www.securityhumor.us - Client issues

Client issues

Client issues

Not me this time.

I was conducting pretext calling campaign and the user gave me his password over the phone. I told him I would conduct a virus scan on his computer and then I told him “it scanned clean.” He responded, “Oh good, i didn’t cause the issue this time!”

 

This time???!!!!

Old news?

Performing a Penetration Test of a Clients network, was forced by the client to call out Server Admin. Sadly, the Admin was in the room in a Directors debrief meeting.

The Admin was using known breached creds that haven't changed in 6 years.

 

ouch!

Be carefull what you complain about.

One of the System Admins asked me to take a look at why his hard drive was nearly full.

Got on admins machine and drive was full, he was right.

Poked around on the Hard drive to clean it up a bit and to my surprise, the hard drive was full of temporary files and home movies, the bad kind :-(

 

Rut roh!

Discovered a back door ?

While on a penetration test of a mid sized company (100 to 1000 employees) discovered that some admins had created a back door account and vpn access.

Pulled the logs and it was in use.  They just fired an admin and they knew of the back door to create havoc.  Turns out that after talking with various Managers, there seemed to be the same problems popping up after each admin was let go. Hmmmmm.

 

While technically, this is not funny nor humorous, it showed that the Admins, even the new ones kept the backdoor open.  Insider threat come to mind ?

Helping Dad....

I had to help my Dad fix his computer over the phone tonight. I could tell he was getting frustrated with the computer.

at one point I told him to Click a Button.

Dad: You're joking?

Me: No Dad why? Click it.

Dad: There's no mouse.

Me: Why not ?

Dad: I threw it across the room!

 

another successful phone conversation with a relative trying to help them with their computer.

 

2020  www.securityhumor.us