Paris riots, Social Proof and Corporate Security
I was recently hired to speak at an event in Paris. I love the city however this particular visit was during an unfortunate time. Paris […]
The Hustlers of Naples
Social engineering is a fascinating and diverse attack vector because it exploits human nature and people are generally predictable in their responses. We focus on […]
Simone – A Social Media Investigation
Speaking around the world about social engineering one question comes up almost every time. Why is social engineering so successful? A key success factor in […]
Interview with DIGIT
Social engineering and social media risks Here’s a link to an interview with DIGIT who organise the excellent Scot-Secure event in Edinburgh (among many other […]
Reconnaissance for Social Engineering: Tales from the Road
Social engineering reconaissance When it comes to reconnaissance and open source intelligence, research often seems like a digital battle. Using endless pieces of software, sites […]
Webinar: Think like a hacker
We recently did a webinar with APMG on why you need to think like a hacker. They have uploaded it here: https://apmg-international.com/events/why-you-need-start-thinking-hacker
Can I borrow your swipecard?
This case involves an accountancy firm based in South East England. The firm had just lost a big client and as a result had to make some cuts which included letting a few members of staff go.
Stay calm and (don’t) pay the hackers
This social engineering case study highlights how attackers can use curiosity, urgency and fear to manipulate victims into breaking company protocols and get a finance employee to willingly transfer £152,000 into the attackers bank account.
The enthusiastic law student
This case involves a law firm based in the south of England. The firm was of a reasonable size and, like most law firms, held a lot of very sensitive customer data.