New Wave of Attacks Exploit Skype Support Team to Hijack Users’ Accounts

Discussion in 'malware problems & news' started by TheKid7, Apr 29, 2013.

Thread Status:
Not open for further replies.
  1. TheKid7

    TheKid7 Registered Member

    Joined:
    Jul 22, 2006
    Posts:
    3,469
    New Wave of Attacks Exploit Skype Support Team to Hijack Users’ Accounts:
    http://www.hotforsecurity.com/blog/...pport-team-to-hijack-users-accounts-6056.html
     
  2. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    I find the whole story far fetched.
     
  3. Techwiz

    Techwiz Registered Member

    Joined:
    Jan 5, 2012
    Posts:
    539
    Location:
    United States
    I'm not a Skype user myself, nor do I intend to install it to verify this article, but it would not surprise me one bit given account security/recovery practices demonstrated by companies in the past and even today. Users should always use unique account information across each website that they have an account with. I can't count the number of times I've had accounts breached in the past back before I took an interest in computers beyond general surfing. Social sites for e-mail, chatting, etc. seem to be the worse culprits.

    It should be pointed out that hackers have been exploiting common knowledge to gain access and manipulate companies for years. A good example of this Kevin Mitnick, a man that illegal broke into a number of phone company systems to steal equipment and have it delivered to his house. He social engineered his way by placing calls to numbers within the organizations and played the roll of an employee from different office or department. The responses to his questions allowed him to refine his approach until he was able to convince employees working for the company to help him along the process of place orders for equipment that they believed was paid for. By-passing the security of a company doesn't stop with brute forcing passwords. It's the employees within your organization that often undermine security, which is why spear-phishing has been so effective.
     
    Last edited: Apr 29, 2013
Loading...
Thread Status:
Not open for further replies.