Cybersecurity

30 readers

37 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Rules

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

founded 2 years ago

MODERATORS

shellsharks@fedia.io

tweedge@fedia.io

Seriously? WTF? (hear-me.social)

submitted 4 days ago by Jerry@hear-me.social to c/cybersecurity@fedia.io

6 comments fedilink hide all child comments

Seriously? WTF?

“Cognizant was not duped by any elaborate ploy or sophisticated hacking techniques,” according to a copy of the lawsuit reviewed by Reuters. “The cybercriminal just called the Cognizant Service Desk, asked for credentials to access Clorox’s network, and Cognizant handed the credentials right over.”

https://www.nbcnews.com/business/business-news/lawsuit-says-clorox-hackers-got-passwords-simply-asking-rcna220313

#CyberSecurity #Ransomware #Hacking #SocialEngineering

you are viewing a single comment's thread
view the rest of the comments

[–] MadMadBunny@lemmy.ca 8 points 3 days ago (1 children)

It’s that easy huh?

[–] Tar_alcaran@sh.itjust.works 10 points 3 days ago

It's not even "pretend to be the county password Inspector". It's literally just "hi, can I have access?"