Blogs & Stories

Trustwave Blog

The Trustwave Blog empowers information security professionals to achieve new heights through expert insight that addresses hot topics, trends and challenges and defines best practices.

The Wall Street Journal: Companies Hire Ethical Hackers to Dupe Employees; Crutches as Props

In a front page story in today's Wall Street Journal, Trustwave's Practice Manager for Physical Security and Social Engineering Ryan Jones discusses tactics ethical hackers use to demonstrate to companies how cybercriminals may break into their systems. Jones has more than 15 years of experience in network and physical security. In the story, which also includes a photograph of Jones in one of his many undercover uniforms, Jones reveals how he has successfully gained access to data centers, warehouses and executive suites. The article states:

"Mr. Jones' devices contain software that takes over computers, hijacking built-in cameras to snap photos of the employees. To identify security weaknesses, his arsenal includes in-person breaches, in which he bluffs his way into offices for access to sensitive systems. Mr. Jones keeps a closetful of costumes, including package deliverymen and fire marshal. He has successfully used crutches to persuade sympathetic people to open locked doors."

The story also mentions how Jones studies sleight-of-hand magicians and con men to learn about new tactics cybercriminals may use to steal valuable information.

Read the full Wall Street Journal article here.