[Owasp-leaders] IRS hacked, well not 'technically' speaking says IRS

John Patrick Lita john.patrick.lita at owasp.org
Wed May 27 12:25:37 UTC 2015


Yes Social Engineering could be the reason for the attack. or internal
attack that have enough information from the inside

On Tue, May 26, 2015 at 6:05 PM, johanna curiel curiel <
johanna.curiel at owasp.org> wrote:

> IRS has been hacked
>
> http://www.newsweek.com/data-breach-irs-exposes-return-information-estimated-100000-taxpayers-335886
>
> But they mentioned that "The IRS data theft differs in that it did not
> involve a computer hack. Criminals used information they had gathered about
> individuals to access the system as it was designed to be used, the IRS
> said...
> Koskinen said the attackers *must have had a significant amount of
> information already about the taxpayers*."
>
>
> If the system is way to dependable on Knowledge Authentication, no wonder
> social engineering is the perfect for this case, let called this 'Knowledge
> Based Hacking'
>
> Regards
>
> Johanna
>
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
>


-- 
Best Regrads
John Patrick Lita
*Chapter Leader OWASP Manila*
FB Page @OwaspManila <https://www.facebook.com/OwaspManila>
https://www.owasp.org/index.php/Manila
https://lists.owasp.org/mailman/listinfo/owasp-manila
<https://lists.owasp.org/mailman/listinfo/owasp-manila>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20150527/5d943746/attachment.html>


More information about the OWASP-Leaders mailing list