Sean Reiser
A Tale of Social Engineering
July 21st, 2009 Last night, or rather early this morning, at around 3AM, I received a Facebook IM from a former coworker (let's call him "Frank") telling me he was in London, "got mugged and robbed at gun point" and needed my help. He went on to tell me that he was beaten and bruised. Where he said he needed cash, my primary concern was for his health. I figured he needed someone to get him to a place where he could get medical care, to a police station, or the US Consulate so I began reaching out via social networking to my contacts in London. When I said I was working on finding friends in London who could render aid he asked me to hold on a minute and disconnected about 5 minutes later. My spider sense screamed "scam" at this point but I still sent messages to our mutual contacts on facebook and linkedin to see if anyone had heard from him. It was confirmed later that his facebook account was compromised and I was talking to an impostor, probably because of a weak password.
In some respects I was the perfect mark for this scam. I was tired because I was up late. I was close enough to Frank that I'd want to help him, but hadn't spoken to him in a while, so I wouldn't know if he were in London or the US. When I heard that he was robbed at gun point my emotions overrode reason.
Call it ego, but I hate to admit that I was in a position to fall for this. But let's learn from my mistakes and see why I did.
The biggest obstacle scammers have to overcome is gaining the trust of their mark (it's not called a confidence game for nothing). As I believed it was Frank, I trusted him as much as I would Frank. In order to keep me "off my toes", the impostor presented a sense of urgency and danger. When a friend's in trouble you don't think about verifying their identity, you think about how to help him.
Looking at this with 20/20 hind sight, the first thing I should've done was ask Frank for his daughter's phone number, so I could call her, to let her know and since she would be willing to help. In the chat there were little things he said and did which were out of character for him, I dismissed clues thinking "he's been through an ordeal". And, of course, I should've called him or asked him to call me.
Sean Reiser, 40, is a developer, technologist, and amateur photographer. Sean has spent the past 20 years as a programmer, system architect and development manager. He is a life long New York resident.
Sean currently serves as the President and Chief Geek Officer of Repair Sense, Inc.. Please go to that site with any professional inquiries.
Sean can be found using a number of social networks. These are the ones he's most active on:
- I'm a little confused too but
2 weeks 3 days ago - thanks for the info it will
4 weeks 3 days ago - Wow,
nice story. Hope I sleep
6 weeks 12 hours ago - I think such tricks should be
7 weeks 1 day ago - Hi,
You have really provided
9 weeks 1 day ago - Dear Sean:
Thanks for
10 weeks 3 days ago - Hi Yngens-
I know you've
15 weeks 3 days ago - Well, from the view of
15 weeks 4 days ago - HiSean,
I thank you again
15 weeks 4 days ago - Artisteer released a patch to
25 weeks 1 day ago
- iSeanReiser (200) - Geek Blog
- The Early Reiser (32) - Mainstream Blog
- Livejournal (171) - Old Livejournal Blog
- Great Existence (149) - Photo of the Day
- Photosets (135) - Photos on Flickr
- August 2010 (1)
- July 2010 (1)
- January 2010 (2)
- September 2009 (1)
- August 2009 (30)
Thu, 2010-09-02 14:01
seanreiser tweeted "@coldacid the difference is that last.fm isn't part of iTunes, ping is... but what do I know, I'm just a dumb programmer" 2:01pm#- seanreiser tweeted "wait... ping doesn't use my iTunes music ratings to determine my likes? I have to like / dislike songs WTF? #fail" 1:25pm#
- seanreiser tweeted "Hurricane, Oil Rig Explosion, Earthquake... REPENT, THE END IS NEIGH!" 1:12pm#
- seanreiser tweeted "RT @RomanaTyler: Actually... ALL THE DOCTORS ARE THE GREATEST DOCTORS EVER!" 12:58pm#
- seanreiser tweeted "Dear CW- I'm not a fan but how could you not premier the new season of 90210 on 9.02.10? #missedMarketingOpportunity" 12:55pm#
- seanreiser tweeted "@notgoth007 thanks!... my current is far too block-y so I'm trying to change it up" 12:54pm#
- seanreiser tweeted "@HelenKeier well, maybe I'm trying to be in touch with my fem side ;)" 12:53pm#
- seanreiser tweeted "been playing around with my monogram / logo and am down to a final 2... opinions? http://twitpic.com/2kki3z" 12:45pm#
Wed, 2010-09-01 19:29
- seanreiser tweeted "am I the only one who wants to mount a new iPod nano into a pocket watch hunter-case?" 7:29pm#
- seanreiser tweeted "@jeremymeyers well they would be making for that potato farmer in Idaho ... SFSF" 5:57pm#
Check out www.jasonmulgrew.com he describes having the same exact scam pulled on him twice.