Tag: Social Engineering

How to Not Send Corporate Emails?

February 29, 2016 Malware, Security, Social Engineering 6 comments

On a daily basis, I’m looking for malicious emails. I ownÂ catch-all mailboxes that collect a huge amount of spam that I’m using to perform deeperÂ analysis: to discover new tactics used by attackers and new piece of malicious code. Basically, they are two categories of phishing campaigns: the one sent to

The Rough Life of Defenders VS. Attackers

July 28, 2015 Belgium, Security, Social Engineering 5 comments

Yesterday, It wasÂ the first time that I heard the expressionÂ “Social Engineering” in Belgian public media! If this topic came in the news, you can imagine that something weird (or juicy from a journalist perspective) happened. The Flemish administration had the good idea to test the resistance of their 15K officials

Mr Microsoft Support is Back!

March 10, 2014 Security, Social Engineering 3 comments

In a previous post, I explained how I was happy to have been targeted by Indian phishers who called me to report an issue with my Windows computer. Last Saturday they called back. This time, my VM was ready but I had no time for them. I asked if it

Hello Sir, This is the Microsoft Support Calling…

February 27, 2014 Security, Social Engineering 17 comments

You know what? I’m happy and proud to have received my first call from the “Microsoft Support“! When I came back at home, there was already three missed calls on my private line, all of them from a strange number (001453789410). A few minutes later, the phone started Â to ring

Bypassing Premium LinkedIn Restriction with Google

August 23, 2013 Security, Social Engineering, Social Network 3 comments

Social networks are wonderful sources of information when you need to collect data about a potential target. That’s the way humans work, just like you and me: we like to share, we like to show what we do, where we travel. In short… we exist! During some projects, it’s very

Fixing SET 5.0.3 & Metasploit 4.6.0

April 19, 2013 Pentesting, Security, Social Engineering, Software One comment

A quick post to share with you my feedback about an issue I faced after a SET (“Social Engineering Toolkit“) upgrade to the latest version (5.0.3). SET is a wonderful tool that you must master. Â I’m using SET on a EC2 instance because it does not interfere with my other

The Side Effect of Typo Errors

June 9, 2012 Social Engineering, Websites Leave a comment

Typographical errors (or ‘typo’ in short) are very common since the invention of printing press. It started with people inverting block letters in movable type. Still today, we can find plenty of them in books, newspapers or any other visual media, but also on the Internet. In classic(old) medias, this

Your Car Knows a Lot About You!

August 11, 2011 Forensics, Privacy, Security 3 comments

I got a new company car. W00t! After the basic welcome-tour of the different options, I went deeper and reviewed the on-board computer configuration options. Today, modern cars integrate multimedia interfaces to manage information from several sources: GPS coordinates (past as well as present) Phone books synchronized from phones over