Skip to main content

Customer Service Reps & Two-factor authentication

Brian Krebs has a post on a small breach at Cox Communications where a single customer service rep had a password stolen via social engineering resulting in the loss of 52 records.  Imagine the luck:  52 out of millions of customers and one of them is Brian Krebs.  That's some luck.

CSRs are a place where there's been a lot of cost cutting and outsourcing.  That tends to make it a weak link and a target.

We don't know a lot of details about the costs or the number of times this happens or has happened.  But if there's an opening for social engineering - there's other openings too.  Organizations should look at how customer information is being accessed and make sure to lock it down.

Current rating: 1

Recent Posts

Archive

2024
2022
2021
2019
2018
2017
2016
2015
2014
2013
2012
2011
2010
2009
2008

Categories

Tags

Authors

Feeds

RSS / Atom