Ex-IT Employee Jailed for 21-Month Hack of Iowa School District

A former IT employee at an Iowa school district received a 21-month prison sentence after using retained credentials to hack into his previous employer's systems for nearly a year, deleting the district's Facebook page, locking staff out of key educational platforms, and disrupting classroom operations.

Public reporting indicates that Ezekiel Dean Potter, who had worked as information technology staff at Saydel Community School District, continued accessing the network from May 2022 through April 2023. He used stored credentials to remove employee access to Apple School Manager, Schoology, and Gmail accounts, attempted repeated password resets, and deleted the district's official Facebook page. The attacks caused operational disruptions that affected classroom activities. The district spent roughly $60,000 on remediation efforts. Court documents confirm Potter was sentenced on June 13, 2026.

This incident matters to you and your family because school systems hold sensitive information about your children, your household address, and often your own contact details as parents or guardians. When insiders or former employees retain credentials, the breach can expose account-access information and passwords that travel far beyond the school network. Your family's data can surface on dark web markets or forums where criminals combine it with other leaks to target you directly.

The doxxing and identity-chain implications are particularly concerning. A single exposed school-district password often reuses across personal email, banking portals, or social media. Attackers follow these links to map your email to usernames, phone numbers, and eventually your home address. Children's gaming accounts tied to the same family email or phone become easy follow-on targets, turning one institutional breach into a chain of personal account takeovers and harassment.

What to do

• Run a DoxxScan to map every link between your emails, phone numbers, usernames, and real-world identity so you can see exactly what chains exist before criminals exploit them.
• Rotate the passwords you used at the school district or any connected educational platforms anywhere else you reused them, then enable two-factor authentication through an authenticator app rather than text messages.
• Enable continuous DoxxScan monitoring across 15.4 billion breach records and more than 100 platforms so the next time your information appears it is caught within hours instead of months.
• Cover the entire household with DoxxScan family protection that extends to your children's accounts, including gaming profiles that frequently chain back to the same family address or parent email.
• Let DoxxScan remediation specialists handle the takedown requests across data brokers and exposed records while you focus on securing your own devices and accounts.

The Potter case shows that even organizations you trust can expose your family through simple credential mismanagement. Taking concrete steps now limits how far any future leak can travel. DoxxScan by GalaxyWarden delivers continuous monitoring across 15.4 billion breach records and 100-plus platforms, AI-powered identity-chain mapping, hands-on remediation by specialists, and full household coverage that includes your children's gaming accounts—making it an effective defense against the credential leaks and doxxing chains that incidents like this one routinely trigger.

Source: https://www.bleepingcomputer.com/news/security/ex-school-district-employee-jailed-for-hacks-on-former-employer/