Skip to main content

Customer Service Reps & Two-factor authentication

Brian Krebs has a post on a small breach at Cox Communications where a single customer service rep had a password stolen via social engineering resulting in the loss of 52 records.  Imagine the luck:  52 out of millions of customers and one of them is Brian Krebs.  That's some luck.

CSRs are a place where there's been a lot of cost cutting and outsourcing.  That tends to make it a weak link and a target.

We don't know a lot of details about the costs or the number of times this happens or has happened.  But if there's an opening for social engineering - there's other openings too.  Organizations should look at how customer information is being accessed and make sure to lock it down.

Currently unrated

Recent Posts

Archive

2021
2019
2018
2017
2016
2015
2014
2013
2012
2011
2010
2009
2008

Categories

Tags

Authors

Feeds

RSS / Atom