The Ethical Hacker Network - Targetted attacks at CEOs

Latest Additions

Who's Online

EH-Net Donations

Google Ads

EH-Net News Feeds

Latest Additions

Book Recommendations

RoleReversal

Sr. Member

Offline

Posts: 469

Targetted attacks at CEOs

« on: April 15, 2008, 04:19:40 AM »

Guys,

ISC has a story about a new 'click-the-link' email scam with a twist. It appears to be targetted at company CEOs claiming they have been issued a subpoena to give evidence in court. (Story here)

These sort of attacks appear to be gaining in popularity. From my experience this could be a scary trend as CEOs (and other director type roles) are often the least technically savvy in an organisation, along with often the worst security and patch level. I can't help thinking these are targets are going to be successful, and likely becoming less of a rarity.

<Update>
Forgot to mention, as is often the case AV covereage is poor 3/32 on VirusTotal
</update>

Who fancies interrupting a round of golf to ask the top man not to click the pretty links? (me neither...)


« Last Edit: April 15, 2008, 04:21:32 AM by RoleReversal »	Logged

A little bit of sanity:
http://www.infosanity.co.uk

pseud0

Full Member

Offline

Posts: 142

Re: Targetted attacks at CEOs

« Reply #1 on: April 15, 2008, 09:05:57 AM »

We added this style of attack to our risk briefings for CISOs about 6 months ago. This is a version of the spear phishing attempts that have been gaining momentum, but the subpoena line is a new one to me. Good post.


	Logged

CISSP, CISM

sgt_mjc

Full Member

Offline

Posts: 158

Re: Targetted attacks at CEOs

« Reply #2 on: April 15, 2008, 09:54:12 AM »

Thanks for the heads up.


	Logged

Mike Conway
CompTia Security +
C|EH

Kev

Sr. Member

Offline

Posts: 348

Re: Targetted attacks at CEOs

« Reply #3 on: April 15, 2008, 07:13:21 PM »

Several years ago there was marketing research done by a direct mail company to determine which mail people were most likely to open first. The number one winner was a notice from the IRS that might look like an audit and the second place winner was mail from an attorney office that might look like a lawsuit. I can testify to the accuracy of this research when I have done social engineering. One time I actually sent an email so obviously a hoax just to prove a point from a law firm I called Dewey, Cheatum and Howe and it stilled worked, LOL! The officer of the company was rather embarrassed later on when I brought it to his attention.


	Logged

sgt_mjc

Full Member

Offline

Posts: 158

Re: Targetted attacks at CEOs

« Reply #4 on: April 17, 2008, 09:33:27 AM »

Kev,

You truly are the lowest form of life on Earth. lol I'll bet he felt like a hoarses @$$ afterwards. Great use of social engineering and it goes to prove where the weakest link in any security is, the end user.


	Logged

Mike Conway
CompTia Security +
C|EH

Pages: [1] Go Up

« previous next »

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.

Try CBT Nuggets Free!

Recent Forum Topics

Other : LZMA Decompression Help (1) by BillV
Programming : not static? (7) by RoNNie_13
Calendar Of Events : BOSS Conference 2009 (0) by don
Calendar Of Events : CSI SX 2009 (0) by don
Calendar Of Events : Security OPUS Spring 2009 (0) by don
Calendar Of Events : CanSecWest 2009 (0) by don
Calendar Of Events : Carolinacon 2009 (0) by don
Calendar Of Events : Black Hat USA 2009 (0) by don
Calendar Of Events : Black Hat Europe 2009 (0) by don
Calendar Of Events : Black Hat DC 2009 (0) by don
Calendar Of Events : Cyber Warfare 2009 (0) by don
Calendar Of Events : White Hat Ball 2009 (0) by don
Calendar Of Events : RSA Conference 2009 (0) by don
Calendar Of Events : SOURCE Boston 2009 (0) by don
Calendar Of Events : Notacon 6 (0) by don
Calendar Of Events : ShmooCon 2009 (0) by don
Calendar Of Events : SANS Pen Testing Summit 2009 (0) by don
Calendar Of Events : SANS 2009 (0) by don
Calendar Of Events : SANS Security West 2009 (0) by don
Calendar Of Events : SANS CDI 2008 (0) by don
Forensics : The Julie Amero Case: A Dangerous Farce (0) by don
Other : Early Details of Vista, Server 2008 SP2 Due in April (0) by don
Career Central : 7 Tips for Career Growth in Tight Times (0) by don
Other : Do we or Dont we... (7) by pseud0
Special Events : Pen Testing Perfect Storm Webcast Series: Part 2 - Teaser (6) by don
News from the Outside World : Would you trade your privacy for a smartphone? (5) by jason
Hardware : Key Duplication from Photos (5) by jason
Career Central : Confused about future (8) by Artful Dodger
Tools : Cain & Abel v4.9.24 Released (1) by RoleReversal
CEH - Certified Ethical Hacker : MSS from EC-Council? (13) by shednik
Book Reviews : Network Intrusion Alert (1) by don
Hardware : Lenovo Introduces Remote Disable Feature for Laptops (16) by jason
Wireless : Jamming by babycam (6) by jason
Other : What kind of lab, machines you have for your security testing? (6) by MadmanTM
Wireless : help wid wifi !!!! (1) by jason
Malware : Military Bans Removable Media (10) by ChrisG
Network Pen Testing : Metasploit Question (4) by ethicalhack3r
Other : SANS CDI (1) by jason
Hardware : Recommendations for IDS Hardware (1) by jason
News Items and General Discussion About EH-Net : Happy Turkey Day 2008 (5) by BillV

Support EH-Net by Buying all of your Amazon items using the search bar above. Try CBT Nuggets Free!

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.

Try CBT Nuggets Free!