Naoki Hiroshima recently lost a coveted Twitter handle because GoDaddy and Paypal fell for some fairly basic social engineering techniques. The customer service representatives at GoDaddy only required the attacker to provide the last several digits of Hiroshima’s credit card, which the hacker easily obtained from Paypal.
How should companies handle authentication to avoid social engineering?
Listen to episode 119 of our Security Slice podcast and hear Lamar Bailey, Tyler Reguly and Tim Erlin discuss why four digit PINs are better than social security numbers, how to get consumers more invested in authentication, and why it’s easier for companies to pay for fraud than protect against it.
Click Here to Listen to the Podcast
- Security Slice: Taking a Java Break
- Security Slice: The Broken Link Between Physical and Cyber Security
- Security Slice: Is Retail Security Off Target?
- Security Slice: Tis the Season for Security Predictions
The Executive’s Guide to the Top 20 Critical Security Controls
Tripwire has compiled an e-book, titled The Executive’s Guide to the Top 20 Critical Security Controls: Key Takeaways and Improvement Opportunities, which is available for download [registration form required].
Definitive Guide to Attack Surface Analytics
Also: Pre-register today for a complimentary hardcopy or e-copy of the forthcoming Definitive Guide™ to Attack Surface Analytics. You will also gain access to exclusive, unpublished content as it becomes available.
Title image courtesy of ShutterStock