Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: listening to people/offices when on-hold on the phone

from [Robin Wood] Network Security [Permanent Link]
Subject: Re: listening to people/offices when on-hold on the phone
Date: Sat, 23 Jun 2007 08:27:42 +0100 
That is the kind of thing I was thinking of. You'd have to be very
luck to do it but you might get something.

One way you might use this is if you know there are visitors in and
the office is open plan. Find someone who sits near where the visitors
are likely to be, i.e. somewhere around a demo pc or maybe a key
developers desk, and try to get them with this.

Just a follow on thought from this, it is possible to hack bluetooth
to get some mobile phones to dial out. Imagine doing this to a manager
in a meeting, get him to call a free conference line, you get on the
other end, and you've got your own bug in the office.

Robin

On 6/22/07, Joel Eusebio <joele@telus.net> wrote: 

Good point. And what if you were on hold while calling from work? And 
suddenly
your co-worker shouts out loud "is the password on this server still....." :)

cheers,

Joel



Quoting Robin Wood <dninja@gmail.com>:

> Hi
> Imagine the situation, you get a message to call someone, your call
> gets answered by an automated system which says there may be a few
> minutes wait and gives you the bad hold music. You hit the hands free
> button on the phone and get on with work while you wait for it to be
> answered.
>
> Unless you mute the call, the person/system on the other end of the
> call could be listening in while pretending to be on hold and
> potentially hear all that is going on around you.
>
> It is a random attack vector but it could allow an attacker to pick up
> all sorts of information. I thought about it while sitting on hold for
> over 30 mins trying to get through to my mobile phone support line
> last night. If they had been listening they would know what I had for
> dinner.
>
> Anyone tried listening in like this? Anyone got any comments?
>
> Robin
>
> ------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Are you using SPI, Watchfire or WhiteHat?
> Consider getting clear vision with Cenzic
> See HOW Now with our 20/20 program!
>
> http://www.cenzic.com/c/2020
> ------------------------------------------------------------------------
>
>



------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------



------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Re: Strange ports, R. DuFresne
Next by Date:  Re: Re: Strange ports, Bojan Zdrnja
Previous by Thread:  Re: listening to people/offices when on-hold on the phone, Joel Eusebio
Next by Thread:  Re: listening to people/offices when on-hold on the phone, Thor (Hammer of God)
Indexes:  [Date] [Thread] [Top] [All Lists]