Social Engineered/Tricked by a Six Year Old.

November 6, 2016 Leave a comment

Originally, I posted this on Facebook  10/30/2016 as a note, but thought it would have a home here too.

My iPhone was hacked last night, it wasn’t by the Russians, the Jester, or Feds, but Charlotte. She used a technique called social engineering. Here is the story.
Recently, I put a password on the iPhone and this bothers Charlotte when she wants to play Flappy Bird. I know she has been watching me put the password in. Earlier in the day, she figured out after weeks of watching me. So, I gave her the phone and told her “prove it.” She entered the correct password and got access. So, I changed the password and told her so. Fast forward to the evening.

Charlotte and I are watching the Cubs game. She casually asked if “Trick-or-Treating time was from 4 pm to 10 pm?”. I said “No that seems early, let me check my phone.” I reach for the phone and type the in the password, proceed to ineffectively search for the information. I tell respond to her that I believe the times are “6 pm to 8 pm, like it had been in the past.”

Thinking about it, I ask her, “You weren’t interested in Trick-or-Treat times, were you? You just wanted to watch as I put the password into the phone?” She responded honestly. She was correct in reciting the password back to me.

A few things were happening here. First, she knew I would reach for the phone to find the information. I always do this, recent searches include: “Alec Guinness,” “Parkour,” “Duvet,” and “Napoleon Dynamite.” She knew my tendency or habit to just go online and search. Second, she knew the previous password wasn’t too sophisticated, because she was able to learn it over time. Like many of the passwords we use, it wasn’t for the record the it was “111222.” A better password might have been “121212” or “238391” or at least something a little tricky. Easy passwords to remember are often easy ones to crack.


League of Legends – A Few Thoughts

Recently, I have gotten into League of Legends. Okay I have been playing since February of this year. The basic premise of the Summoner’s Rift arena match is to destroy your opponents Nexus. Doing so, you win! For those interested, you caleague_of_legends_logon check out a this new player guide. It offers League of Legends basics.

Playing the game over the last few months, a few things have become apparent:

  • Having a good team and supportive team (even playing with random people) can make the game all that much fun and fulfilling.  Most players have been supportive or at least quiet.
  • Toxic players make me want to unplug my internet connection and “feed the bots.”
  • Definitely some skill to the game and playing well. Kudos to the pros.
  • Researching the game and strategies can make all the difference. Knowledge is power.
  • Best not to run into battle without some sort of a plan.
  • Sometimes after a bad game or three, it is just better to logout and go do something else.
  • It is a game have fun.

To this point, I have only been playing against robots with other humans on my team (mostly). I admit, because of the sometimes toxic community, I have been nervous about venturing into the Person vs. Person (PvP) arena. That being said, soon, I am heading to PvP where the real competition begins.

Many lessons in League of Legends can be applied in the real world.