Last week I watched the movie "All In", to be honest, after watching it, I felt a mix of emotions...
The development and application of technology can bring many positive impacts to life, but at the same time, it can also be used in negative and harmful ways, which can be a disaster.
Today, I will list the technology stack that appeared in the movie, so that you can have a better viewing experience after understanding these technologies~
This article contains spoilers, so if you are planning to watch the original movie in the cinema, you can bookmark this article and come back to read it after watching the movie.
SQL Injection Attack#
After being treated unfairly, Pan Sheng hacked into the hotel's internal system and tampered with the projection information during a meeting.
From the limited screen information, it is not difficult to see that Pan Sheng used SQL injection to attack the hotel's management system and obtained admin privileges.
From this image, you can almost see the complete command line instructions:
python sqlmap.py -u "https://pms.arey-hilmon.com/orders/detail?id=13260994" --random-agent --batch -D pms_arey-hilman_com -T users -C "username,password" –drop
Through Pan Sheng's attack, everyone must know what the admin password of the hotel is, right?
Web Scraping#
After arriving in "Mianbei", Pan Sheng was forced to write a web scraper to collect information from a subtitle group.
The X-pider web scraping tool in the movie is not something I have heard of in real life. It may be a framework created specifically for the movie or by Pan Sheng himself.
In the movie, after Pan Sheng scraped the email addresses of the subtitle group, the "Mianbei" group sent them "cooperation" emails. As long as the subtitle group inserted "advertisements", they would receive corresponding rewards from the "Mianbei" group.
Automated Phishing Program#
In the later part of the movie, Pan Sheng proposed to collaborate with Manager Lu to write an automated phishing program. It aimed to use AI and algorithms to automate a large part of the manual work.
However, the released workers were sold to another scam group...
With current technology, in a group of hundreds of users, it is possible that everyone except you is a bot (AI).
The Most Powerful Technology in the Movie#
None of the aforementioned technologies in the movie are the most powerful.
In the movie, and even in real life, the most powerful technology is probably social engineering attacks.
Social engineering attacks refer to network attacks carried out using "social engineering" techniques.
In computer science, social engineering refers to influencing others' psychology through legitimate communication to make them take certain actions or reveal confidential information.
That's why Pan Sheng, despite his high intelligence, was easily deceived by the "Mianbei" group.
Because the "Mianbei" group may understand Pan Sheng even better than himself, knowing his strengths and weaknesses.
The reason why the female lead, Anna, was deceived to go to "Mianbei" is different from Pan Sheng. Anna went to "Mianbei" voluntarily after falling into a trap.
And that trap was tailor-made for Anna, with one step leading to another.
Conclusion#
Some people say, "As long as you're not greedy, you won't be deceived," and that is partly true. But I believe it is more important to protect personal information from being leaked.
If personal information is leaked and malicious individuals use it to devise schemes against you or your family, the consequences can be unimaginable.
For example:
If all the information about my family is leaked, and then scammers call my mom and find out that my phone is turned off, they can immediately call my mom and say that I am in trouble and need bail money.
At this moment, if my mom cannot reach me by phone, she might just send the money.
This scheme can be completed in just 20 minutes.
And this is just an example of a scam from a few years ago, the schemes nowadays are probably even more sophisticated.