floofloof@lemmy.ca to Cybersecurity@sh.itjust.worksEnglish · 3 days agoLawsuit says Clorox hackers got passwords simply by askingwww.nbcnews.comexternal-linkmessage-square12fedilinkarrow-up192arrow-down10
arrow-up192arrow-down1external-linkLawsuit says Clorox hackers got passwords simply by askingwww.nbcnews.comfloofloof@lemmy.ca to Cybersecurity@sh.itjust.worksEnglish · 3 days agomessage-square12fedilink
minus-squareexpatriado@lemmy.worldlinkfedilinkEnglisharrow-up24·3 days agojee… is that easy? what’s your password OP?
minus-squarefloofloof@lemmy.caOPlinkfedilinkEnglisharrow-up45·edit-23 days agohunter2, but don’t tell anyone because it’s a secret.
minus-squaretreadful@lemmy.ziplinkfedilinkEnglisharrow-up8·edit-23 days agoRIP bash.org EDIT: Nice, there’s a bunch of mirrors.
minus-squareonslaught545@lemmy.ziplinkfedilinkEnglisharrow-up20·3 days agoYup, it is. Social engineering is by far the most effective means of gaining unlawful access to any system. Humans are always the weakest link.
minus-squaresugar_in_your_tea@sh.itjust.workslinkfedilinkEnglisharrow-up11·3 days agoExactly. Many breaches follow this pattern: Learn the name and some basic details about the secretary or something Call corporate tech support asking for a password reset claiming to be the secretary Access important stuff since secretaries have a surprising amount of access Replace “secretary” with some other relevant individual who has a surprising amount of access and wouldn’t attract attention.
jee… is that easy? what’s your password OP?
hunter2, but don’t tell anyone because it’s a secret.
All I see is ******2
Ahh, I’m home finally
RIP
bash.orgEDIT: Nice, there’s a bunch of mirrors.
Weird, because all I see is hunter*
Yup, it is. Social engineering is by far the most effective means of gaining unlawful access to any system.
Humans are always the weakest link.
Exactly. Many breaches follow this pattern:
Replace “secretary” with some other relevant individual who has a surprising amount of access and wouldn’t attract attention.
correcthorsebatterystaple
deleted by creator