Truth 11 Social engineering tactics
People often ask me how hard it is to hack a password. In reality, it is rare that I ever need to hack someone’s password. Though there are numerous ways to gain passwords on a network and hundreds, if not thousands, of tools available to crack encrypted passwords, in the end I have found that it is far easier to simply ask for them.
A perfect example of this type of attack was a medium-sized bank that I was testing recently. The bank’s concern was related to the new virtual private network (VPN) capabilities it had rolled out to a number of its staff. The VPN allowed staff to connect directly to their secured network while at home or on the road. There is no doubt that a VPN can increase productivity, but ...
Get The Truth About Identity Theft now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.