hi
say a scenario like this. Staff A poses as the helpdesk and calls up Staff B. Staff A asked for Staff B's password to do some administration stuff..Thinking that Staff A is helpdesk , Staff B gives the password to him. How can we prevent such things from happening.? Security awareness is one way. How about preventing this from a technical perspective. ?
thanks