13 year old gets owned trying to hack a Steam account

Page 2 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.
Toggle sidebar Toggle sidebar
CPA

CPA

Elite Member
Nov 19, 2001
30,322
4
0
sad thing is, if a parent had done this to his child, he would have probably been dragged into court.
 
Markbnj

Markbnj

Elite Member <br>Moderator Emeritus
Moderator
Sep 16, 2005
15,682
14
81
www.markbetz.net
Jeff7 said:
"Hey, I'm that guy who's here to do the things on the stuff. Username and password?"

"Huh? Oh, right, ok. That stuff. Here: <username and pass>"

Sometimes it's nearly that simple.
Click to expand...

I would have called that general social engineering, and 'phishing' a subset of social engineering that involves a fake web page/email. But perhaps the term has come to be used more generally.
 
destrekor

destrekor

Lifer
Nov 18, 2005
28,799
359
126
Red Squirrel said:
Huh? o_O I never even said that.
Click to expand...

Sorta sounded like you did. Maybe I read it wrong? I don't mean to attack, it's just something I feel anyone in IT should be aware of.

Red Squirrel said:
I was reading up on this physhing stuff and it is a very scary reality, these bored teens go around and try to get into random people's accounts by going in help chats and from there they can access all their other accounts too as they can just keep getting more info on the person to get other services to reset passwords. Once they get access to your email then they pretty much own your whole online life as they can password reset everything else.
Click to expand...


Markbnj said:
I would have called that general social engineering, and 'phishing' a subset of social engineering that involves a fake web page/email. But perhaps the term has come to be used more generally.
Click to expand...

And yeah, I too goofed, this is simple social engineering at its finest.
 
HeXen

HeXen

Diamond Member
Dec 13, 2009
7,835
37
91
If he duped the kid into giving his n/p. I assume he changed the password? Wouldn't' that just go to the kids email saying it's been changed?
 
Red Squirrel

Red Squirrel

No Lifer
May 24, 2003
70,305
13,656
126
www.anyf.ca
destrekor said:
Sorta sounded like you did. Maybe I read it wrong? I don't mean to attack, it's just something I feel anyone in IT should be aware of.
Click to expand...

No I was just reading up on specific incidents, and just pointing out how damaging it can be. It's not just you as a user being attacked that can be problematic, but a SR at a company in which you have a service with, which can then lead to your accounts being taken. So basically even if you personally take all precautions, you can still end up hacked if some support SR falls for it.

I guess that would fall under a different type of fishing, probably more social engineering. Traditional fishing is the user getting an email or what not, and the user has to take action to get taken, but there seems to be a trend now where "hackers" (I hate to use that term) will fisch support people into getting someone else's account info.

It's super easy to do with Amazon support. You pretty much just need to know the email associated with the account.

Example:
http://arstechnica.com/security/201...rvice-was-the-weak-link-that-spilled-my-data/

Several people have tried this and it works each time. Kinda scary really.
 
rga

rga

Senior member
Nov 9, 2011
640
2
81
I can't believe it's real, but it was funny to read.

"Greg... Greg... Greg... Go mow some yards, bitch."

Good punchline.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom