pen-test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: listening to people/offices when on-hold on the phone

from [Robin Wood] [Permanent Link][Original]
To: PenTest <pen-test@securityfocus.com>
Subject: Re: listening to people/offices when on-hold on the phone
From: "Robin Wood" <dninja@gmail.com>
Date: Sun, 24 Jun 2007 13:12:53 +0100
Delivered-to: sp-com-lists@consult.net
Delivered-to: pentest-list2@consult.net
Delivered-to: mailing list pen-test@securityfocus.com
Delivered-to: moderator for pen-test@securityfocus.com
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=mbBWdh4LzZXm82TSLPPTyxpPo5+V5thV470AqALxyAwgzDUuWVqWJmNBJEw6tLTWVEJYijWmQqg84hc4t2WXZRYZfkFYFSXhFgsX5qhFEUOBsEEWPAH0cpz0C+HkgG/SscEiy8mt13TOldS3AllDTK+/GwpAKCoJm9mNtCRpPS0=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=SHefXvXbUYTxqXXFQYw7pFDGos4+Rd6n2JdobTP3OBwybzhDsZZvwr01Kp9HRjslWkJOGrbmLCsVNTj47ebpz1t/Pu+HVxJ3n4On610o68JgtxfE3OaXnAXQ5yzhCo8QoVLAx3Jy0CPQm4TPfMuiYj2rlOjxM5cqF2ybUsG6a5M=
In-reply-to: <41011d980706230725q413abaa6nfc4161c5c4ade72c@mail.gmail.com>
List-help: <mailto:pen-test-help@securityfocus.com>
List-id: <pen-test.list-id.securityfocus.com>
List-post: <mailto:pen-test@securityfocus.com>
List-subscribe: <mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe: <mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list: contact pen-test-help@securityfocus.com; run by ezmlm
References: <2cf3b3170706220337n7922dc65l2240ca9101de0dac@mail.gmail.com> <1182536195.467c12033e379@webmail.telus.net> <41011d980706230725q413abaa6nfc4161c5c4ade72c@mail.gmail.com>
Resent-date: Sun, 24 Jun 2007 13:59:17 -0600 (MDT)
Resent-from: pen-test-return-1078484455@securityfocus.com
Resent-message-id: <20070624195917.34F0823728C@outgoing3.securityfocus.com>
Resent-sender: listbounce@securityfocus.com
Sender: listbounce@securityfocus.com 
Well, if anyone every tried it, make sure you post back any interesting results.

Robin

On 6/23/07, crazy frog crazy frog <i.m.crazy.frog@gmail.com> wrote:

This is good point indeed.You can get some details like the kind of
people on the other side,you can determin if its the place where many
people sits or just a few and its just very nice to hear some stuff
going on,on the other side :)

---------------------------------------
http://www.secgeeks.com
get a blog on SecGeeks :)
register here:-
http://secgeeks.com/user/register
rss feeds :-
http://secradar.com/node/feed

http://www.newskicks.com
Submit and kick for new stories from all around the world.
---------------------------------------

houts out loud "is the password on this server still....." :)
>
> cheers,
>
> Joel
>
>
>
> Quoting Robin Wood <dninja@gmail.com>:
>
> > Hi
> > Imagine the situation, you get a message to call someone, your call
> > gets answered by an automated system which says there may be a few
> > minutes wait and gives you the bad hold music. You hit the hands free
> > button on the phone and get on with work while you wait for it to be
> > answered.
> >
> > Unless you mute the call, the person/system on the other end of the
> > call could be listening in while pretending to be on hold and
> > potentially hear all that is going on around you.
> >
> > It is a random attack vector but it could allow an attacker to pick up
> > all sorts of information. I thought about it while sitting on hold for
> > over 30 mins trying to get through to my mobile phone support line
> > last night. If they had been listening they would know what I had for
> > dinner.
> >
> > Anyone tried listening in like this? Anyone got any comments?
> >
> > Robin
> >
> > ------------------------------------------------------------------------
> > This List Sponsored by: Cenzic
> >
> > Are you using SPI, Watchfire or WhiteHat?
> > Consider getting clear vision with Cenzic
> > See HOW Now with our 20/20 program!
> >
> > http://www.cenzic.com/c/2020
> > ------------------------------------------------------------------------
> >
> >
>
>
>
> ------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Are you using SPI, Watchfire or WhiteHat?
> Consider getting clear vision with Cenzic
> See HOW Now with our 20/20 program!
>
> http://www.cenzic.com/c/2020
> ------------------------------------------------------------------------
>
>


--

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------




------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Strange ports, killy
Next by Date:  analysis after hack - marks and tracks you can see.., D . K .
Previous by Thread:  Re: listening to people/offices when on-hold on the phone, crazy frog crazy frog
Next by Thread:  Re: listening to people/offices when on-hold on the phone, rajat swarup
Indexes:  [Date] [Thread] [Top] [All Lists]