Social engineering refers to the manipulation of people to gain private information

Social engineering refers to the manipulation of people to gain private information

Social engineering refers to the manipulation of people to gain private information (such as passwords, bank account details) and or access information systems through abstract and psychological approaches. The main motives for social engineers is to gather information for a future attack, commit fraud or gain access for malicious activity.
The most popular forms of social engineering attacks include baiting, phishing and tailgating and scareware.
Baiting is when a perpetrator leaves a malware infected physical device (e.g. USB) in a noticeable location such as the photocopier room, bathroom or kitchen. The perpetrator will label the USB with appealing names like salary records in hopes an employee will find the device. When the employee finds the device and loads it onto their computer, they will unintentially install malware.
Another common technique is phishing. Phishing involves a malicious party who sends fraudulent emails or has created untrustworthy websites to attain private information. For example, the party disguises themselves in the email as a trusted figure in an organisation (e.g. IT manager) or the company itself. The message is designed to hoax the recipient into sharing personal or financial information or selecting a link which installs malware (e.g. virus).
Tailgating is designed to enable an attacker to enter restricted areas controlled with locks and card entry. For example, an attacker who follows an employee very closely towards a secure room and when the employee enters, the attacker asks the employee to hold the door for them. As a result, the attacker gains access to isolated company information to perform malicious actions.

Related posts:

  1. 2411095159385 JIMMA UNIVERSITY COLLEGE OF NATURAL SCIENCES DEPARTMENT OF INFORMATION SCIENCE Examining the Impact of Tablet Devices in Digital Resources Usage on Academic Performance
  2. Data Breach Investigations Report Introduction Data Breach Investigations Report from Verizon defines an incident as a “security event that compromises the integrity
  3. WORKPLACE VIOLENCE AGAINST NURSES WORKING IN EMERGENCY DEPARTMENTS AT PUBLIC HOSPITALS LAHORE Submitted by M Salman Ijaz SUPERVISOR
  4. 1
  5. “Security System in Train” A PROJECT REPORT Submitted by Vaibhavi Parekh
  6. CHAPTER ONE
  7. Research Method for Business A study on the impact of sexual harassment on employee turnover intention in the public sector of the capital city of Maldives Khadeeja Hussain Reg no
  8. SQL Injection Attack and detection using hybrid Algorithm 5
  9. Resident version.Version 0. 1————First released-Include mercenaries game,
  10. The second theme that was discovered during the research was the different methods that perpetrators use to lure in their victims to be able to commit such terrible acts of sexual assault
0
Company Information
Categories
Recent Posts

©  2024 Campuscrosswalk. Built using WordPress and the Materialis Theme

x

Hi!
I'm Alfred!

We can help in obtaining an essay which suits your individual requirements. What do you think?

Check it out