https://community.isc2.org/t5/Industry-News/Incremental-social-engineering-attack/m-p/22201#M2753 <P>&nbsp;</P><P>This brings to mind something that occurred in 2017, the other way around. While in KSA, I received an email from a bank with which I had an account in my home country --- India --- thanking me for visiting the branch to meet the new manager the previous day.</P><P>&nbsp;</P><P>Far from being out of the area the branch is located in, I wasn't even in country at the time!</P><P>&nbsp;</P><P>After ensuring that the sender address was indeed that of the bank, I contacted them to alert them to this, and asked for an investigation &amp; explanation. When they responded stating that it was due to a new staff member sending out the email erroneously, I made a complaint on the site, but decided to let it pass after they called me &amp; apologized.</P><P>&nbsp;</P><P>However, that wasn't the end of it --- shortly after, I received another similar email, followed by the same explanation: employee error! <A href="https://en.wikipedia.org/wiki/ICICI_Bank" target="_blank" rel="noopener">This is a major bank in India</A>, so I was dismayed that something like this could happen. (I closed my account after this)</P><P>&nbsp;</P><P>Had they claimed that&nbsp; they were gauging customer awareness, I might have actually appreciated it...&nbsp; <img id="manwink" class="emoticon emoticon-manwink" src="https://community.isc2.org/i/smilies/16x16_man-wink.png" alt="Man Wink" title="Man Wink" /></P><P>&nbsp;</P><P>&nbsp;</P> Sat, 11 May 2019 02:22:26 GMT Shannon 2019-05-11T02:22:26Z https://community.isc2.org/t5/Industry-News/Incremental-social-engineering-attack/m-p/22105#M2733 <P>OK, here's a weird one.</P><P>&nbsp;</P><P>Attacker calls up customer service and "corrects" a single character in the spelling of the account name.&nbsp; Then does it again.&nbsp; And again ... until finally the account is now in the attacker's name ...</P><P>&nbsp;</P><P>Now how would you train people to detect or be on guard against that?</P> Wed, 08 May 2019 18:46:34 GMT https://community.isc2.org/t5/Industry-News/Incremental-social-engineering-attack/m-p/22105#M2733 rslade 2019-05-08T18:46:34Z https://community.isc2.org/t5/Industry-News/Incremental-social-engineering-attack/m-p/22114#M2735 <P>By having a system that does not depend solely on the spidey-sense of the front line personnel, such as:</P><P>&nbsp;</P><OL><LI>A validation system that keeps the attacker away from my account until they have proven something.</LI><LI>A CRM (Customer Relationship Manager) that makes the most recent changes to an account visible to the phone jockey.</LI><LI>A fraud unit that watches the frequency of events (charges, calls, changes, atypical balances, etc.) to a given account.</LI><LI>A feedback system, whereby I receive alerts regarding changes to my account.</LI></OL><P>&nbsp;</P><P>&nbsp;</P> Wed, 08 May 2019 20:18:39 GMT https://community.isc2.org/t5/Industry-News/Incremental-social-engineering-attack/m-p/22114#M2735 denbesten 2019-05-08T20:18:39Z https://community.isc2.org/t5/Industry-News/Incremental-social-engineering-attack/m-p/22201#M2753 <P>&nbsp;</P><P>This brings to mind something that occurred in 2017, the other way around. While in KSA, I received an email from a bank with which I had an account in my home country --- India --- thanking me for visiting the branch to meet the new manager the previous day.</P><P>&nbsp;</P><P>Far from being out of the area the branch is located in, I wasn't even in country at the time!</P><P>&nbsp;</P><P>After ensuring that the sender address was indeed that of the bank, I contacted them to alert them to this, and asked for an investigation &amp; explanation. When they responded stating that it was due to a new staff member sending out the email erroneously, I made a complaint on the site, but decided to let it pass after they called me &amp; apologized.</P><P>&nbsp;</P><P>However, that wasn't the end of it --- shortly after, I received another similar email, followed by the same explanation: employee error! <A href="https://en.wikipedia.org/wiki/ICICI_Bank" target="_blank" rel="noopener">This is a major bank in India</A>, so I was dismayed that something like this could happen. (I closed my account after this)</P><P>&nbsp;</P><P>Had they claimed that&nbsp; they were gauging customer awareness, I might have actually appreciated it...&nbsp; <img id="manwink" class="emoticon emoticon-manwink" src="https://community.isc2.org/i/smilies/16x16_man-wink.png" alt="Man Wink" title="Man Wink" /></P><P>&nbsp;</P><P>&nbsp;</P> Sat, 11 May 2019 02:22:26 GMT https://community.isc2.org/t5/Industry-News/Incremental-social-engineering-attack/m-p/22201#M2753 Shannon 2019-05-11T02:22:26Z https://community.isc2.org/t5/Industry-News/Incremental-social-engineering-attack/m-p/22229#M2757 <P>Interesting study:&nbsp;</P><P>&nbsp;</P><P><A href="https://www.csoonline.com/article/2125176/social-engineering-stories.html" target="_blank">https://www.csoonline.com/article/2125176/social-engineering-stories.html</A></P><P>&nbsp;</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_cautim</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Mon, 13 May 2019 06:32:08 GMT https://community.isc2.org/t5/Industry-News/Incremental-social-engineering-attack/m-p/22229#M2757 Caute_cautim 2019-05-13T06:32:08Z