capture the flag, hacking

@RealTryHackMe #AdventOfCyber Series: Challenge 19 – Something Phisy Is Going On #TisTheSeasonForHacking

Another day, another challenge…

In this post, we’re starting a new series the Advent of Cyber series that is hosted by TryHackMe. This is the third year of the Advent of Cyber where a challenge is released everyday leading to Christmas. In total there will be 25 challenges. In these challenges, we’re McSkidy an elf trying to save Christmas.

In our nineteenth challenge, we’re presented with a scenario where McSkidy has received multiple reports of phishing emails from multiple elves. Oh no! At this point, McSkidy doesn’t know if it’s the Grinch, so we need to inspect the email and find out.

The topic explored in this challenge is phishing which is the attempt to gain access to a victim’s computer. This can be done through a variety of ways – through email where an attacker will create an email that looks VERY similar to a real business such as a bank or delivery site. Except the email will be from a different email that is NOT related to the business in question. Another avenue is through social engineering. This tactic is to use gain trust by providing information about a user to get access to a system.

Let’s give an example of a social engineering attack: I am accessing McSkidy’s banking information, and I make the call as the Grinch. When I make this call, I am going to answer personal questions related to McSkidy. That way the representative or the authorizer will believe that the caller (in this case the Grinch) is McSkidy.

We will not use social engineering in this challenge, but I wanted to describe it briefly as it is a common tactic to use for phishing.

Can McSkidy find out where the phishing attempts were originated? See below!

If you enjoy my content, buy me a coffee. Link –> http://buymeacoffee.com/thefluffy007

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s