KSL INVESTIGATES

Get Gephardt: How cybercriminals use social engineering to get us to hand over our sensitive info

Oct 3, 2022, 10:10 PM | Updated: 10:17 pm

SALT LAKE CITY — You can have the strongest, most secure password in the history of cybersecurity, but the bad guys know there is one weakness they can use to hack into your system – you!

Just recently, Uber got added to the ever-growing list of companies defeated by social engineering when a hacker tricked a contractor into granting them access to his Uber account. From there, they got into the rideshare giant’s internal data systems.

Oh, and the alleged hacker? Just 18 years old.

“I’m actually not too surprised,” said cybersecurity expert Zulfikar Ramzan, Aura Labs’ chief scientist, and CEO. “There was nothing sophisticated. It was all fairly straightforward.”

Ramzan said that while Uber’s hacking may sound like something out of a heist film like Ocean’s Eleven, it isn’t.

“This is more like a 7-Eleven smash and grab,” he said. “The reality is in this day and age; those attacks tend to be quite effective. You don’t need to be very fancy.”

Ramzan said social engineering is classic con man stuff – faking legitimacy. The bad guy might pose as a government agency, your bank, a work colleague, someone in your IT department, a friend, or others. And they will use emails, texts, social media, whatever they can to reach you.

“It’s just about being able to trick you into doing something that compromises your own security,” he said. “It only takes one person to let you in the front door, and from that point onward, you may have access to most rooms in the house.”

Often, the trick is to get you to follow a link, or they will get you to send them a code to defeat two-factor authentication or to get you to use your real login credentials on a fake website.

And it works well.

According to the FBI’s latest Internet Crimes Report, cybercrooks stole $6.9 billion last year, much of that is through social engineering.

New data from virtual private network company, NordVPN found that 84% of Americans have run into some kind of social engineering. Of those, 36% actually admitted to getting duped. Ramzan said it could happen to anyone at any level of tech savviness.

“We have these amazing street smarts and tell us when we go to the physical world – what a good neighborhood is or a bad neighborhood as we can tell something’s wrong because we’ve owned our physical street smarts in really deep ways,” he said. “Unfortunately, we haven’t grown our digital street smart, and so we don’t have that same level of intuition – those “spidey senses” that tell us that we’re potentially in danger.”

Ramzan said the explosion of remote work throughout the pandemic has dramatically accelerated social engineering attacks.

“Your IT department is incentivized to set up a world where anybody can access critical services from anywhere. Unfortunately, that also means hackers can access that same information potentially from anywhere,” he said.

So, how to keep the bad guys from getting their foot into our front door? Ramzan said anyone asking for login credentials is a huge, stinking red flag. Next, use multi-factor authentication everywhere you can. Then, watch what you post about yourself online.

“Even though you might think you’ve got a small role to play in whatever is out there, you might be one or two connections away from someone who could have a massive impact,” Ramzan said. “If somebody can get to you, they may be able to use you as the next step in a chain of events to get into something much more nefarious.”

KSL 5 TV Live

Top Stories

KSL Investigates

Delric Ellington and Kael Ellington talk about a stray bullet that entered their Salt Lake City hom...
Annie Knox and Daniella Rivera, KSL TV

Amid increase in youth shooting deaths, Utah pediatricians push for tougher gun laws

The number of Utah children and teens killed by gunfire reached a record high in 2020, in part because of a spike in homicides. Two Utah pediatricians are calling on the state to pass what they see as solutions to the troubling trend.
2 months ago
Albee Bostrom and Sissy McDade turned their love of thrift store shopping into a business: Thrift H...
Matt Gephardt

Gephardt Busts Inflation: Second-hand shopping, selling surge as Utahns try to beat rising prices

Data shared with the KSL investigators shows Utahns are trying to bring in more money and reduce spending as they try to bust inflation.
2 months ago
Bry Hansen visits his son's grave in South Jordan. (Tanner Siegworth/KSL TV)...
Annie Knox and Daniella Rivera, KSL TV

The number of Utah kids and teens dying by gunfire hit a record high in 2020

The state hit a devastating milestone in 2020, recording the highest-ever number of shooting deaths among Utahns 18 and younger.
2 months ago
...
Matt Gephardt & Sloan Schrage

Get Gephardt: What can you do if you pay someone to do work but they disappear with your money?

Imagine paying a deposit only to have them take your money and ghost you.
2 months ago
Photo illustration (Photo by Matt Cardy/Getty Images)...
Matt Gephardt

Get Gephardt: Your credit card can up your interest rate without telling you

If your credit card company raises your interest rate even just a little bit, it could have a significant impact on how long it takes you to get out of debt. A relatively new law means your credit card company can do just that and they do not even have to give you the heads up.
2 months ago
UDOT says it spend over $1.5 million on fixing potholes in the last fiscal year, FY 2022....
Matt Gephardt & Sloan Schrage, KSL TV

Submitting a claim to the government for pothole damage? Good luck with that

A pothole can do serious and expensive damage to your car. But as Get Gephardt found, if you hit a bad spot on a Utah road, don’t expect the city or state to rush to pay for your repairs.
2 months ago

Sponsored Articles

Hand turning a thermostat knob to increase savings by decreasing energy consumption. Composite imag...
Lighting Design

5 Lighting Tips to Save Energy and Money in Your Home

Advances in lighting technology make it easier to use smart features to cut costs. Read for tips to save energy by using different lighting strategies in your home.
Portrait of smiling practitioner with multi-ethnic senior people...
Summit Vista

How retirement communities help with healthy aging

There are many benefits that retirement communities contribute to healthy aging. Learn more about how it can enhance your life, or the life of your loved ones.
Happy diverse college or university students are having fun on their graduation day...
BYU MBA at the Marriott School of Business

How to choose what MBA program is right for you: Ask these questions before you apply!

Wondering what MBA program is right for you? Take this quiz before you apply to see if it will help you meet your goals.
Cloud storage technology with 3d rendering drawer with files in cloud...
PC Laptops

How backing up your computer can help you relieve stress

Don't wait for something bad to happen before backing up your computer. Learn how to protect your data before disaster strikes.
young woman with stickers on laptop computer...
Les Olson

7 ways print marketing materials can boost your business

Custom print marketing materials are a great way to leave an impression on clients or customers. Read for a few ideas to spread the word about your product or company.
young woman throwing clothes to organize a walk in closet...
Lighting Design

How to organize your walk-in closet | 7 easy tips to streamline your storage today

Read our tips to learn how to organize your walk-in closet for more storage space. These seven easy tips can help you get the most out of your space.
Get Gephardt: How cybercriminals use social engineering to get us to hand over our sensitive info