewTube do. It's all done to supress the truth and shove nonsense Shane Gayson down your throat.

Same

For one it actually shows things I like

@@crepemaister5416 shane dawson*

His friend was paper mario.

:))))))))) dying

*CASUALLY*

What? You don't walk behind every vending machine you encounter to find electronic tools placed by criminals? You freak

Your profile pic goes with this so well.

Same lmfao

same

Same

Same

Oh, really interesting!

use linux from beginning, later its hard to switch

@@VIJAYGACHANDES i’ve never even seen linux i have been thinking about trying to figure out how to change operating systems but i don’t wanna fuck things up

@@aidanl3105 I'm on my last semester of Cyber Security, and I would say it's (Linux) no big deal. It's not hard to learn, and you definitely don't need to switch to it to use it. Using it has only made me like windows more.

I've heard that DIY castration has calming effects

Nah, you're cool. Took me 2-3 years to familiarise with Linux. Once you get the basics, you rocket yourself to the mid ground. And after that it's just all practice

Judging by the fact that it was apparently originaly a student project, they probably didn't think of that at the time. It's also one of those things that you just learn by experience, I wouldn't have thought of putting a logo on it myself either. Though I would've at least put it in some kind of case to make it look a bit less evil.

Exactly! A little case and everything would've looked way less shady.

at least a readme.txt on the root of the fat32.

@@pastrana2000 black case with a warning sticker "Security device do NOT unplug" ;-)

Or a link to the the website / Reddit page

Right on with that observation. It is the r/actlikeyoubelong for hardware.

a case + Waitz logo + small description written on the front like "active busyness monitor" = harmless tracking device

Bleed inSkull yeah for sure, but the implication is that, as the person above you stated, if you act like you belong, people will assume you do. It’s less about a case and logo to explain what a non-nefarious device does, my comment is pointing out that people appear to assume the device is less likely to be nefarious when given a case and logo when in fact I could just make a nefarious device and put it in a case with a logo to trick people. Of course there’s always that smart white hat and eventually someone is bound to crack it open and figure out what it to only to find out that it’s nefarious but for 99% of people the case + logo thing seems to tell them it isn’t bad

@@Mr539forgotten Yea. This is so much abusable and could land anyone in trouble. You know what a USB killer is? A small device that looks like ordinary USB stick drive, but it contains series of capacitors that can generate like hundreds of volts out of just 5 within just a fraction of second, and then pump it in the data feed of the USB connector. When you buy stock from legal store, it is clearly stamped with an image of skull with crossbones, meaning that this device will kill your computer if not protected properly. But as it happens, these little but hell deadly devices are easy to obtain and even easier to dismount! So you can just take an old malfuncioning USB stick drive, dismount it, remove the original device out of plastic and place in the dismounted USB killer. You successfully disguised USB killer as an ordinary USB stick drive. It only waits for its victim. NOTE: THIS ACTION IS HIGHLY NOT RECOMMENDED!!! IT MAY AND CERTAINLY WILL LEAD YOU STRAIGHT IN JAIL IF YOU DO IT!!! Someone makes it, deploys it in somewhere and walks away. A curious victim just gets out to explore the contents, unaware of its true nature. Then suddenly, as soon as he plugs it in his laptop, screen goes black and laptop no longer responds to any keystrokes. Fan turned off, all indicators turned off. You can't even turn it on. That's the moment you just realised that computer just instantly died! No way to restore function, no way to restore data. The only way to be able to surf the internet again is buy a brand new computer, because brand new moherboards costs pretty much like brand new computer, not to mention that you have to buy brand new licence of Windows as well, because new motherboard means completely brand new computer. So in reality, changing the motherboard would cost you in the end more than buying new computer with new Windows preinstalled. And all of it just because of one little USB stick.

@@CZghost A USB killer should only affect the series of USB ports on a specific controller, and even then, most are protected so even if one gets killed, the voltage will not be sent through the entire controller.

Mcafee ad chormium lol

I'm very careful but I still have Unchecky installed to catch any sneaky addons I miss.

Or better yet : Only install from trusted repositories using a package manager like apt.

@@NatoBoram Nobody likes Linux elitists. Windows users have no choice as you know.

