Social Engineering:
- Human behavior of social engineering(attack vs. attacker): Financial gain, self-interest, Revenge, external pressures
- Reverse social engineering: enticed to ask the aggressor for help(through tricking them), aggressor offers help just to make sure the victim remains unsuspicious while the attacker probes more
- Counter-measures: creating controls (training/policies/security/management/…)
- Perform regular reviews that the controls are working as created.
- Simulate an attack(hire pen testing specialists)
Question for the class:
- Have you ever been a victim to social engineering?
- What’s one physical control that can be used to mitigate chances of a social engineering attack?
Leave a Reply
You must be logged in to post a comment.