@Jerry@hear-me.social @debby@hear-me.social Kevin Mitnick's methods of social engineering still hold true
this post was submitted on 23 Jul 2025
24 points (100.0% liked)
Cybersecurity
30 readers
33 users here now
An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!
Rules
Community Rules
- Be kind
- Limit promotional activities
- Non-cybersecurity posts should be redirected to other communities within infosec.pub.
founded 2 years ago
MODERATORS
The approach to limit complexity and scope in jobs to lower the educational or skill requirements (and transparently by companies resulting compensation) guarantees siloed work. Not only to people have a limited understanding of the work they're doing and how it connects but they have NO idea what other people are doing, or why--and that's even within the same department or function.
It’s that easy huh?
It's not even "pretend to be the county password Inspector". It's literally just "hi, can I have access?"
You know when you accepted the risk, boss?
This is the risk.
@Jerry@hear-me.social Even if a door is unbreakable, the walls might not be.
Surprisingly, even the best security measures can be easily overcome by simple social engineering. This case should remind us of the importance of including everyone in a security strategy. It is crucial to consistently teach and explain to all employees why security is important and how to implement best practices at every level of a company. Unfortunately, many companies, like Clorox, fail to educate all employees, leaving themselves wide open to social engineering attacks.