Skip To Content
JEWISH. INDEPENDENT. NONPROFIT.
Life

After a website breach, an ulpan teacher takes to Instagram to school hackers — on grammar

When the owner of a Hebrew language school in Tel Aviv discovered that the websites for his business and hundreds of others had been hacked to display the same mistake-riddled text, he knew just what to do — correct it.

On May 21, Yaron Sivan woke up to texts from friends and students, alerting him that instead of schedules for online classes and testimonials from satisfied graduates, the website’s homepage displayed a black screen, a video with simulated footage of Tel Aviv burning, and messages in Hebrew announcing that “the countdown for the destruction of Israel began a long time ago.”

Except it actually said something like, “Opposite counting to the demolition of Israel will begin a long time ago,” said Sivan, who as a professional Hebrew teacher immediately noticed the “ill-written” nature of the text.

The May 21 attack was no hack job, despite the grammar issues. It is actually thought to be the latest skirmish in a cyberwar between Israel and Iran. While the hack has not been explicitly linked to Iran, Iranian hackers may have been involved. About two weeks before the hack, on May 9, computers at Iran’s important Shahid Rajaee port briefly crashed as a result of hacking attributed to Israel. In late April, Israel detected and ultimately prevented an attempt to breach some rural water distribution systems, which was later linked to Iran.

Sivan runs an ulpan, or intensive Hebrew learning program for tourists and immigrants. Ulpans date from Israel’s first days as a country, when mass immigration necessitated a standardized crash course in basic Hebrew. The Israeli government still offers five months of Hebrew instruction to recent immigrants. Some ulpans are public; Sivan’s, Ulpan Bayit, is a four-year-old private program located in Tel Aviv’s trendy Florentin neighborhood, serving mostly students in their twenties and thirties. Years as a teacher had rendered him attuned to the mistakes of non-native speakers.

So he decided it was time to give the hackers an impromptu Hebrew lesson.

Sivan took to Instagram to point out the numerous grammatical blunders committed by the hackers. In a sentence warning people to “be prepared for a big surprise,” they had confused the imperative and infinitive tense, he wrote in a post. Later on, they’d made the mistake of using unnecessary prepositions.

The stunt was a way to let students know that they shouldn’t use the compromised website (among other things, it asked visitors for webcam access) and inject some humor into an otherwise stressful situation. Hundreds of websites, most hosted by the Israeli internet company UPress, had been affected by the breach, and Sivan said that when he checked UPress’s Facebook page for updates, he found it flooded with customers furious about the hack.

“Especially with the corona situation, people are so frustrated and irritated,” he said.

For Sivan, the episode was the cause of some household role reversal. His wife, stand-up comedian Tom Yaar, was incensed about the hack. Meanwhile he, a pragmatic teacher, was content to spend the morning cracking jokes.

“I’m not a person who gets frustrated from things I can’t do anything about,” he said. “I just do what I like, which is posting funny, stupid things on Instagram.”

A message from our CEO & publisher Rachel Fishman Feddersen

I hope you appreciated this article. Before you go, I’d like to ask you to please support the Forward’s award-winning, nonprofit journalism during this critical time.

We’ve set a goal to raise $260,000 by December 31. That’s an ambitious goal, but one that will give us the resources we need to invest in the high quality news, opinion, analysis and cultural coverage that isn’t available anywhere else.

If you feel inspired to make an impact, now is the time to give something back. Join us as a member at your most generous level.

—  Rachel Fishman Feddersen, Publisher and CEO

With your support, we’ll be ready for whatever 2025 brings.

Republish This Story

Please read before republishing

We’re happy to make this story available to republish for free, unless it originated with JTA, Haaretz or another publication (as indicated on the article) and as long as you follow our guidelines. You must credit the Forward, retain our pixel and preserve our canonical link in Google search.  See our full guidelines for more information, and this guide for detail about canonical URLs.

To republish, copy the HTML by clicking on the yellow button to the right; it includes our tracking pixel, all paragraph styles and hyperlinks, the author byline and credit to the Forward. It does not include images; to avoid copyright violations, you must add them manually, following our guidelines. Please email us at editorial@forward.com, subject line “republish,” with any questions or to let us know what stories you’re picking up.

We don't support Internet Explorer

Please use Chrome, Safari, Firefox, or Edge to view this site.

Exit mobile version