« Crash Dump Analysis Patterns (Part 69b)
Expanded Job Advertisements »

Social Engineering Attack Defence: A Case Study

Sometimes I get cold phone calls (once it was from 012345678 number) and a guy asks me if I have a computer. I was always telling him that I’m a security professional and after that hanging up the phone. This morning I tried a different approach (SE - Social Engineer):

SE. We are Windows consulting services. Do you have a home computer?
Me. I’m sorry, we don’t have a computer.

SE. We can sell you the one. Are you interested?
Me. No, we are not. This is a temporary accommodation and we don’t need a computer.

SE. Sorry for bothering you.^x

- Dmitry Vostokov @ DumpAnalysis.org + TraceAnalysis.org

This entry was posted on Tuesday, April 26th, 2011 at 8:50 pm and is filed under Fun with Social Engineering, Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

3 Responses to “Social Engineering Attack Defence: A Case Study”

  1. Joe Green Says:
    April 27th, 2011 at 6:18 pm

    That’s a good answer, but I don’t get the social engineering attack. What did he expect you to say?

  2. Dmitry Vostokov Says:
    April 27th, 2011 at 8:24 pm

    I assume that if I said, yes, I have a home computer, the conversation would have degenerated into a SEA :-)

  3. Dmitry Vostokov Says:
    November 9th, 2012 at 10:34 pm

    There was a cold call today to sell me some sevices for my computer. I told that I don’t have a computer. A guy insisted on a laptop. I told that I don’t have a laptop. He couldn’t believe that and asked for family members. I told him he phoned a tent at a construction site. There was silence on the phone and after some time I said thanks and goodby. Next time I say its a tent at a battlefield.

Leave a Reply

You must be logged in to post a comment.