A lot of companies use cybersecurity training to prevent phishing attacks. A UC San Diego study says they should find a better way to protect their digital assets.
That’s a shame, although I unfortunately have no problem believe that’s the case in general. I still personally benefit from the social engineering resistance training I’ve had over the years to this day though.
I still personally benefit from the social engineering resistance training I’ve had over the years to this day though.
Me too, I use it to get out of situations I don’t want to deal with. “Ohh you’re calling me asking for PII? Sorry, i can’t provide that information unless I initiate the conversation. I’ll call the number I have on file for you to provide that.” <hangs up and never follows up>
Recently there were recruiters on LinkedIn freaking out that when they called someone, they would answer with “Hello?” and the recruiter thinks they’re too good to be greeted with that.
It might be rudimentary, but I wouldn’t say you’re wrong.
Alternatively, pick up but answer the phone only with the word “Yes?”, “Speak” or “You may proceed” (preceded by ‘this line is now secure’).
Then, when they ask “who is this?” answer that “if you don’t know, you have the wrong number” and that “this call is currently being traced, pending review of a ‘military tribunal’.”
Do this with the flattest intonation you can manage.
My SIM provider has the option to not even route unknown callers to my device. Not that I get any, but just in case, even if it is not that common in Germany.
What some family of mine had to go through was social engineering harassment calls with some BS reasoning to get them to say “Yes”/“I agree” or something like that
That’s a shame, although I unfortunately have no problem believe that’s the case in general. I still personally benefit from the social engineering resistance training I’ve had over the years to this day though.
Me too, I use it to get out of situations I don’t want to deal with. “Ohh you’re calling me asking for PII? Sorry, i can’t provide that information unless I initiate the conversation. I’ll call the number I have on file for you to provide that.” <hangs up and never follows up>
That’s the spirit! “I’m not at liberty to provide that information” is one of my favorite sentences.
My toxic trait is believing that not answering the phone from unknown numbers is protecting myself from outside attackers
Recently there were recruiters on LinkedIn freaking out that when they called someone, they would answer with “Hello?” and the recruiter thinks they’re too good to be greeted with that.
It might be rudimentary, but I wouldn’t say you’re wrong.
Alternatively, pick up but answer the phone only with the word “Yes?”, “Speak” or “You may proceed” (preceded by ‘this line is now secure’).
Then, when they ask “who is this?” answer that “if you don’t know, you have the wrong number” and that “this call is currently being traced, pending review of a ‘military tribunal’.”
Do this with the flattest intonation you can manage.
That tends to get to them.
Nah, there’s AI that can clone your voice from a single word, not answering is the safest.
Point. Silence is good too.
My SIM provider has the option to not even route unknown callers to my device. Not that I get any, but just in case, even if it is not that common in Germany.
What some family of mine had to go through was social engineering harassment calls with some BS reasoning to get them to say “Yes”/“I agree” or something like that