You should try scoop.sh

I am borderline OCD about optimizing my system and I have done it multiple times for the same reason. Being in a rush when I needed to slow down. I agree it was really cool of him to leave that in there and apologize. Good content.

@@PatrickPants BTW despite this annoying addition to the installation, IMG Burn is a really great piece of freeware, they are obviously trying to just make a little money. This method is used a lot in freeware including pages that look like you need to agree to some terms to install software when in fact you actually need to decline to install additional shovel ware. A small price to pay for some otherwise very useful freeware out there

Actually i never install crapware nor adware because i'm obnoxiously over-cautious each time i install something, i even read those damn contracts from time to time, and i sandbox everything that seems even a bit fishy before trying. I'm obsessive about it, i'm also obsessive about not having antivirus, so it kind of balances in the end.

@@diablo.the.cheater why do you not use anti-virus ?

@@joshanderson3961 Because AVS are for plebs that don't care about having a slow computer. Haven't used an AVS in over 20 years and not a single infection since I was under 10 years old during the days of dialup when viruses were actually harmful.

as a music theory nerd i feel this

Music theory today is just the quantize button on a daw 😂

Came here just to say something similar.

Brandon Pack 一

just what someone up to no good would do...

We would still shove it into our pockets who are we kidding

Think of how much more trouble could be saved if people didn’t randomly steal property they found on campus and try playing detective with it 🤔 Or better yet, at least lead with a “Hey librarian, I found this thing do you know what it is?”

OMG JARID I LOVE UR VIDS PLEASE RESPOND TO THIS COMMENT PLEZZZZZ

You’ve been ignored xd

Oof I unsubbed like 2 months ago :(

He10s etfja tyiam my channel!

RAWSTORM Did you just have a stroke

well he doesn't know anything about anything as evidenced by the fact that he's using windows. That guy wasn't ever going to reverse engineer anything. Nobody was going to find out what it was until someone who actually knows thing got their hands on it.

@@jhk6558 I thought the LO implicated that he installed the malware with screenshare (remotely),

@@jhk6558 what's wrong with windows?

@@blendernoob8993 not open source

How embarrassing. Even my grandma wouldn't fall for that.

How?

Hello brother

That was my very thought haha

ONLY IF YOU'RE NEFARIOUS!! I looked around my library and I found a whole bunch of computers and some unnecessary books. But I am not nefarious, so I left them there.

🤣

Yes

@Hugohopser Didn't find "Win32 Disk Imager" though, which everybody says is immediatly found with google.

Hugohopser follows to click in one million user pop up

@@LiveOverflow I literally just searched for your quoted text and its the first result on google....

@@jslay88 I'm clearly an idiot ;)

@@LiveOverflow be careful next time :3

Then the attackers would copy your sticker and go unnoticed. Instead if you are allowed to install devices in public areas install them into a place where only authorised people have access. Like a locked cabinet or similar.

Why not a) out of reach, b) secured. I was wondering why so many raspberry boards were suddenly for sale on eBay from San Diego seller's.

alternate moral of the story: don't poke around with devices that are clearly part of the campus' network and clearly labelled

Can confirm. I did that to one of my pis 3 years ago and haven't been able to find it since!

Did he show it in the video, I couldn’t see the pi

He'd have better luck if he used a John Cena skin.

Cover it with John Cena stickers 😶

@@notsmoothie umm... What stickers? I cant read.

good idea.

>Assuming that people read "README"

@@jared8515 people would probably read it if it was on a flash drive they found and if they had an intention of finding who's it is / giving it back.

@@jared8515 for example, a readme with a small explanation of what the device is and does would have helped extraordinarily here

@@jakecrowley6 fair

...because it is identification data. We really need to have a national discussion about digital privacy.

​@@sailirish7Digital privacy? We can't even stop the feds from telling big tech what to censor to interfere with our elections and politics.

The thing that keeps moths being dumb as rocks are the flames to which they are drawn. Fire is essentially nature's mind eraser, and it's almost been proven that immersing yourself immediately into a soothing pool of flames after learning something removes all the learning from you and gives it to the fire. They tested this with mice, and it was hard to determine how much of the learning was transferred to the fire, as the mice were slain rather quickly each time they were exposed to the soothing pool. It was even more difficult to attempt to extract this learning from the fire itself, and so it was generally assumed and agreed upon that the experiment was successful, and that is why fire is so smart and why moths aren't. You're welcome.

