Threat Intelligence Blog

Social engineering attacks can happen at work, home and even while traveling. At last week’s NAFCU Annual Conference in Nashville, Greg Ogorek (Deputy Director, Cyber Intelligence Division from Cyveillance) gave a presentation on how credit unions can protect their members from online threats. In particular, Greg emphasized how criminals use social media sites to target their prey, and how education and training play a critical role in preventing security breaches.

Little did Greg know that the lessons in the lecture would be driven home that very day for a credit union Board Member. In the audience was Gerald Smith, Secretary of the Supervisory Committee for ORNL FCU – Gerald described what happened next, in an email to Greg:

Many thanks for your class today. Ironically, someone knew I was staying at this hotel, just like you mentioned, and called my room asking me for my credit card to be placed on file. I said “I’ll come down to the front desk” and they called back after a few seconds saying there was no need to come down.

Per your information, I thought it was strange so I went to the front desk anyway to check things out. They traced the call and I made a report to security. The hotel said they had originally transferred the call, so it was a little spooky thinking about what fraudsters can find out by making a simple phone call.

Cyveillance provides Cyber Safety Awareness Training to help employees understand the latest attacks – such as the one mentioned above – and how to protect against them. Social engineering can happen online and offline, so be sure to be on the lookout.

Related:

 

Additional Posts

Corporate Social Media Policy: Top 5 Recommendations

Many employers have begun to realize that they need to regulate the usage of social media by ...

Protecting Corporate Assets with ShodanHQ – An Interview with the ShodanHQ Creator

ShodanHQ describes itself as "the world's first computer search engine that lets you search the ...