Live Hacking demonstration

Closed Thread
Thread Tools
  #1  
Old 10-20-2021, 10:48 AM
CoachKandSportsguy CoachKandSportsguy is offline
Soaring Eagle member
Join Date: Jan 2019
Location: Marsh Bend
Posts: 2,450
Thanks: 598
Thanked 1,857 Times in 894 Posts
Default Live Hacking demonstration

I just participated in a live web meeting with the author of this book
https://www.amazon.com/Social-Engine.../dp/111943338X

He went through the four current vectors of hacking
phishing -> by email, old technology
SMishing -> by text message
Vishing -> by voice phone call spoofing
Impersonation -> dressing up and playing the part.

First, he claimed to have sent out over 91 M phishing emails in his hacking career
He recorded one of his live demonstations on unsuspecting targets, where he planted a remote access back door into a client's computer with the client on the phone.

His only recommendation is to use a cloud based password manager, with two factor authentication. that will save you when you are in a hurry, stressed, and forget to ignore the security rules you have in place. . . and the vault can be linked across multiple platforms. . . keepass, 1password are best from a researched point of view.

most SMishing text will take you to a fake webpage where you enter your information which the thief wants to harvest, and then when you hit enter, it takes you to the real page, as if nothing happened, other than you gave the hackers your information.

The optimal password is long, such as a sentence, you can easily remember, including capitals and numbers and special characters . . his sample was "On Oct 20 i gave a presentation to SECO Electric Company!"

Also, saving a password file in the icloud or google cloud is also not secure, as the recent case just settled in Tampa. . if your account info is phished, same with paris hilton, who used real answers to security questions, got hacked.

Man accused of hacking, selling login credentials of Tampa Bay residents, others

good luck

IT guy
  #2  
Old 12-01-2021, 04:55 PM
Jimbob the Newbie Jimbob the Newbie is offline
Junior Member
Join Date: Feb 2018
Posts: 19
Thanks: 3
Thanked 23 Times in 9 Posts
Default

Another thing to keep in mind: the Cloud is not, in fact, in a cloud, but is a large array of computers in somebody's large room. Maybe a little more secure than old networking arrays, but still vulnerable.
__________________
If I had to do it all over, I'd do it all over you.
  #3  
Old 12-01-2021, 05:35 PM
Bjeanj Bjeanj is offline
Soaring Eagle member
Join Date: Jan 2015
Location: Santiago
Posts: 2,118
Thanks: 113
Thanked 1,465 Times in 545 Posts
Default

Very interesting. Thanks!
__________________
Teach your daughter how to shoot, because a restraining order is just a piece of paper.
  #4  
Old 12-01-2021, 10:23 PM
manaboutown manaboutown is offline
Sage
Join Date: Aug 2009
Location: NJ, NM, SC, PA, DC, MD, VA, NY, CA, ID and finally FL.
Posts: 7,379
Thanks: 12,798
Thanked 4,573 Times in 1,749 Posts
Default

Nightmare
__________________
"No one is more hated than he who speaks the truth." Plato

“To argue with a person who has renounced the use of reason is like administering medicine to the dead.” Thomas Paine
  #5  
Old 12-02-2021, 05:19 AM
Stu from NYC Stu from NYC is offline
Sage
Join Date: Feb 2020
Posts: 12,438
Thanks: 1,161
Thanked 13,939 Times in 5,278 Posts
Default

Hacking gets worse and worse
  #6  
Old 12-23-2021, 02:22 PM
Topspinmo's Avatar
Topspinmo Topspinmo is offline
Sage
Join Date: Dec 2012
Location: Somewhere over the rainbow
Posts: 12,167
Thanks: 6,271
Thanked 4,845 Times in 2,404 Posts
Default

Quote:
Originally Posted by CoachKandSportsguy View Post
I just participated in a live web meeting with the author of this book
https://www.amazon.com/Social-Engine.../dp/111943338X

He went through the four current vectors of hacking
phishing -> by email, old technology
SMishing -> by text message
Vishing -> by voice phone call spoofing
Impersonation -> dressing up and playing the part.

First, he claimed to have sent out over 91 M phishing emails in his hacking career
He recorded one of his live demonstations on unsuspecting targets, where he planted a remote access back door into a client's computer with the client on the phone.

