outbrain
Close  

Smooth talk a slick hacker tool

/ 07:34 PM August 10, 2011

LAS VEGAS – Hackers at DefCon have long understood that there is no patch for human stupidity.

Skills honed by software renegades at the renowned hacker gathering that ended Sunday included the art of talking workers into revealing information that can be used to crack into computer networks.

ADVERTISEMENT

A “Schmooze Strikes Back” contest challenged hackers to test their “social engineering” skills on companies such as Apple, Oracle, Symantec, and Walmart. The contest debuted at the annual DefCon gathering in Las Vegas last year.

“The results are worse than they were last year,” said Chris Hadnagy, a social engineering specialist running the contest.

FEATURED STORIES

“From what we found, we would own everyone on of these companies.”

Hackers were able to talk workers at various companies into disclosing anything from the versions of software used in networks to who provided cafeteria food service.

Knowing specifics about software in company computers lets hackers figure out weaknesses to exploit, and sharing operational information could enable someone intent on corporate espionage to sneak into facilities.

The most effective ruses involved calling companies and posing as a potential customer out to be reassured about the safety of doing business together, according to Hadnagy.

Pretending to be calling from another department in a company, or a remote technical support team, proved to be another effective tactic for hackers.

Retail operations were consistently harder targets, possibly because they are more accustomed to interacting with customers, according to Hadnagy.

“Women seemed to be more security conscious,” he said of the contest findings, which will be published in a report later this year.

ADVERTISEMENT

“We call back and get a guy on the phone and we get everything we want,” continued Hadnagy, who runs the social-engineer.org website.

TOPICS: Crime, Defcon, IT Internet, Psychology, US
Read Next
EDITORS' PICK
MOST READ
Don't miss out on the latest news and information.
View comments

Subscribe to INQUIRER PLUS to get access to The Philippine Daily Inquirer & other 70+ titles, share up to 5 gadgets, listen to the news, download as early as 4am & share articles on social media. Call 896 6000.

For feedback, complaints, or inquiries, contact us.


© Copyright 1997-2020 INQUIRER.net | All Rights Reserved

We use cookies to ensure you get the best experience on our website. By continuing, you are agreeing to our use of cookies. To find out more, please click this link.