The Badge Archive

JGL Closet Hack

Fulfills Step 1 of GSUSA Senior Cybersecurity Investigator badge requirements.

Items Needed

Instructions

  1. Scouts are directors of JGL Closet, a new fashion company they’ve created, complete with a brand, logo, and products. Explain that scouts will investigate a cybercrime that has impacted JGL Closet’s network, starting by uncovering why the company hasn’t received any orders in the last 24 hours.
  2. Give scouts a pile of Customer Feedback Cards and let them search for clues about what happened to the website. Encourage them to identify patterns and analyze feedback without offering direct solutions—this is their chance to practice critical thinking and problem-solving skills.
  3. After 5 minutes, share this clue:
    Some customers can access the website, but others cannot.
  4. Guide scouts through the following questions:
    • What do the customers who can access the website have in common? What about those who cannot?
    • Why might the company not be receiving orders even if some transactions appear successful?
  5. After scouts share their ideas, connect the clues to reveal what happened:
    • The original store page URL has been changed and is no longer secure. Customers who bookmarked the old URL cannot access the site, while others using a search engine or home page either see successful transactions or security warnings.
    • Any orders placed are being redirected to an unsecured page and are not reaching JGL Closet.
  6. Summarize the findings and transition scouts to the next activity, where they’ll explore how cyber issues like this can be traced and resolved.

Core Answer for Leaders

  • The URL for the original store page has been changed, causing two main issues:
    1. Customers who bookmarked the original URL cannot access the store.
    2. Customers accessing the store via search engines or the homepage are routed to a page that is no longer secure.
  • Transactions occurring on the insecure page are being intercepted, which explains why the company isn’t receiving any orders.

Detailed Answer for Leaders

The feedback cards confirm the following key points about the cybercrime affecting JGL Closet:

  1. Access Issues:
    • Customers like Sophia and Ella, who bookmarked the correct URL for the store page, cannot access it anymore, receiving error messages such as a 404 message.
    • Customers like Ariana, who accessed the site via a search engine, can still reach the page but report encountering issues like security warnings (e.g., Destiny and Bella).
  2. Security Concerns:
    • Those encountering warnings that the page is “not secure” (e.g., Destiny and Bella) are afraid to complete purchases.
  3. Redirected Orders:
    • Some customers, like Layla and Aaliyah, were able to place orders successfully and have received their items. However, orders placed on the altered or compromised store page (Jocelyn’s case) appear to be redirected elsewhere, bypassing the company’s secure system entirely.
Tia Kennard