His heart pounded. He now understood exactly how the ghost was stealing the shop's data.

That night, Alex googled: "learn ethical hacking from scratch online course."

The next month, the till balanced perfectly. The ghost was gone. But Alex couldn't stop. He enrolled in a second course: "Learn Python for Ethical Hacking." Then a third: "Web Security & Bug Bounty."

A section titled "Wi-Fi Cracking & Password Attacks" felt like magic. The instructor explained that many small businesses use default router passwords. Alex downloaded a wordlist of common passwords (like "admin123," "coffee," "password"). Using a tool called aircrack-ng inside his virtual lab, he captured a handshake (the digital greeting between a device and the router) and cracked it in 4 minutes. The password? "dailygrind1" .

The course introduced "footprinting" and "reconnaissance." Alex learned simple commands like nmap to see what "doors" (network ports) were open on a device. He practiced on his own virtual machines. When he scanned his coffee shop’s public Wi-Fi router, he nearly choked. Port 21 (FTP) was wide open—an ancient, insecure way to transfer files. That was the back door.

The first lecture said: "Ethical hacking is not about breaking things. It's about understanding how breaks happen so you can fix them." Alex learned to set up a virtual lab—a fake little network inside his own laptop. One computer acted as the "attacker" (Kali Linux), the other as the "victim" (a vulnerable Windows machine). No real laws were broken.

Alex had a problem. His small neighborhood coffee shop, "The Daily Grind," was bleeding money. Not from expensive milk or broken espresso machines, but from a ghost. Every week, the digital till came up short. The security camera showed nothing unusual. His manager swore the cash was there.