Tales from the road: Think before you speak

Tales from the road: Think before you speak

I recently went for a meeting at a company’s office. This company had a few floors in a shared office building. Due to a large amount of black coffee being consumed during the lengthy meeting I needed to find the ladies room before departing. Thankfully there was one...
The Hustlers of Naples

The Hustlers of Naples

Social engineering is a fascinating and diverse attack vector because it exploits human nature and people are generally predictable in their responses. We focus on malicious social engineering, especially when it facilitates cyber attacks upon organisations. However...
Simone – A social media investigation

Simone – A social media investigation

Speaking around the world about social engineering one question comes up almost every time. Why is social engineering so successful?   A key success factor in a targeted attack is good research, knowing the target and how to manipulate them. I have been gathering...
Interview with DIGIT

Interview with DIGIT

Social engineering and social media risks Here’s a link to an interview with DIGIT who organise the excellent Scot-Secure event in Edinburgh (among many other things).It focuses on social engineering in the context of social media reconnaissance, manipulation...
Can I borrow your swipecard?

Can I borrow your swipecard?

This case involves an accountancy firm based in South East England.  The firm had just lost a big client and as a result had to make some cuts which included letting a few members of staff go.   Jamie had been one of these staff members.  He was disgruntled to...
Can I borrow your swipecard?

Stay calm and (don’t) pay the hackers

This social engineering case study highlights how attackers can use curiosity, urgency and fear to manipulate victims into breaking company protocols and get a finance employee to willingly transfer £152,000 into the attackers bank account.   Miranda worked in...