@@Double-X2-Points LOL

A bag of rocks isn’t useless. It can be used in many ways.You can use the bag to smash all this stuff, pull a rock out and smash something at a distance, mark your trail in the woods as you get lost, etc (lol) I get your tongue in cheek comment though. I feel the same way about this level of tech.

@@johnkruton9708 Well I have advanced some over the years point in fact I finally switched from a flip phone to an iPhone. The only reason I bought it was because the sales lady assured me I can also make my coffee in the morning. But seriously when I don’t understand something I just call my nephew and he is like a wizard and fixes everything in seconds.

All the devices should be surrendered to the campus security and ICT team for further investigations. Who knows how many wifi passwords and login credentials the have stolen. Of course a thief will never own up they are thieves.

It was probably harmless but I'd prefer to err on the side of caution. I might be reluctant to return the devices. Could this be perverted into something not so harmless?

@@karlbergen6826 Considering this person found and stole one and then cracked it open like an egg to the point of being able to edit the files, yes, yes it could be molested into something devious

@@nervonabliss2071 So could the library computers, or the books

@@alakani Yea, pretty much. Only difference is one is monitored a lot more often then some raspi left in a corner somewhere

kaspersky has a function to untick those sneaky checkboxes automatically to prevent adware ;)

Yeah! Ikr?

@@n-i-n-o What if unticked means install?

@@Blast-Forward checkbox which is not selected

@@n-i-n-o yes but they're saying what if it says uncheck the box to install bloatware

I like how sensitivity to collecting information has gotten so normalized that we no longer consider it an overreaction.

>Not setting off repeating high energy emp pulses as you walk around campus.

Even if everyone knew they wouldn't care if the convenience outweighs the concern!

If you are walking around locations you do not own or rent, while broadcasting a locator signal from a device, you should have no expectation of any privacy. Also this device is no different than a car counter on a highway, as it's only show number of signals per area, not detailed info on each signal.

FraKctured I love gentle giant

Kowalski analysis

@alysdexia use your fucking common sense

@@rzul thats not so common anymore

@@LegoDude182 *sHOts firED*

Mainsream skype alternative in 2018 ? None.

Furrane discord has better voice chat better screen sharing, better video chat what's not an improvement

@@furrane Discord?!

Isnt Discord is made for gamers?

@@senki0151 While discord has features regarding gaming, no, it can be used for anything.

Right!

Down!

Those are incredible unrelated to my comment

Nice, you watch your name?

@@xbl6506 Yeah i do/did Loved kimi no na wa/your name

Hahaha

This ain't it chief

Before this comment gets 1k likes Subscribe to PewDiePie

SHMOO fuck I was gonna say that

Kowalski, paralysis.

Abe Cervantes Thanks

Lochlan Gallagher no problem ;)

Ty sm

Thanks so much. this was too long winded.

Rip watch time

Not that id call this clickbait welcome to modern reporting mostly nonsensical bs.

It isn't exactly hard if you look around a little bit.

You can just find them online already lol

Oof

Haha don't worry on Linux we have a file system called Butter. :P

Keep going to the gym and soon you'll be exfat!

lmao

Nope most do not know what that is. Never assume when doing a video on the internet.

Walk through with a backpack of cheap cellphones connected to the wifi

@@GODDAMNLETMEJOIN The only problem is its kind of a lengthy process to connect a new device to the University wifi

Whoa! Holy $#!t It's MrMario! I watch your videos all the time. So cool to see your comment on a random video. Anyway keep up the good work dude, I really like your channel.

i agree. he did it very nicely

I agree to I think you should do some more rgh tutorials

Yeah, I haven't coded in about 20 years and could keep up, so it was good for me. Also I know crap about Linux so appreciated he didn't assume everyone is a Lunix expert.

Not malware, but it could've been.

"could of been" - Your fucking SPELLING is malware!

Anvilshock His spelling is fine, get a life.

His spelling is shit, get an education. It's "could HAVE been", there is absolutely zero justification for the word "of" in there, and anyone doing this needs a massage with a chainsaw.

