After completing a day of Reconnaissance yesterday, Cybaverse look to complete a security breach by testing the physical security of Santa’s Workshop.
Yesterday, Cybaverse completed some research on the site and today they will attempt to breach the building (Santa's Workshop) by tailgating some of the elves in from the sports tables in the east yard.
What is a Physical Security Breach?
Physical Security Breaches are where organisation's suffer a loss of property or information to due a physical area (office, building, or in this case, Workshop) being compromised.
A Physical Security Breach doesn’t necessarily need to be done by someone external. It can also happen when disgruntled employees and contractors gain access to areas or files that are confidential.
Threat actors can come in several sizes and formats, and employees should be alert to anything out of the ordinary. Today, Cybaverse’s Read Team needs to act as an elf, and no animal can match Christmas elf energy like a dog!
.jpg)
.jpg)
Koldo was able to access the main canteen, when a fellow elf held the door open for them, assuming that he was an employee. Once access was gained to the canteen, Koldo sat close enough to an elf where they could copy the code on his key card using a Keysy. A Keysy is a tool which facilitates the cloning of keycards, which is readily available on Amazon. This gave Cybaverse access to the rest of the building. While a Keysy is easy to get hold of, it is also easy to protect your organisation from them, some encryption on your Keycards or Fobs can render tools like a Keysy useless.
Whilst wandering through the workshop a few elves stopped to ask Koldo what he was was doing, he explained that he was contractor elf dog to bring festive joy to all the elves!
Eventually they Koldo and Belle were caught eating the reindeer carrots! Luckily they had already managed to gain access to a meeting room ‘Jingle Bells’ where they connected a drop box via an Ethernet port on the back of the TV, which was connected to the Lapland Industries network.
How to protect your business from Physical Security Breaches
There are different categories of Physical security breaches
Tailgating
Tailgating is where one employee kindly holds the door open for another employee. Seemingly innocent, however, this creates a vulnerability in an organisation’s physical security. It can also happen unintentionally when doors are left open by trades or visitors. Anti-tailgating systems can be put in place to protect a business, for example, biometric scanners and turnstiles, speed gates and revolving door portals.
Stranger Danger
Securing your workplace can be difficult, particularly in areas where there is a mixture of private and public spaces, such as hospitals and retail stores. The best way to protect your organisation from strangers walking in off the street and gaining access to systems is employee awareness and training. The right training and awareness will ensure that employees feel supported to seek out any security issues and report them in an effective manner. You should also ensure that working habits such as the appropriate storage of files and passwords, locking PCs when they’re not in use and other clean desk habits (making sure that all sensitive data is stored appropriately) are actively promoted in the company.
Employee IDs
Employee ID cards are a good way to ensure that everyone can identify and authenticate who they are speaking to and who should have access to specific areas. Using ID cards can facilitate activity tracking and monitoring, which can deter gruntled employees from facilitating a threat. This can also extend to visitors and trades, making it easy to direct them, should they be in an inappropriate location.
Updating Santa
Cybaverse updated Santa on their findings and the ability to access to building and what they were able to access. Now that Cybaverse has been able to successfully infiltrate the physical security of the Workshop, Cybaverse had to see what a threat actor was capable of once they had connected to the network.
If you’d like to test the physical security of your business, Cybaverse can help with expert Red Teaming. Contact us today for a scoping call.