As always, the user is the weakest link in the security of the system. It is generally much easier to get a password and user name directly from someone with secure or privileged access than it is to hack/crack the system. This is pretty basic social engineering, and something we all need to constantly be on the lookout for. I have been recently cleaning up my email inbox, when I came across this article from April in The Register where their research showed that women are four times as likely to give out a password if chocolate is offered in exchange than men. Four times. I could never have imagined how something so delicious could so easily be put to such a sinister purpose. *sigh*
Posts
Not Even Re-MOAT-ly
-
When your kid wants a castle cake, but castle cakes are too expensive:
"Why is there a beach cake in front of it?"
"It's a moat."
"With palm trees?"
"....
I'm sure that after a few beers, a much larger percentage of folks would give away passwords and confidential data. That's Social Engineering 101: Ply Your Target With Booze.
ReplyDeleteValerie