Phone-Number-Found/EN
Version vom 4. Juli 2018, 10:10 Uhr von Siwebot (Diskussion | Beiträge) (Die Seite wurde neu angelegt: „=== <span style="color:#c31622">{{:{{PAGENAME}}/Headline}}<span>=== {| class="wikitable" |'''Check'''|| {{:{{PAGENAME}}/Negative}} |- |'''Beschreibung'''…“)
Check for readable phone numbers
| Check | Phone number found. |
| Beschreibung | A phone number was found. An attacker could use this information to manipulate employees and to gain information that should remain secret. |
| Hintergrund | Phone numbers are usually made public to allow customers to communicate directly with employees. However, if the customer is an attacker who uses social manipulation, this can lead to confidential information being revealed. |
| Auswirkung | social Engineering attacks are often carried out by phone. This type of attack is fast and efficient because there is often no awareness of the methods of social engineers. For example, in 2015 an American student managed to access the private email account of a CIA director by manipulating the employees at an internet service provider, who then revealed sensitive information about the CIA director to him. |
| Lösung / Tipps | The published phone numbers should be limited to those which are actually intended for communication with customers. Also, an employee who uses the phone should be aware of the dangers of social engineering attacks and should know the methods of social engineers. |
[[Category: ]]
