That time is still today, as people are still the weakest link. A talented scamm... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		ASalazarMX 10 months ago \| parent \| context \| favorite \| on: Kevin Mitnik FOIA Final That time is still today, as people are still the weakest link. A talented scammer can convince people to give them access to their WhatsApp account despite the E2EE, 2FA, and SMS verification codes. In Mitnik's version, he RTFMs, learned the technical lingo, procedures, and even the names of telco employees.

devmor 10 months ago [–]

100%

The majority of corporate breaches are a combination of poor Least Privilege practices and phishing/smishing.

Even with well secured, alert personnel, you often see ISPs and Telcos socially engineered to gain access to an employee account.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact