Prolonged Cyberattack Disrupts Education
Ezekiel Dean Potter, a 34-year-old former senior IT support specialist, was sentenced to 21 months in federal prison for a sustained cyberattack against the Saydel Community School District in Des Moines, Iowa. After his employment ended in April 2023, Potter retained access credentials and systematically targeted the district’s systems for over a year and a half. Prosecutors described him as a “plague” on the district, with attacks that deleted the district’s Facebook page, stripped employees of access to educational platforms, and repeatedly reset usernames and passwords for various accounts. The disruptions impaired classroom instruction and cost tens of thousands of dollars in remediation expenses.
Investigations and Legal Consequences
Potter’s actions included deleting user accounts and device management data from the district’s Apple School Manager system, disrupting access to district MacBooks and iPads for a week. In January 2025, he breached the Schoology learning management system and deleted an IT employee’s account, causing a two-hour disruption to classes. A week later, he deleted nine Gmail accounts belonging to current and former staff, including the IT director and superintendent. After receiving Google security alerts, he switched to using a VPN. Investigators traced some activity to IP addresses linked to his subsequent employers. A former coworker turned over a USB drive from Potter’s desk, which contained spreadsheets of district credentials. Potter pleaded guilty in January 2026 without a plea agreement. His sentence also includes three years of supervised release with restrictions on employment, finances, and computer use, plus $59,668.81 in restitution to the district and its insurer.
