Dark Mode
Capec-406 Detail
Dumpster Diving
Detailed Physical Security Typical Severity: Low
Parents: 150
An adversary cases an establishment and searches through trash bins, dumpsters, or areas where company information may have been accidentally discarded for information items which may be useful to the dumpster diver. The devastating nature of the items and/or information found can be anything from medical records, resumes, personal photos and emails, bank statements, account details or information about software, tech support logs and so much more, including hardware devices. By collecting this information an adversary may be able to learn important facts about the person or organization that play a role in helping the adversary in their attack.
Not present
| External ID | Source | Link | Description |
|---|---|---|---|
| CAPEC-406 | capec | https://capec.mitre.org/data/definitions/406.html | |
| REF-348 | reference_from_CAPEC | http://www.social-engineer.org | The Official Social Engineering Portal, Social-Engineer.org, Tick Tock Computers, LLC |
Not present
- An adversary must have physical access to the dumpster or downstream processing facility.
Not present
Not present
| Confidentiality |
|---|
| Other (Documents and materials improperly disposed of can lead to information disclosure if an adversary comes across it.) |
Not present