If you say pls because it is shorter than please, I will say no because it is shorter than yes.

😂😂😂

The bluetooth dongle receives powerful signals, which overcharge the whole device. The SD card, due to the high voltage, heats up, heating up the air around it.This causes rapid expansion of the air, also known as an explosion.

@@boggybolt6782 suddenly a bright flash in the sky a flaming meteor crashes to earth

Ban all clocks!

@John Doe source?

Have you tried setting it to wambo?

Have you tried forcing an unexpected reboot lol I love the I.t crowd best show ever lol

*_Have you try unplug computer?_* From the Beavis & Butt-Head episode "Tech Support".

@@gentlemanvontweed7147 *WEEST???* That's _West_ me boy!

Have you tried putting it in rice?

This isn't reverse hacking. This is video is embarrassing. This guy has no fucking clue what he is doing.

@@thatsciencedude4552 chill out dog

This isnt hacking he just read the files

@@thatsciencedude4552 you mean the guy who only uses linux that was trying to have someone on the other side of the globe use windows to extract the data from the device? Seems reasonable to me. Once he got the disk image he sailed through the discovery process quite well.

Btw what everyone is calling hacking is actually cracking

Pedro Sequeira lol whatever

you forgot to append this at the end. "-LiveOverflow 2018"

It's not stealing since they returned it

@@leonardfluhart3532 Its stealing no matter what you do next.

@@Pedro-tl7jg I'd agrue not simply because they didn't know and as soon as they found out they returned it

but what if it was all a planned ad

@@RenanSilvaSoriano o.o;

There's a program called Unchecky that automatically does this on most programs I wouldn't recommend it if you're an advanced computer user, but it's a nice thing to install on dumbusers' computers

Or use ninite for the apps it supports. Install multiple apps at once, with no extra stuff you don't need. Imgburn is on there, so even though it didn't work for this purpose it would have avoided installing the PUPs.

Or just don't use Windows, and have your package manager do the right thing

"Don't use Windows" is a really retarded argument, if your use-case prefers you use Windows, you will use Windows

@@Ryndae-l not always an option, and you know it...

So too assuming the site itself isn't trying to profit off of them

its what i do succesfully so dont hate nigiga

@@richrich9740 nigiga

@NATHANIEL PARISE We do? I really hope not.

@Ratko Mladic nigigigigiga

😂

Seriously? Ok. It is all very basic....

Herman Willems Keep in mind this is a youtube video that anyone can watch. Also people who dont know anything about this kind of stuff

@@jessebijma, spoken like a unix master.

@@koh9894 I don't know the first thing about unix to be honest

Its on the playstore comments

Alejandro Guerra wot

Which profs???

@@Sakura11101 gary

@@RM-xr8lq is he planning on taking uc property? That's worthy of a professionalism deduction

but i am le tired

@@n0nlinear1ty haha........Australia

Nein, du Schweinehund! >8(

Racizm

No no no, have him say Nuclear Wessels

they already gives a clue (waitz). he just missed it and doesn't search "waitz + location it found / whatever connection it might be"

That was exactly the first thing I thought.

@@cypherusuh he did a google search it just didn't occur to him it might have been official due to no documentation or stickers. I would say in this day and age a README file or a permission contact sticker is a requirement to keep people from getting freaked out.

Duh? Cornholio!

Lilely would have made more sense to put the name on it like Waitz app then a link to teh website. label makers are easy to use after all.

Rufus? The boot usb thingy? I was thinking more ex2fsd, but of course the best option is to wipe windows and go full Linux.

Yup, but not for dumping ;)

wtf

@DREAM666 lol

Да

@Diogenes TheDog what exactly is supposed to be that in german?

"When you said "UCSD" I instantly knew what it was... -- UCSD student" - Congratulations, you fulfilled your curriculum. You memorised your school's name.

@@Anvilshock I think they meant they knew that it was this company's product since it was in use in the school.

Shh. Don't ruin the moment.

Don't even need a VM, just a live USB.

Yeah i use it with the rpi all the time

Same

It's still the best software for that. Etcher from Etcher.io may seem more modern, but it lacks the functionallity to generate an image of a whole (micro) SD Card

Every fucking -script kiddie- raspbian user should know these programs man! I'm astonished :[