Hacking through “social engineering” at DefCon 2011

Hackers used social engineering in a contest at DefCon 19 to gain valuable data from some of the largest U.S. companies

By - August 8, 2011 Share on LinkedIn
hacker

Contestants at the DefCon hacking convention in Las Vegas have managed to secure company IT data through “social engineering” rather than confrontational hacking.

Posing as friends or colleagues, the contestants contacted employees of large U.S. companies in a bid to collect information through talking, rather than confronting the companies’ security systems.

One case saw a contestant contact an employee and convince her that he was from the company IT department. He then convinced her to give him configuration settings of her computer, which contained information that could allow potential hackers access to the company system.

“For me it was a scary call because she was so willing to comply,” said Chris Hadnagy, one of the organizers of the contest. “A lot of this could facilitate serious attacks if used by the right people,” he continued.

Companies targeted in the contest include Oracle, Apple, AT&T and Delta Air Lines Inc.

Read the full story over at: Reuters.

Share your thoughts

Join the conversation

Connect with Us

androidappletwitterfacebookgoogleplusfeednewsletter

Poll

Would you rather use your fingerprint instead of a PIN to make card payments?

View Results

Loading ... Loading ...

More News

The ANC’s control over South African telecoms companies

ANC Wireless

The South African government is one of the biggest shareholders in local telecommunications companies, which is of concern to industry players.

Tremendous progress in South African energy security

Jacob Zuma in Germany speaking

Tremendous progress is being made in the government’s quest for energy security in South Africa, President Jacob Zuma said.

Pokemon Go Plus delayed

Pokemon Go Plus

Nintendo’s wearable accessory for Pokemon Go has been delayed by two months.

LastPass accounts can be “completely compromised”

Lastpass

A serious LastPass zero-day vulnerability has been found, which can compromise user accounts when they visit a malicious website.

Free MyBroadband Newsletter
×