Nasdaq Hacked! This past weekend, Nasdaq revealed had been hit by cyber-vandals.
Facebook Hacked! Facebook accounts of four Mo. legislators are hacked
The FBI today warned individuals that messages that say that they include photos and videos of Osama bin Laden’s death are not what they appear; the actually contain a virus that could steal your personal information. Its no wonder… “Bin Laden” Google searches have increased 1 million percent in recent days, according to Google. This [...]
You give up Kent’s login information to me because you trust me, are stressed and wish to fulfill your job function: keeping customers happy. I now have access to your CRM/lead management system. As we say in my country we now ‘own’ you. Within this web application I now have unfettered access to every: – [...]
I have now taken the guess work out of my confidence scheme. I can now deal with you using actual facts.
I know Old Gorman, his employee kitchen, his financials, his employees, his products, his vendors. To be blunt I own Old Gorman.
I am in the trust business. Gaining it dishonestly that is. Sort of a conundrum, gaining trust dishonestly, huh?
A streetwise guide to protecting your company from hackers and intruders.
PDF Key Scanner Goal: Send an email to your customer support department with title – “Acceptable Internet Use Policy” and body “Please carefully review the attached PDF – it contains changes to our Acceptable Internet Use Policy (AIUP). Regards, Human Resources”. The goal is to get employees to open this PDF. Description: This PDF has [...]
Spoof and Steal Goal: Spoof your company’s login page. Send an email asking certain employees to click the provided link and login to your companies service to change their password. Hook to use: “due to new company policy you must change your password today and every 90 days henceforth.” Description: If your company login site [...]
Switchblade Goal: Send a letter on your company’s letterhead to each IT manager asking that they take the enclosed USB card (with company insignia), stick it in their computer and copy important 2010 IT policy documents to their drive. “Our 2010 strategy is considered company confidential and for this reason we are not sending it [...]
Anyone with access to any part of the system, physically or electronically carries at least the same potential security risk as the IT systems themselves.