Quote:
Originally Posted by easyfnmoney
These are just my arm chair anecdotal observations. I really wouldn't be surprised if the social engineering story is true. There are plenty of well educated, highly informed people who fall for these sorts of things all day, every day.
From what I'm reading, I'm starting to think there was likely was an element of social engineering in play.
How many times do we hear about underpaid employees who DNGAF and throw out all of their training because they fell prey to a skilled social engineer?
To that $18 an hour employee, who cares if they get fired. There's plenty of places that pay that.
My point being, when corporations start paying people a living wage, they might take their training more seriously since this is a job they may not want to lose. If said person who was social engineered was paid way more than that, yikes, shame on MGM for hiring folks and not constantly reminding them of their IT policies to help promote social engineering awareness.
I think sometime in the mid 2010s, cybercrime became more profitable than the drug trade. Most people do not realize this, and it will only get worse from here unless people and organizations start taking things more seriously. Once this is taken more seriously, the biggest threat, in my mind, would be insider threats.