Computer Security - Article from a few years ago

12-27-2007, 10:50 PM

I've been searching everywhere and I can't find it!

It was and article a few years ago, I think within the last 10 years,
from someone describing how he had been given a contract to test the
security of an organisation. The people who gave him the contract
thought he was going to try to hack in but instead he used social
engineering to get inside the building and visited a number of
computers, gaining id cards and passwords as he went. The usual thing,
except he was describing his whole process, who he talked to, what he
got out of them etc. I believe he actually got access to the computers
of the head of security and the IT section. One person actually
questioned him and he got past that person by owning up, saying he was
testing security and this staff had passed, whereupon the staff gave him
an extra useful step (I can't remember what, maybe access to the server
room or the managers office or something). I belive he left notes
behind? and took photos. The organisation wasn't named, I think mainly
out of shame, and the tester was not popular with management because he
used tactics they weren't expecting and he showed up all their flaws.

Anyone else know this article?

Thanks

jules

none

12-28-2007, 01:32 PM

"none" <""jules\"@(none)"> wrote

<< snipped >>

I didn't read that article I think, because it was not in my native
language.
But your story does remind me of a book : The art of deception from Kevin
Mitnick ( 2002 ).

chris

12-28-2007, 08:56 PM

I did wonder if it was Kevin but it was an article, not a book, and I
couldn't find it on his company website. It could just as easily have
been someone else so I thought I'd throw out a line here.

ta anyway

j

chris wrote:
> "none" <""jules\"@(none)"> wrote
>
> << snipped >>
>
> I didn't read that article I think, because it was not in my native
> language.
> But your story does remind me of a book : The art of deception from Kevin
> Mitnick ( 2002 ).
>
>
>
>

none

12-29-2007, 03:17 PM

none wrote:

> I've been searching everywhere and I can't find it!

See alt.urban.legends

Some Guy

12-29-2007, 07:38 PM

That's interesting. Why would it be an urban legend? Social engineering
is used by those wanting to get into buildings all the time. I've seen
how slack security is in several of my workplaces, I could see people
getting away with it very easy.

Some Guy wrote:
> none wrote:
>
>> I've been searching everywhere and I can't find it!
>
> See alt.urban.legends

none

12-29-2007, 08:38 PM

And the article isn't urban legend. I read it.

Some Guy wrote:
> none wrote:
>
>> I've been searching everywhere and I can't find it!
>
> See alt.urban.legends

none

12-30-2007, 09:32 AM

On Sun, 30 Dec 2007 07:38:31 +1100, none <""jules\"@(none)"> wrote:

>And the article isn't urban legend. I read it.

Probably not here.

Social engineering works though.
--
Jim Watt
http://www.gibnet.com

Jim Watt

12-30-2007, 07:46 PM

Ah. No, I didn't read it here. This is the first time I've been on this
newsgroup. I was just hoping someone into security would know about the
article but it doesn't look like it. Oh well.

Jim Watt wrote:
> On Sun, 30 Dec 2007 07:38:31 +1100, none <""jules\"@(none)"> wrote:
>
>> And the article isn't urban legend. I read it.
>
> Probably not here.
>
> Social engineering works though.
> --
> Jim Watt
> http://www.gibnet.com

none

12-30-2007, 08:54 PM

On Mon, 31 Dec 2007 06:46:27 +1100, none wrote:

> Ah. No, I didn't read it here. This is the first time I've been on this
> newsgroup. I was just hoping someone into security would know about the
> article but it doesn't look like it. Oh well.
>
> Jim Watt wrote:
>> On Sun, 30 Dec 2007 07:38:31 +1100, none <""jules\"@(none)"> wrote:
>>
>>> And the article isn't urban legend. I read it.
>>
>> Probably not here.
>>
>> Social engineering works though.
>> --
>> Jim Watt
>> http://www.gibnet.com

Well if you ever find the article then please post here.
I would be very interested in reading it myself.

--

Regards
Robert

Smile... it increases your face value!
Linux User #296285
http://counter.li.org

Robert

12-30-2007, 09:59 PM

Yeah ok, but I'm having such trouble that I'm doubting I will find it.

