Presentation is loading. Please wait.

Presentation is loading. Please wait.

Social Engineering: The Art of Manipulation

Published byAnnice Williamson Modified over 6 years ago

Similar presentations

Presentation on theme: "Social Engineering: The Art of Manipulation"— Presentation transcript:

1 Social Engineering: The Art of Manipulation
Organized by Jeremy Smith, Freshman at Indiana University of Pennsylvania

2 Roadmap What is social engineering? The physical techniques/methods
Psychological methods Methods to avoid it

3 What is Social Engineering?
The act of manipulation by one person to another to accomplish goals that may or may not be in the “target’s” best interest. “The art and science of getting people to comply to your wishes”

4 “Phishing” for the goods
Fraudulently obtaining private information Usually by sending a false containing attachments.

5 Pretexting The person often uses impersonations.
Using an invented scenario to engage a victim in a way that increases the chance of him/her giving information. The person often uses impersonations. Assume the character of another person

6 Methods and Techniques
Dumpster Diving “trashing” Company phone books, memos, calendars of events & vacations, disks & tapes etc.

7 Social engineering by phone
The most prevalent type of social engineering Once again, the hacker will imitate a person of authority and gradually get information from the target. E.g. AT&T, Verizon, Banks Help desk employees are vulnerable “They are trained to be friendly”

8 The “REAL” hackers are online
How many passwords do you use? “catch one catch all” Usually by sending an that appears to come from a legitimate business, bank or other company requesting “verification”.

9 Psychological Techniques
Impersonations A repairman, IT support, trusted third party, or a fellow employee Conformity If the hacker acts as a manager or authority figure Alleviates stress on the employee When in doubt, they will simply be nice. “The Science of Behavior and Mental Processes”

10 Conclusion: What to look out for
Social engineering is generally a hacker’s clever manipulation of the natural human tendency to trust. DO NOT reveal personal or financial information out via . Pay attention to the URL Small differences like their domain name Shred papers before putting them into the dumpster Do ID checks whether it’s done over the phone or in person Make employees aware of impersonation technique

11 Sources http://www.social-engineer.org/
Ask.com for images

Download ppt "Social Engineering: The Art of Manipulation"

Similar presentations

Social Engineering Training. Training Goals Increase Laboratory Awareness. Provide the tools required to identify, avoid and report advanced Social Engineering.

Social Engineering Training. Training Goals Increase Laboratory Awareness. Provide the tools required to identify, avoid and report advanced Social Engineering.
Kelly Corning Julie Sharp.  Human-based techniques: impersonation  Computer-based techniques: malware and scams.

Kelly Corning Julie Sharp.  Human-based techniques: impersonation  Computer-based techniques: malware and scams.
Social Network Security Issues: Social Engineering and Phishing Attacks Jeffrey Allen, Leon Gomez, Marlon Green, Phillip Ricciardi, Christian Sanabria.

Social Network Security Issues: Social Engineering and Phishing Attacks Jeffrey Allen, Leon Gomez, Marlon Green, Phillip Ricciardi, Christian Sanabria.
1. What is Identity Theft? 2. How Do Thieves Steal An Identity? 3. What Do Thieves Do with Stolen Identities? 4. What Can I Do To Avoid Becoming a Victim?

1. What is Identity Theft? 2. How Do Thieves Steal An Identity? 3. What Do Thieves Do with Stolen Identities? 4. What Can I Do To Avoid Becoming a Victim?
The Dangers of Identity Theft By: Hannah Wolin 7 th Grade Marshall Middle School Anderson.

The Dangers of Identity Theft By: Hannah Wolin 7 th Grade Marshall Middle School Anderson.
The Art of Social Hacking

The Art of Social Hacking
Identity Theft: How to Protect Yourself. Identity Theft Identity theft defined:  the crime of obtaining the personal or financial information of another.

Identity Theft: How to Protect Yourself. Identity Theft Identity theft defined:  the crime of obtaining the personal or financial information of another.
Identity Theft.

Identity Theft.
How It Applies In A Virtual World. Phishing Definition: n. To request confidential information over the Internet under false pretenses in order to fraudulently.

How It Applies In A Virtual World. Phishing Definition: n. To request confidential information over the Internet under false pretenses in order to fraudulently.
Aleksandra Kurbatova 111611 IVCM.  What is social engineering?  Types  Pretexting  …  Summary  Conclusion.

Aleksandra Kurbatova IVCM.  What is social engineering?  Types  Pretexting  …  Summary  Conclusion.
Social Engineering – Threats & Concerns Avisek Ghosh, CISA CISSP Sr. Manager – Corporate Security Cognizant Technology Solutions.

Social Engineering – Threats & Concerns Avisek Ghosh, CISA CISSP Sr. Manager – Corporate Security Cognizant Technology Solutions.
Social Engineering J Nivethan. Social Engineering The process of deceiving people into giving away access or confidential information Onlinne Phone Offline.

Social Engineering J Nivethan. Social Engineering The process of deceiving people into giving away access or confidential information Onlinne Phone Offline.
Social Engineering Networks Reid Chapman Ciaran Hannigan.

Social Engineering Networks Reid Chapman Ciaran Hannigan.
Presented by: Casey Mullins Social Engineering - Persuasion -

Presented by: Casey Mullins Social Engineering - Persuasion -
The Art of Deception - Controlling Human Element of Security - Shohei Hagiwara November 17th, 2009.

The Art of Deception - Controlling Human Element of Security - Shohei Hagiwara November 17th, 2009.
This work is supported by the National Science Foundation under Grant Number DUE-0302909. Any opinions, findings and conclusions or recommendations expressed.

This work is supported by the National Science Foundation under Grant Number DUE Any opinions, findings and conclusions or recommendations expressed.
1 Social Engineering Dr.Talal Alkharobi. 2 Social Engineering - Definition Webster — management of human beings in accordance with their place and function.

1 Social Engineering Dr.Talal Alkharobi. 2 Social Engineering - Definition Webster — management of human beings in accordance with their place and function.
Social Engineering PA Turnpike Commission. “Social Engineering is the practice of obtaining confidential information by manipulation of legitimate users”

Social Engineering PA Turnpike Commission. “Social Engineering is the practice of obtaining confidential information by manipulation of legitimate users”
BTT12OI.  Do you know someone who has been scammed? What happened?  Been tricked into sending someone else money (not who they thought they were) 

BTT12OI.  Do you know someone who has been scammed? What happened?  Been tricked into sending someone else money (not who they thought they were) 
It could be you! Or is it?  Identity theft is when someone uses your personally identifying information, like your name, Social Security number, or.

It could be you! Or is it?  Identity theft is when someone uses your personally identifying information, like your name, Social Security number, or.

Similar presentations

Ads by Google