People Hacking: The Art of Social Engineering
ABSTRACT
Social engineering is one of the most overlooked aspects of information security and yet it is the easiest way for someone – usually an employee - to gain access to restricted information on a computer network. Attacks can be either physical or psychological; each can be equally effective in acquiring confidential information. Methods used to get information can be either human- or computer-based, with different psychological reasons why each method works. Protecting against social engineers boils down to policies that guard against their attacks, but these policies must also be complemented with an effective security awareness program in order to be successful.
INTRODUCTION
Imagine a local banking company. The CIO is out of town on business. A group of strangers walks in early one morning, and by lunchtime they walk out with access to anything they want on the company’s network. How did this happen?......
Join Now or Login to view the rest of this paper.
Approximate Word Count: 4244
Approximate Pages: 17 (260 words per double-spaced page) |