Joan Goodchild, Senior Editor
A social engineering expert details how he managed to go anywhere he wanted at RSA 2012, and then got a free conference badge under a pseudonym to boot
February 28, 2012 — CSO —
When I checked in at the RSA 2012 conference, I was directed to wear my badge at all times.
“You won’t be able to go anywhere without it,” a registration official informed me.
But this does not seem to be an obstacle for my anonymous source, whom I met on the first day of the conference. A risk management and physical security expert, he is in the business of “pen-testing humans” via social engineering, he said, and he also has an expertise in event security. I met him while I was covering the event, and he agreed to give me details of how he snuck into RSA in a matter of minutes without any credentials—and then went back and got credentials under a fake name to boot.