Shadows, Impersonation and Social Engineering!
Recently, I wrote some blog posts about RAW harassment, imposers and identity theft! After some careful analysis, I think I realized how any stalker, surveillance people can do some social engineering!
For example, you get a call from someone, for whatever reason, you didn’t attend the call. Now the shadows would call back from their number and would say “calling from other number”. So, financial institutions, money lenders be a little careful with these type of tactics.
India has this biometric system called Aadhar. However, in my opinion, sometimes Aadhar is being misused. Let me give a scenarion, some OTP theft happens and a account can be opened. Later, they would update Aadhar of their own. Or even very rare cases, they would use social engineering tactics to have the Aadhar updated to theirs. So, counter this scenario, I think if bank account is associated to a certain Aadhar and the person has not updated their phone number with UIDAI, may be banks should not allow Aadhar update. At least for me, logically it doesn’t make sense, why would someone attempt to associate someone else’s Aadhar to their own account? For me that’s a red flag and a social engineering tactic.
Cross posting from: Shadows, Impersonation and Social Engineering!