There is no doubt, now warning about 'phishing'. Phishing is designed to steal personal information via fake websites or fake "official" communications and to provide information through web forms. Many tools are provided to protect users from phishing. Phishing is a form of somewhat passive social engineering. Hewlett Packard 's recent scandal brought a more sophisticated form of identity spoofing to public consciousness through social engineering: Pretex.
According to the Federal Trade Commission, Pretex is an act of subjecting your personal information to false deceit. The pre-tester sells your information to those who use your information to get credit with your name, steal assets, investigate, and appeal. That information includes your social security number (SSN), phone record, bank and credit card account number.
Pretex obtains personal information using various methods. For example, the pretexter calls the research company, questions him and asks several questions. If the protector has the necessary information, he uses it to call the financial institution.
He is pretending to be someone with access to you or your account. He may have forgotten his check book and may claim that he needs information about his account.
In this way, the pretector can retrieve personal information about you, such as your SSN, bank and credit card account number, your credit report information. Pretexting is the key to theft of personal information, and it causes credit card fraud, bank fraud, loan fraud, communication fraud (unauthorized opening of telephone directory).
However, Pretex is alive and a community of private gum shows will work as well. A network of creative fraudsters collecting telephone records and other personal data is thriving. Some of its customers are major banks and insurance companies. Pretexting has often been chosen as an enterprise research tool.
The most famous example of this exercise that has recently garnered attention is the drama produced at Hewlett Packard.In Hewlett Packard the chairman of the Board and other HP celebrities are responsible for investigating the causes of leaks from the board I hired. Investigators are trying to obtain telephone records of suspected directors and journalists who have written stories based on the links.
Computer hackers call the use of the assumed identity "social engineering". It is an attractive title for theft, but in fact, this kind of act was in the news that preferred HP failure. Presidential candidate Wesley Clark purchased a mobile phone record by a blogger, and the blogger became a major political story. HP's story responds to the investigation by the California State Attorney General's Office and states that there are currently six "major" pretexting cases under investigation, all of which are essentially companies.
In submission to the Security Exchange Committee on this issue, "(HP Board of Directors) Committee is illegal (except for financial institutions) where pretexting is not commonly used at the time of the survey. .. "
The Federal Trade Commission website section on this issue is as follows: "Pretex is an act of misdirecting your personal information by mistake, investigating your assets, making a lawsuit can.
The HP investigator is currently prosecuting. It would be interesting that members of the board of directors and lawyers have found a way "generally not illegal."
EmoticonEmoticon