His only recommendation is to use a cloud based password manager, with two factor authentication. that will save you when you are in a hurry, stressed, and forget to ignore the security rules you have in place. . . and the vault can be linked across multiple platforms. . . keepass, 1password are best from a researched point of view.

most SMishing text will take you to a fake webpage where you enter your information which the thief wants to harvest, and then when you hit enter, it takes you to the real page, as if nothing happened, other than you gave the hackers your information.

The optimal password is long, such as a sentence, you can easily remember, including capitals and numbers and special characters . . his sample was "On Oct 20 i gave a presentation to SECO Electric Company!"

Also, saving a password file in the icloud or google cloud is also not secure, as the recent case just settled in Tampa. . if your account info is phished, same with paris hilton, who used real answers to security questions, got hacked.

Man accused of hacking, selling login credentials of Tampa Bay residents, others

good luck

IT guy

Why isn’t the guy in jail. I thought scam runners was illegal? I would think there would be no status of limitations that?
  #7  
Old 12-23-2021, 04:24 PM
twoplanekid's Avatar
twoplanekid twoplanekid is offline
Platinum member
Join Date: Oct 2014
Location: born Urbana,Il lived in Urbana Ohio for 65 years a house in Lake Deaton
Posts: 1,977
Thanks: 6
Thanked 683 Times in 280 Posts
Default

I am so glad to be retired as the name of my computer store for thirty years was THE HACKERY. A long time ago a hacker was a person who had a lot of knowledge about computers which was positive. Now, my old store and I would probably be under 24hr surveillance by many government agencies.
  #8  
Old 12-23-2021, 05:20 PM
Malsua Malsua is offline
Veteran member
Join Date: Jun 2019
Posts: 683
Thanks: 46
Thanked 910 Times in 329 Posts
Default

Quote:
Originally Posted by Jimbob the Newbie View Post
Another thing to keep in mind: the Cloud is not, in fact, in a cloud, but is a large array of computers in somebody's large room. Maybe a little more secure than old networking arrays, but still vulnerable.

I like to make it more simple than that.

The cloud is simply a computer that someone else owns and has full access to.
  #9  
Old 12-23-2021, 05:28 PM
retiredguy123 retiredguy123 is offline
Sage
Join Date: Feb 2016
Posts: 13,953
Thanks: 2,275
Thanked 13,420 Times in 5,110 Posts
Default

Quote:
Originally Posted by Malsua View Post
I like to make it more simple than that.

The cloud is simply a computer that someone else owns and has full access to.
Still better than storing it in a real cloud. When it rained, you would be screwed.
  #10  
Old 12-23-2021, 06:27 PM
Malsua Malsua is offline
Veteran member
Join Date: Jun 2019
Posts: 683
Thanks: 46
Thanked 910 Times in 329 Posts
Default

Quote:
Originally Posted by retiredguy123 View Post
Still better than storing it in a real cloud. When it rained, you would be screwed.
Then there's that pesky problem of keeping it suspended. I suppose helium or hydrogen balloons, but connectivity gets to be a problem.

Not only that, having been in a cloud before myself, it really is not a great environment for electronics. It's cold, clammy and humidity is very high.
  #11  
Old 12-23-2021, 06:46 PM
tophcfa's Avatar
tophcfa tophcfa is offline
Sage
Join Date: Feb 2015
Location: Wherever I happen to be.
Posts: 5,983
Thanks: 2,822
Thanked 8,933 Times in 2,703 Posts
Default

Scary stuff. I wish law enforcement would allocate significant resources toward identifying those that commit cyber theft and prosecute them to the fullest extent allowable. The laws should also be updated to treat cyber theft criminals more severely than those who commit traditional crimes. I would much rather have someone break into our house and try to steal our stuff than have some faceless and spineless wimp try to steal our hard earned money through the World Wide Web. At least if they break into our house they have the stones to try to physically go through me rather than hide behind a keyboard. Whatever happened to the good old days when people had a strong work ethic and were proud to put in a good days work to legally EARN their money?
Closed Thread

Tags
hacking, password, live, real, cloud

Thread Tools

You are viewing a new design of the TOTV site. Click here to revert to the old version.

All times are GMT -5. The time now is 04:43 AM.