|
|
Common technique in developing nations, rare in the west. It is the easiest way to hack wetware. Bribery can be as direct as cash payments, but the more powerful attack is simply to align the financial interests of the target with those of the hacker. For example, stock options are a way for a company to align a persons interests with those of a stock holder. Typical targets are those whose interests are not aligned with the taret: - disgruntled employees
- Very willing targets
- contract workers
- Do not have long term interest.
- people in financial difficulties
- They need immediate results.
The best targets are those that are not involved with the system being hacked. A janitor, for instance, does not understand the implications of actions it undertakes on behalf of the hacker. Thus, they will be cheap to bribe. Examples: - Bribe newbie computer users to forward account info.
- Bribe janitors to grab documents, or connect computers in ways they shouldn't be connected (ie. put a modem on a system).
- Bribe security guards simply to allow access to the building at off hours.
- Bribe technicians to install sniffers or steal info.
The biggest danger is that somebody bought often doesn't stay bought. Also, if the intrusion is not successful, the attempt cost real money.
|
