Was this always happening in this big scope? Leaks of games, data that is stolen, all these breaches in big companies. Feels like I see this everyday
Was this always happening in this big scope? Leaks of games, data that is stolen, all these breaches in big companies. Feels like I see this everyday
Security people can help, but often can’t. The issue is with software design, and most companies struggle to properly fund that.
In addition, I don’t have data to back it up, but I feel like social engineering plays at least a part in many if not most of the big hacks we see happening
Social Engineering is absolutely the lions share of how things get done. Remember: Never work the system if you can work the people running it.
This is true of hacking, yes, but also just navigating all the bullshit bureaucracy that surrounds modern life. For hackers, cracking good passwords is almost impossible (this is to say, it is possible but it takes… a very long time. Longer than they have.) So they rely on people having terrible password discipline- they’re using phishing schemes to get passwords and guess similar passwords at other places.
They’re also using social engineering to convince your cell phone company they’re you… at which point the cell phone CS rep becomes extremely helpful in bypassing any security that normally routes through your phone. (Like, say SMS 2fa. Or phone call 2fa,)
Layer 8 is the hardest to secure.
Yeah, it’s a struggle with there are a dozen zero days a year for multiple brands/applications. I have at least 4 people always doing some sort of upgrade or patch being reported by infosec.