Social Engineering Using USB Drives

Iphtashu Fitz writes "What's the easiest way to hack into the computer systems of a credit union? It turns out that all you need to do is copy a virus/trojan onto USB drives and scatter them around the front door of the credit union. This was how a recent security audit was performed at a credit union where the employees had actually been tipped off to the audit. Security experts collected 20 old USB thumb drives and filled them with images and other data along with a trojan that would collect sensitive information and e-mail it back to them. Early one morning they planted the thumb drives around the entrances to the credit union as well as other public places where the employees were known to congregate. In very little time 15 of the 20 USB drives were plugged into company computer systems and started e-mailing usernames, passwords, etc. back to the auditors."

Re:Pretty scary.

They work at a credit union, a literal gold mine of personal information that should be carefully guarded.

It's a literal gold mine? You're saying that they mine gold there. The employees are digging into the ground with picks and shovels in an attempt to retrieve gold. Is that correct?

Reminds Me

[DolomiteZipper]

Reminds me of a project a few of my friends and I did over spring break back in the early 90's. Only instead of USB drives we used floppy disks. Looks like they pretty musch just took our idea into the present day. Surprising they didn't give credit to the idea to us original pioneers. Hopefelly they will respond to our emails and give proper credit where its due.