Uber’s hack shows the stubborn power of social engineering
![Hacker (STOCK)](https://cdn.vox-cdn.com/thumbor/gj5eqD5j62X-iwyrhDoUoB4JJQc=/3x0:1097x729/1310x873/cdn.vox-cdn.com/uploads/chorus_image/image/71377892/hacker-stock1_2040.0.jpg)
Like many other hacks, Uber’s major security breach started with a text message. Citing details provided by the alleged hacker, The New York Times reported that a fake text message tricked an Uber employee into revealing their password details, triggering a sequence of events that led to a large-scale compromise of the ridesharing company’s IT systems.
Even for a company with Uber’s resources, these kinds of social engineering threats are impossible to completely defend against. It doesn’t matter how good a firm’s password policies are, whether sensitive information is properly stored or encrypted, and even whether multi-factor authentication is used — there’s always a chance that a human employee will be fooled into letting the...
from The Verge - All Posts https://ift.tt/hdaZ1TM
Comments
Post a Comment