AGL 40.01 Decreased By ▼ -0.20 (-0.5%)
AIRLINK 127.00 Decreased By ▼ -0.64 (-0.5%)
BOP 6.69 Increased By ▲ 0.02 (0.3%)
CNERGY 4.51 Increased By ▲ 0.06 (1.35%)
DCL 8.64 Decreased By ▼ -0.09 (-1.03%)
DFML 41.04 Decreased By ▼ -0.12 (-0.29%)
DGKC 85.61 Decreased By ▼ -0.50 (-0.58%)
FCCL 33.11 Increased By ▲ 0.55 (1.69%)
FFBL 66.10 Increased By ▲ 1.72 (2.67%)
FFL 11.55 Decreased By ▼ -0.06 (-0.52%)
HUBC 111.11 Decreased By ▼ -1.35 (-1.2%)
HUMNL 14.82 Increased By ▲ 0.01 (0.07%)
KEL 5.17 Increased By ▲ 0.13 (2.58%)
KOSM 7.66 Increased By ▲ 0.30 (4.08%)
MLCF 40.21 Decreased By ▼ -0.12 (-0.3%)
NBP 60.51 Decreased By ▼ -0.57 (-0.93%)
OGDC 194.10 Decreased By ▼ -0.08 (-0.04%)
PAEL 26.72 Decreased By ▼ -0.19 (-0.71%)
PIBTL 7.37 Increased By ▲ 0.09 (1.24%)
PPL 153.79 Increased By ▲ 1.11 (0.73%)
PRL 26.21 Decreased By ▼ -0.01 (-0.04%)
PTC 17.18 Increased By ▲ 1.04 (6.44%)
SEARL 85.60 Decreased By ▼ -0.10 (-0.12%)
TELE 7.57 Decreased By ▼ -0.10 (-1.3%)
TOMCL 34.39 Decreased By ▼ -2.08 (-5.7%)
TPLP 8.82 Increased By ▲ 0.03 (0.34%)
TREET 16.82 Decreased By ▼ -0.02 (-0.12%)
TRG 62.55 Decreased By ▼ -0.19 (-0.3%)
UNITY 27.29 Decreased By ▼ -0.91 (-3.23%)
WTL 1.30 Decreased By ▼ -0.04 (-2.99%)
BR100 10,112 Increased By 26 (0.26%)
BR30 31,188 Increased By 17.5 (0.06%)
KSE100 94,996 Increased By 232 (0.24%)
KSE30 29,481 Increased By 71 (0.24%)

Hackers at DefCon have long understood that there is no patch for human stupidity. Skills honed by software renegades at the renowned hacker gathering that ended Sunday included the art of talking workers into revealing information that can be used to crack into computer networks.
A "Schmooze Strikes Back" contest challenged hackers to test their "social engineering" skills on companies such as Apple, Oracle, Symantec, and Walmart. The contest debuted at the annual DefCon gathering in Las Vegas last year.
"The results are worse than they were last year," said Chris Hadnagy, a social engineering specialist running the contest.
"From what we found, we would own everyone on of these companies." Hackers were able to talk workers at various companies into disclosing anything from the versions of software used in networks to who provided cafeteria food service.
Knowing specifics about software in company computers lets hackers figure out weaknesses to exploit, and sharing operational information could enable someone intent on corporate espionage to sneak into facilities.
The most effective ruses involved calling companies and posing as a potential customer out to be reassured about the safety of doing business together, according to Hadnagy.
Pretending to be calling from another department in a company, or a remote technical support team, proved to be another effective tactic for hackers. Retail operations were consistently harder targets, possibly because they are more accustomed to interacting with customers, according to Hadnagy.
"Women seemed to be more security conscious," he said of the contest findings, which will be published in a report later this year. "We call back and get a guy on the phone and we get everything we want," continued Hadnagy, who runs the social-engineer.org website.

Copyright Agence France-Presse, 2011

Comments

Comments are closed.