Risk
3/17/2005
12:30 PM
Commentary
Commentary
Commentary
50%
50%

Giving Aid To The Enemy

Cybercrooks don't need any extra help, but they're getting it from their victims. Look what happened at the Internal Revenue Service.

Cybercrooks don't need any extra help, but they're getting it from their victims. Look what happened at the Internal Revenue Service.More than one-third of IRS workers and their bosses freely gave up their computer logins to callers who identified themselves as computer technicians trying to fix a network problem. In reality, they were inspectors from the Office of the Inspector General for Tax Administration at the Treasury Department.

Auditors recently contacted 100 IRS employees, asking them to provide their network logins and temporarily changed their passwords. Thirty-five workers and managers gave them up. That's still better than the 71 IRS staffers who volunteered their passwords during a similar test four years ago.

According to an AP report, some agency employees said they weren't aware of the hacking technique and never suspected foul play. They just wanted to help a computer technician. A few workers were suspicious because they couldn't find the caller's name in the IRS global employ directory, but they surrendered their passwords anyway. Others wavered, but got a say-so from their bosses to cooperate.

Two days after the test, the IRS issued an E-mail alert about the hacking technique and commanded workers to notify security officials if they get such calls.

Now, if only those IRS employees can be as trusting with my tax return as they were with the faux technicians when they gave up their passwords.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Well, as you can see, we've been pwned.
Current Issue
E-Commerce Security: What Every Enterprise Needs to Know
The mainstream use of EMV smartcards in the US has experts predicting an increase in online fraud. Organizations will need to look at new tools and processes for building better breach detection and response capabilities.
Flash Poll
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-7445
Published: 2015-10-15
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated b...

CVE-2015-4948
Published: 2015-10-15
netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

CVE-2015-5660
Published: 2015-10-15
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.

CVE-2015-6003
Published: 2015-10-15
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.

CVE-2015-6333
Published: 2015-10-15
Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076.

Dark Reading Radio
Archived Dark Reading Radio
Join Dark Reading community editor Marilyn Cohodas in a thought-provoking discussion about the evolving role of the CISO.