Spain
Portugal
💬 true story... Social Engineering.
• Today we are talking about social engineering, namely the hacking of the American prison system with the help of #SI. Kevin Mitnick argued that no technology in the world can resist a social engineer, since people are easy to manipulate, and even in the most secure systems, it is people who can be the weak link.
• In 2018, Konrad Voitz used #SI and #phishing to deceive employees of an American prison and install malware in order to steal credentials and reduce his friend's prison term.
• During his attack, Voitz created a copy of the prison's website (ewashtenaw.org ), changing the letter W in the name to 2 letters VV (ewashtenavv.org ). After that, Voitz used Vishing, posing as an employee of the IT department, offered his victims to enter their credentials on a phishing site, thereby gaining access to more than 1,600 passwords. However, Voitz was discovered before he could do anything, and was sentenced to 87 months in prison.
What is the meaning of this post?
The point is that the prison used advanced, at that time, threat analysis software, the prison is surrounded by steel doors and employees (the weakest link in any system) who trusted the attacker. Yes, they were able to catch the attacker, but what would have happened if the #C level had been at a higher level and more thorough preparation had been organized before the attack?
• In order to improve your social engineering skills, you can use the hashtag #SI. Pay attention to the topic: #Profiling — it will help you in interpersonal communication, as well as do not forget about #Phishing — the most popular type of attack, due to the aggravated situation in the world.
