Most Nerd-Its | Nerd Trends | Recent

  1. Beauty Can take all 26 letters in Why Women Dress Up and Get Cosmetic Surgery
  2. RE: Not that you care what I think, but... in Ten Silver Linings for Conservatives
  3. RE: God and Government by the book in A god's role in government should be?
  4. RE: God and Government by the book in A god's role in government should be?
  5. RE: The Pendulum Keeps Swinging in A Question of Morality
  6. RE: The milliHelen - metric unit of measurement in Calculated Beauty
  7. Not quite the same in Digital Camera Derived Watermarks
  8. RE: The Pendulum Keeps Swinging in A Question of Morality
  9. God and Government by the book in A god's role in government should be?
  10. RE: More to it than individual vs collective in A Question of Morality

What is OmniNerd?

Welcome! OmniNerd's content is generated by you, the reader. Through voting and moderation we strive to highlight the nerdiest of what's around and provide content that's a little more thought provoking than other sites.

Submit New Content

Voting Booth

How much will you spend on each immediate family member this Christmas?

View Results, All Polls
4 votes, 0 comments
4
Nerd-Its
+ -

Low Tech - High Stakes

Newspaper

current event by gnifyus on 31 May 2008, tagged as security, hacking, and crime

We're all familiar with movies such as "Mission Impossible" or "Oceans 11" which depict spectacular break-ins featuring some high-tech method of defeating the elaborate security systems used to protect the valuables. Though this makes for an entertaining movie, in reality, many times the easiest way into a supposedly secure area is by means of a low-tech solution. Johnny Long is a professional 'penetration tester' working for Computer Science Corporation. His task is to find weak points in a company's information security. One of his favorite examples involving low-tech hacking of a security system was in trying to steal data from an ultra secure building protected with proximity card readers. Knowing that by law, employees do not need to show identification to leave a building, he didn't bother attempting to bypass the card readers, instead he and an associate simply threaded a wet washcloth on a clothes-hanger through a small crack in an emergency exit, tripping the touch sensitive plate and allowing them total access to the building. Coffee or smoking breaks are another common means of gaining access to restricted buildings. Simply dressing for the part and making light conversation with the employees out on break usually allows him to just file in the door with the rest of them, no questions asked. Places that require secure operations are increasingly becoming aware that their weakest point of entry is through their employees whether it be data networks, physical access or just plain slips through conversation. As Jeff Moss, the organizer for cyber-security conferences Black Hat and Defcon observes, "There's a tendency in our industry to focus on the latest and most interesting attack," he says. "But Johnny is trying to show that the simple security problems that were spotted a long time ago haven't gone away, and the bad guys will use whatever's available."

Star This to Save in Your Profile Favorite