Social Engineering
Four Tips for Teaching Your Staff About Social Engineering
April 11, 2012 Added by:Brent Huston
Social engineering, the process of obtaining confidential information through tricking people to do things they should not do; is on the rise. So how can you help your staff recognize social engineering before it’s too late? Here are a few tips...
Comments (0)
The FBI Discusses Internet Social Networking Risks
April 05, 2012 Added by:Infosec Island Admin
Social networking sites have created a revolution in connectivity. However, con artists, criminals, and other actors are exploiting this capability for nefarious purposes. There are primarily two tactics used to exploit social networks. In practice, they are often combined...
Comments (0)
Protect Yourself from Vishing Scams
March 30, 2012 Added by:Robert Siciliano
Vishing occurs when criminals cold-call victims and attempt to persuade them to divulge personal information over the phone. These scammers are generally after credit card numbers and personal identifying information, which can then be used to commit financial theft...
Comments (0)
How to Hack Into the Music Industry
March 29, 2012 Added by:Quintius Walker
When it comes to the vulnerabilities presented by the online aspects of the music industry, the opportunities for penetration tester’s to employ their skills are far and wide. However, they are still for the most part often overlooked. And with great peril...
Comments (0)
OTA Updates April Fool’s List to Combat Spear Phishing
March 29, 2012 Added by:Headlines
“While businesses are making efforts, all too often they are overlooking the fundamentals which could curb upwards of 90% of online threats to their data. We have a shared responsibility to harden our systems and those of our customers..."
Comments (0)
Just One of the Reasons Why I Love Anonymous
March 28, 2012 Added by:Quintius Walker
In the world of cyber-security things transform at the speed of light. From exploits to methods, what worked yesterday is not the solution tomorrow. Ethical problem solving students should do themselves a favor and study the ways of the infamous idea known to us as Anonymous...
Comments (0)
Social Networks and the Deactivated Friend Attack
March 23, 2012 Added by:Pierluigi Paganini
During a conference at the IEEE's International Workshop on Security and Social Networking SESOC 2012 in Lugano, Switzerland, researchers presented on a new critical vulnerability on Facebook, a zero day privacy loophole that they have named the "Deactivated Friend Attack"...
Comments (0)
Hackers Target Social Media for Social Engineering Attacks
March 22, 2012 Added by:Dan Dieterle
Hackers are getting much better at their craft, and people are making it very easy for them. A Social Engineer will use information gathered about a person, place or business in specially crafted attacks that play on people’s thoughts, beliefs or emotions...
Comments (0)
The Use of Social Networks for Cyber Espionage
March 13, 2012 Added by:Pierluigi Paganini
There has been an upsurge in cyber espionage by governments in search of information relating to military and industrial technologies. Of strategic importance for these activities are social networks through which one can trace a target's relationships, habits, and location...
Comments (1)
You’ve Been Phished Without an Email or a PDF
March 12, 2012 Added by:Scot Terban
It seems that someone is making a full sized driftnet for information on those who would like to sign up as well as discuss the INSCOM Cyber Brigade. On the surface like I said, this looks all well and good, but once you start to poke at it though, you get some strange answers...
Comments (16)
FTC Says Tax Fraud is On the Rise and Here's Why
March 11, 2012 Added by:Kelly Colgan
Used to be crooks snagged a Social Security number to open a credit card and run up charges. Now they've found an easier way to make money, according to the FTC: Identity thieves prefer to commit tax and wage-related fraud...
Comments (1)
On Hacking Humans at the RSA Conference
March 06, 2012 Added by:
RSA was a veritable cornucopia of data collection. There were no firewalls, human IDS/IPS or content filtering at this show. People openly discussed strategic plans, engineering specs and tactical activities whether over morning coffee or late night shots of Patron...
Comments (2)
A Quick Look at Spear Phishing via SurveyMonkey
March 05, 2012
Many people who respond to these surveys are oblivious to what is going on and think that their answers are confidential. That may be the case with a legitimate survey, except when a phisher is using the system. Here is a quick example of how this attack is conducted...
Comments (0)
How to Protect Yourself from Skimmers
February 28, 2012 Added by:Christopher Rodgers
When you swipe your credit or debit card, are you handing over your personal information to criminals? Skimming is a process scammers use to steal credit or debit card information. Scammers use devices called skimmers to accomplish skimming in everyday transactions...
Comments (0)
Is LinkedIn Really Secure?
February 24, 2012 Added by:Brittany Lyons
LinkedIn has faced scams and viral attacks, and users have watched private information become public without their permission. Online vulnerability is a problem, and though LinkedIn has addressed issues in a punctual manner, this does not prevent new problems from arising...
Comments (0)
Brad Smith: The Power of the Ultimate Social Engineer
February 11, 2012 Added by:Malgorzata Skora
While we often focus on how social engineering skills can be used to break into companies or otherwise obtain information that is supposed to be protected, Brad demonstrates the positive aspects of these skills, and shows how they can be put to good use...
Comments (1)
- Five Things Your InfoSec Team Should Do in the Next 30 Days
- The Disclosure Debate Continues….. (part 1,453, 769) to be Continued
- The Danger of Mixing Cyber Espionage with Cyber Warfare
- Improving Security by Failing Faster
- BYOD: Should It Be the Wave of the Future?
- Trend Micro Discovers "SafeNet" - a New Targeted Espionage Operation Online
- Managing My Company’s Security is a Nightmare
- Bridging the Cybersecurity Divide, Why Security Innovation Must Lead the Way
- The Evolution of Industrial Control System Information Sharing
- ATM Security (And Really Learning from the Past)