zlacker

>>thirty+(OP)
My parents vaguely remembered who Kevin Mitnick was when I gave my father my copy of 'Ghost in the Wires' to read.

I told him, this was the 'hacker' of the 80s, read how he managed to 'hack' all these places. My father replied, "I'm pretty sure I won't understand anything he would do". Me, "Just give it a chance, you'll be surprised"

When he gave the book back, I asked my father if anything Kevin did my father wouldn't have understood. My father said, "I understood everything he did". I asked, "Now, when you get a call from someone you don't know claiming to be an authority figure, what do you do?". Father: "Hang up"

>>jboy55+Af
Would there be a modern version of this? I haven't read it and I'm interested, but mostly my parents are getting old, and with AI on the corner, I fear a bit the next level scams.

>>dryrun+tl
Any time a big hack makes the news it turns out that either some system had no security, they used social engineering, or a disgruntled former employee. Hackers aren't sitting there with a super computer in a Guy Fawkes mask trying to decrypt data. The scams are the same now as back then.

>>TheBig+1d1
Two of the most recent most high profile hacks required a large degree of preplanning, scoping out, custom coding etc to achieve the breadth and depth of penetration gained upon execution.

How would you classify supply-chain attacks?

Primary security was bypassed by breaking secondary security .. so there was security to be overcome, there was no social engineering aside from understanding procedures in play, and no disgruntled employees.

https://www.techtarget.com/whatis/feature/SolarWinds-hack-ex...

https://forensiccontrol.com/guides/unravelling-the-moveit-ha...

>>defros+9f1
let me blow your mind with "the lazarus heist" podcast: https://www.bbc.co.uk/programmes/w13xtvg9/episodes/downloads