It Is Important To Have Ethics In Social Engineering

It Is Important To Have Ethics In Social Engineering

Over the years of being a professional social engineer (SE), I have been asked questions like, “Are you really testing your clients if you don’t use EVERY method possible?” Or, “You are acting like the bad guys, why do you need to have rules?” And even, “I don’t need to ... Read More
Free Yourself from FUD

Free Yourself from FUD

Fear, uncertainty, and doubt (FUD) hold powerful influence over humans. Fear itself is a deeply powerful emotion that causes specific reactions in the brain, and uncertainty and doubt are feelings that manipulate your actions, your employees’ actions, and your business operations. Examples of FUD have a long-standing history in the ... Read More
What Do You Know About Tweedle Beetles?

What Do You Know About Tweedle Beetles?

For that past few years, thanks to having an amazing little addition to my family, I have been reading a lot of Dr. Seuss books, and one of my favorites is “Fox in Socks.” If you haven’t read it to your kids, you should. Well… you can try. If you ... Read More
Healthcare: Security in Crisis?

Healthcare: Security in Crisis?

The other day my wife went to the doctor, and a few weeks before that we took our son to the dentist. We had to fill out all the paperwork and give them all the usual PII, including name, address, phone number, alternate contacts, SS#, DOB, driver’s license, insurance info, ... Read More
Vendors, Educating, and Social Media Marketing

Vendors, Educating, and Social Media Marketing

What do professionals inadvertently disclose about the operations security (OPSEC) of their organizations and themselves while giving advice? Becoming a known educator and voice in your area of expertise is effectively done by drawing connections between yourself, your knowledge base, and your audience. Often in Information Security (InfoSec), this involves ... Read More
A Nonverbal Analysis of Mark Zuckerberg’s Congress Testimony

A Nonverbal Analysis of Mark Zuckerberg’s Congress Testimony

Most of us are familiar with the fact that Mark Zuckerberg, CEO of Facebook, is testifying in front of Congress this week regarding Facebook’s mishandling of user data. This hearing is being watched around the globe by corporations, governments, and users alike. Like many of you, I am watching much ... Read More
Your Phone’s Betrayal

Your Phone’s Betrayal

Look at your phone and ask yourself, do you rely on that tiny device for your business dealings? Your important family notifications? Your link to the outside world? If the answer to any of these is “yes” then it is critical you be aware of the rise in phone porting ... Read More
When Training Does Not Equal Security

When Training Does Not Equal Security

For many organizations computer security training does not appear to impact the user population in a manner that protects the company assets and confidential data as intended. It is a tough balance to deliver enough information to explain the organization’s security stance, and have it succinct enough to be retained ... Read More
Are You Being Vigilant Against a Dumpster Diving Attack?

Are You Being Vigilant Against a Dumpster Diving Attack?

When one thinks of Open Source Intelligence (OSINT) things like Facebook, court records, and Google-fu typically come to mind. However, a skilled reconnoiter will also utilize the contents of your trash when looking for information. Fraudsters can use information found in a dumpster to find vendor lists, quotes, customer information, ... Read More
Stay Safe in the Tax Season after Equifax

Stay Safe in the Tax Season after Equifax

‘Tis the season for tax fraud and identity theft via tax-related scams. Tax fraud has been on the rise for years, and nearly 1 out of every 2 Americans are at increased risk for tax fraud due to the Equifax breach. 145 million Americans had their personally identifiable information (PII) ... Read More
Loading...