ABC reports about a worrying scam involving phone number porting. The attacker finds the phone number, name, and date of birth, and other easy-to-find information about a first victim and uses that information to port their number to a new service under control of the attacker. This enables them to access the victim's Facebook account, which is used in a social engineering attack against the victim's friends, who become new victims when they hand over their banking details, which are then used to transfer money and make purchases.
This attack obviously works better with the large amount of personal information people are putting on social networks. But how well would this kind of thing work against the average Soylentil?
(Score: 2) by Snotnose on Friday January 20 2017, @08:09PM
First, no FB account. Second, I'm paranoid and don't give out personal info easily. Third, why would I tell a friend any banking information past what bank I use?
When the dust settled America realized it was saved by a porn star.
(Score: 0) by Anonymous Coward on Friday January 20 2017, @09:00PM
I don't have a bank account to pilfer :)
Works better if you have a cash based business and few bills requiring mail-in payments rather than once or twice a year in-person payments though!
(Score: 2) by Runaway1956 on Saturday January 21 2017, @01:16AM
^this
Seriously, why WOULD you give banking details to your friends or acquaintances? I just can't imagine doing so. If - and I repeat IF - it ever made any sense to tell someone some detail or another, my online response to that request would be, "I'll see you tomorrow, and we can discuss it then." Posting it to Facefook or whatever is beyond stupid.