A USB key may seem like a small and innocuous device, but in the hands of a skilled cybercriminal, it can be a powerful tool for hacking into corporate networks and scrumping sensitive customer information. But in the hands of an ethical hacker, it can mean the difference between a cyber-secure profitable business and a helpless company at the financial mercy of today’s malicious and sophisticated hackers.
Terry Cutler, a Certified Ethical Hacker and author of Insider Secrets to INTERNET SAFETY: Advice From a Professional Hacker (Smiling Eyes Press), has witnessed the effect of USB baiting. In his book, he shares chilling real-life stories of how cybercriminals have used this technique, and others, to breach the security of many of the world’s largest corporations.
USB baiting
“The idea is to plant a seemingly harmless USB key with a file name that piques the curiosity of an unsuspecting employee who picks it up and plugs it into their computer to see its contents,” says Cutler.“The idea is to plant a seemingly harmless USB key with a file name that piques the curiosity of an unsuspecting employee who picks it up and plugs it into their computer to see its contents,” says Cutler.
”The ethical hacker and cybersecurity expert was surprised that the company that hired him to “break i” had taken extensive precautions to protect its network. “It was impenetrable,” Cutler said.“Almost!” The ethical hacker and cybersecurity expert was surprised that the company that hired him to “break in” had taken extensive precautions to protect its network. “It was impenetrable,” Cutler said. “Almost!”
So, Cutler walked into the front lobby and pleaded with the receptionist to use their washroom. Once inside the men’s room, he left two USB keys behind.
“In a short time, my computer sprang to life. I’m in,” said Cutler.“Now that I had the ability to log into the company’s network, I could unleash mayhem. I could extract usernames and passwords, open and interact with files, or take screenshots of current activity on the user’s desktop.” In a short time, my computer sprang to life. I’m in,” said Cutler. “Now that I could log into the company’s network, I could unleash mayhem. I could extract usernames and passwords, open and interact with files, or take screenshots of current activity on a user’s desktop.”
A sobering reminder
Insider Secrets to INTERNET SAFETY: Advice From a Professional Hacker offers readers valuable insights, cautionary tales, and actionable advice for protecting themselves from cyber threats and data breaches in the digital age. Cutler starts with a sobering reminder of how vulnerable our personal and sensitive information can be in today’s digital landscape. He shares real-life stories of cybercrime, including some of his experiences working as an ethical hacker, to illustrate how easy it is for hackers to access company and personal information.
Cutler dives into the dangers of phishing, social engineering, password security, and lack of employee security training. He offers insightful consumer advice on protecting your devices from malware to spotting and avoiding fake websites, romance scammers, gift cards and coupon scams.
His online learning program, arranged in modules and updated regularly to keep up with the rapidly changing digital landscape, effectively stops wild west internet bandits seeking new ways to break into our lives.
Insider Secrets to INTERNET SAFETY: Advice From a Professional Hacker is a stark reminder of the danger of cybercrime in our world of ever-increasing digital technology.
Protect yourself from cyber threats and data breaches with Insider Secrets to INTERNET SAFETY by Terry Cutler. Learn from a Certified Ethical Hacker how to stay safe in the digital age.