Robert wrote:

>
> Well if you ever find the article then please post here.
> I would be very interested in reading it myself.
>
>

none

12-28-2007, 08:56 PM	#3
none Posts: n/a	Re: Article from a few years ago I did wonder if it was Kevin but it was an article, not a book, and I couldn't find it on his company website. It could just as easily have been someone else so I thought I'd throw out a line here. ta anyway j chris wrote: > "none" <""jules\"@(none)"> wrote > > << snipped >> > > I didn't read that article I think, because it was not in my native > language. > But your story does remind me of a book : The art of deception from Kevin > Mitnick ( 2002 ). > > > > none

12-29-2007, 03:17 PM	#4
Some Guy Posts: n/a	Re: Article from a few years ago none wrote: > I've been searching everywhere and I can't find it! See alt.urban.legends Some Guy

12-29-2007, 07:38 PM	#5
none Posts: n/a	Re: Article from a few years ago That's interesting. Why would it be an urban legend? Social engineering is used by those wanting to get into buildings all the time. I've seen how slack security is in several of my workplaces, I could see people getting away with it very easy. Some Guy wrote: > none wrote: > >> I've been searching everywhere and I can't find it! > > See alt.urban.legends none

12-29-2007, 08:38 PM	#6
none Posts: n/a	Re: Article from a few years ago And the article isn't urban legend. I read it. Some Guy wrote: > none wrote: > >> I've been searching everywhere and I can't find it! > > See alt.urban.legends none

12-30-2007, 09:32 AM	#7
Jim Watt Posts: n/a	Re: Article from a few years ago On Sun, 30 Dec 2007 07:38:31 +1100, none <""jules\"@(none)"> wrote: >And the article isn't urban legend. I read it. Probably not here. Social engineering works though. -- Jim Watt http://www.gibnet.com Jim Watt

12-27-2007, 10:50 PM	#1
	Article from a few years ago I've been searching everywhere and I can't find it! It was and article a few years ago, I think within the last 10 years, from someone describing how he had been given a contract to test the security of an organisation. The people who gave him the contract thought he was going to try to hack in but instead he used social engineering to get inside the building and visited a number of computers, gaining id cards and passwords as he went. The usual thing, except he was describing his whole process, who he talked to, what he got out of them etc. I believe he actually got access to the computers of the head of security and the IT section. One person actually questioned him and he got past that person by owning up, saying he was testing security and this staff had passed, whereupon the staff gave him an extra useful step (I can't remember what, maybe access to the server room or the managers office or something). I belive he left notes behind? and took photos. The organisation wasn't named, I think mainly out of shame, and the tester was not popular with management because he used tactics they weren't expecting and he showed up all their flaws. Anyone else know this article? Thanks jules none

12-28-2007, 01:32 PM	#2
chris Posts: n/a	Re: Article from a few years ago "none" <""jules\"@(none)"> wrote << snipped >> I didn't read that article I think, because it was not in my native language. But your story does remind me of a book : The art of deception from Kevin Mitnick ( 2002 ). chris

12-30-2007, 07:46 PM	#8
none Posts: n/a	Re: Article from a few years ago Ah. No, I didn't read it here. This is the first time I've been on this newsgroup. I was just hoping someone into security would know about the article but it doesn't look like it. Oh well. Jim Watt wrote: > On Sun, 30 Dec 2007 07:38:31 +1100, none <""jules\"@(none)"> wrote: > >> And the article isn't urban legend. I read it. > > Probably not here. > > Social engineering works though. > -- > Jim Watt > http://www.gibnet.com none

12-30-2007, 08:54 PM	#9
Robert Posts: n/a	Re: Article from a few years ago On Mon, 31 Dec 2007 06:46:27 +1100, none wrote: > Ah. No, I didn't read it here. This is the first time I've been on this > newsgroup. I was just hoping someone into security would know about the > article but it doesn't look like it. Oh well. > > Jim Watt wrote: >> On Sun, 30 Dec 2007 07:38:31 +1100, none <""jules\"@(none)"> wrote: >> >>> And the article isn't urban legend. I read it. >> >> Probably not here. >> >> Social engineering works though. >> -- >> Jim Watt >> http://www.gibnet.com Well if you ever find the article then please post here. I would be very interested in reading it myself. -- Regards Robert Smile... it increases your face value! Linux User #296285 http://counter.li.org Robert

12-30-2007, 09:59 PM	#10
none Posts: n/a	Re: Article from a few years ago Yeah ok, but I'm having such trouble that I'm doubting I will find it. Robert wrote: > > Well if you ever find the article then please post here. > I would be very interested in reading it myself. > > none

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Re: TechNet Article	Kerry Brown	MCTS	1	03-31-2007 07:56 PM
Bush Voted Year's Top Film Villian	Crankkkie	DVD Video	119	11-05-2004 05:45 AM
Re: questioning certs article	Frederic	A+ Certification	0	06-23-2004 02:58 AM
Question About Article On Movie Heat??	Gordon Gekko IDCC on the Nasdaq	DVD Video	5	05-30-2004 05:08 AM
NYTimes article: When Bad DVD's Happen to Great Films	robert gray	DVD Video	37	11-14-2003 12:39 AM