Optimistic Paranoid
Well-known member
- Joined
- Jan 12, 2013
- Messages
- 4,534
- Reaction score
- 10
The NEW YORK POST reports that a pot-smoking teen-age high school student successfully hacked the CIA Director's personal AOL acoount. Did it take mad computer skills? Nah, just good old fashioned social engineering.
Here's how it's done:
1: After obtaining an address and phone number for CIA Director John Brennan from publicly available databases, the hacker said he called Verizon posing as a company technician working on a problem involving Brennan's phone line.
2: Using inside company lingo, the hacker claimed that a Verizon tool that provides technicians with client information wasn't working.
3: The hacker claims he tricked a Verizon tech support worker into revealing Brennan's account number and four digit PIN number.
4: The hacker then called Verizon's billing department, where - posing as Brennan - he duped a worker into providing the last four digits of Brennan's bank account number by claiming he was unsure if he or his wife had paid their bill.
5: Armed with that information, the hacker called AOL pretending to be Brennan and claiming he needed to change his password because his account had been hacked.
6: Although he was unable to answer Brennan's security question, the hacker used the CIA chief's home address, phone number and bank account information to convince AOL to reset the password.
It's that simple.
Oh, and on Brennan's non-government account, he found personal information and Social Security numbers for more than a dozen top American intelligence officials, as well as a government letter about the use of "harsh interrogation techniques" on terrorism suspects. He also found Brennan's 47 page application for Top Secret security clearance.
And people wonder why I'm paranoid . . .
Regards
John
Here's how it's done:
1: After obtaining an address and phone number for CIA Director John Brennan from publicly available databases, the hacker said he called Verizon posing as a company technician working on a problem involving Brennan's phone line.
2: Using inside company lingo, the hacker claimed that a Verizon tool that provides technicians with client information wasn't working.
3: The hacker claims he tricked a Verizon tech support worker into revealing Brennan's account number and four digit PIN number.
4: The hacker then called Verizon's billing department, where - posing as Brennan - he duped a worker into providing the last four digits of Brennan's bank account number by claiming he was unsure if he or his wife had paid their bill.
5: Armed with that information, the hacker called AOL pretending to be Brennan and claiming he needed to change his password because his account had been hacked.
6: Although he was unable to answer Brennan's security question, the hacker used the CIA chief's home address, phone number and bank account information to convince AOL to reset the password.
It's that simple.
Oh, and on Brennan's non-government account, he found personal information and Social Security numbers for more than a dozen top American intelligence officials, as well as a government letter about the use of "harsh interrogation techniques" on terrorism suspects. He also found Brennan's 47 page application for Top Secret security clearance.
And people wonder why I'm paranoid . . .
Regards
John
