Read article here
Increased social media usage means personal information is more exposed than ever before. Fraudsters can leverage this to enable better social engineering attacks. However, employees can protect themselves. First, if employees use strong passwords on their social media sites, the threat of social engineering attacks is reduced. Additionally, 60% of employee social media profiles are completely public meaning anyone can see their content. If employees make their accounts private the threat of social engineering is reduced even further. Other approaches that can help are making sure that employees are well educated about the risk of making their information private and the threat of social engineering. Finally, in order to provide employees with a safety net, companies should implement safeguards so that if employees do fall prey to social engineering it doesn’t lead to an organization wide data breach.
Many good points Anthony. There are many steps people can take to avoid being in a situation where they will be targeted by an effective social engineering campaign. Too often I see what should be private information made public on social media. The first step of securing ones personal info, don’t post it. Don’t tell them what team you are on at work, the specific projects you are working on, or other private job related info. My company has made it part of their policy not allowing employees to even put their job description in Linkedin.