In some countries, being a scammer is as legitimate a profession as being a nurse or a teacher. When jobs are sparse and education is out of reach of many, often people are forced to put morals aside in order …
Is Your Receptionist on Tinder?
Most of our social engineering jobs begin the same way – researching our “victims”. Whether it’s the accounts manager that we want to coax into paying a fake invoice, or the security guard who we need to convince to let …
Disregard For Data
We used to report data concerns to companies in the most archaic manner. We became efficient and employed tools such as Spiderfoot HX to help us scale up this discovery processes. We then tried to streamline reporting and even made …
Keeping Children Safe Online
Online safety for children isn’t just a blog for us. It’s the very reason our business was founded. We had this crazy idea to help the police years ago and remove some of the burden of social engineering attacks. The …
Doorstep Data Collection
Shampoo, bubble bath and room sprays, Avon has everything you need to unwind in aromatherapy euphoria. But would you feel so relaxed knowing that your data might be vulnerable to criminals? For those who don’t know, Avon is a company …
The Romance Scam
There was a simpler time where people would send post cards asking for pen-friends. A friendship slowly developed and they would ask for a small amount of money. With the advent of the internet all this changed though, scammers could …
Trivial Mistakes On Trello
Open Source Intelligence (OSINT) is the practice of using publicly available data about a target company or person. In our field of work it’s critical because it gives you all the juicy details you can later turn into a pretext. …
Shut Up About Facebook
People seem annoyed recently that a little known company called Cambridge Analytica have been accused of doing some pretty dodgy things with our data. I mean, it truly was an edge of the seat expose by Channel 4 – at …
Phishing, Evolved.
When we talk about phishing, the first thing people would associate with is the traditional phishing email. The click here. The “urgent action needed” kind of junk we see everyday in our inboxes… but is this still the case? Are …
Let’s forget the phishing dangers, is email getting us down?
In no way are we trying to diminish the importance of good email security practice, but sometimes I think about the unforeseen impact email can have on our daily lives. We focus on the fancy malware and the sophisticated credential …
Online AntiSocial Media
When we look at online social media, it has been adopted in one flavour or another by nearly all of us. The way we project our persona online has slowly replaced the media of yesteryear. Expression is nothing new; throughout …
iMessage Preview Problems
In recent Apple iMessage updates, the way links are handled within an SMS message have changed significantly and this adaptation poses quite a concern for us. Early 2016 we were the first company in the UK to offer SMShing services, …
OSINT For Profit
An interesting skill we have honed over the years has been the use of OSINT techniques to gather information on a client company. For those new to all this, it’s ok because you can follow quite easily and should learn …