Presentation is loading. Please wait.

Presentation is loading. Please wait.

Aleksandra Kurbatova 111611 IVCM.  What is social engineering?  Types  Pretexting  …  Summary  Conclusion.

Published byAlice Foster Modified over 10 years ago

Similar presentations

Presentation on theme: "Aleksandra Kurbatova 111611 IVCM.  What is social engineering?  Types  Pretexting  …  Summary  Conclusion."— Presentation transcript:

1 Aleksandra Kurbatova 111611 IVCM

2  What is social engineering?  Types  Pretexting  …  Summary  Conclusion

3  Quite a young term  Kevin Mitnick  Art of manipulating people  No face-to-face communication with the victim

4  People are the largest vulnerabilities in any network.  Social engineering is based on decision making of human being.

5  Pretexting  Diversion theft  Quid pro quo  Phishing  Baiting  IVR or phone phishing

6  Created scenario to persuade target to release information  Research  Gathering information in advance about victim  Build the trust  Rely on personal past experience

7  “Corner game”  Connected with courier or transport company  Need to persuade the driver near the address  Security van outside the shop when it should not be there

8  From Latin “what for what”  Indicates exchanges  “Something for something” in social engineering  Can exchange a password a pen In survay, for instance

9  Method of fraudulently obtaining private information  E-mail with verification  Link to the fake web-page which look like real

10  Leaving some CD/DVD/USB with malicious program where it will be definitely found  Have name like “salary from the last month”  Curious employee will run it to see the context  Access will be given by 3 rd parties even without knowing

11  Interactive Voice Response  Vishing (voice + phishing)  Criminal practice over the telephone  Victim gets the message to call to the bank  Automated text ask to change password or tell credit card number

12  We try to secure our system, to find all the vulnerabilities, to mitigate the risks but THE WEAKEST LINK in ANY system is PERSON  Social engineering is based of human desision making  There are several types pretexting, phishing, vishing, baithing and so on  Collecting information about the victim will bring closer to the success

13  We should educate people more that they should not easily trust to the others  Password should be hard enouth and hardly guessible  No secret question like “mothers surname or pet name” should be ussed  Check all the time the information which you get, if it is needed to call to the bank, use the phone number you have, not the one which is provided

14

15

Download ppt "Aleksandra Kurbatova 111611 IVCM.  What is social engineering?  Types  Pretexting  …  Summary  Conclusion."

Similar presentations

What Are Scams? Scams are designed to trick you into giving away your money or your personal details. Scams come to you in many forms – by mail, email,

What Are Scams? Scams are designed to trick you into giving away your money or your personal details. Scams come to you in many forms – by mail, ,
Online Privacy A Module of the CYC Course – Personal Security 8-9-10.

Online Privacy A Module of the CYC Course – Personal Security
SOCIAL ENGINEERING ATTACKS GOWTHAM RAM RAJARAM VIGNESH SELVAKUMAR SELLAMUTHU.

SOCIAL ENGINEERING ATTACKS GOWTHAM RAM RAJARAM VIGNESH SELVAKUMAR SELLAMUTHU.
The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.

The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.
The Art of Social Hacking

The Art of Social Hacking
Identity Theft Someone steals your personal information for his/her own gain It’s a crime!

Identity Theft Someone steals your personal information for his/her own gain It’s a crime!
How It Applies In A Virtual World. Phishing Definition: n. To request confidential information over the Internet under false pretenses in order to fraudulently.

How It Applies In A Virtual World. Phishing Definition: n. To request confidential information over the Internet under false pretenses in order to fraudulently.
What is identity theft, and how can you protect yourself from it?

What is identity theft, and how can you protect yourself from it?
SECURITY AND SOCIAL ENGINEERING US Department of Commerce Office of Security Updated 09/26/11 Security is Everyone's Responsibility – See Something, Say.

SECURITY AND SOCIAL ENGINEERING US Department of Commerce Office of Security Updated 09/26/11 Security is Everyone's Responsibility – See Something, Say.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
Scams and Schemes. Today’s Objective I can understand what identity theft is and why it is important to guard against it, I can recognize strategies that.

Scams and Schemes. Today’s Objective I can understand what identity theft is and why it is important to guard against it, I can recognize strategies that.
BTT12OI.  Do you know someone who has been scammed? What happened?  Been tricked into sending someone else money (not who they thought they were) 

BTT12OI.  Do you know someone who has been scammed? What happened?  Been tricked into sending someone else money (not who they thought they were) 
DIGITAL CITIZENSHIP 6 TH – 8 TH UNIT 1 LESSON 3 SCAMS & SCHEMES What is identity theft, and how can you protect yourself from it?

DIGITAL CITIZENSHIP 6 TH – 8 TH UNIT 1 LESSON 3 SCAMS & SCHEMES What is identity theft, and how can you protect yourself from it?
Internet Safety CSA 105 1.0 September 21, 2010. Internet Threats Malware (viruses) Spyware Spam Hackers Cyber-criminals.

Internet Safety CSA September 21, Internet Threats Malware (viruses) Spyware Spam Hackers Cyber-criminals.
Social Engineering UTHSC Information Security Team.

Social Engineering UTHSC Information Security Team.
Social Engineering Training. Why Social Engineering Training? The Department of Energy (DOE) authorized the Red Team to perform vulnerability assessments.

Social Engineering Training. Why Social Engineering Training? The Department of Energy (DOE) authorized the Red Team to perform vulnerability assessments.
PHISHING AND SPAM EMAIL INTRODUCTION There’s a good chance that in the past week you have received at least one email that pretends to be from your bank,

PHISHING AND SPAM INTRODUCTION There’s a good chance that in the past week you have received at least one that pretends to be from your bank,
Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.

Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.
Day 3 Cybersafety Presented by FJUHSD Teacher Librarian.

Day 3 Cybersafety Presented by FJUHSD Teacher Librarian.
Cybersafety.

Cybersafety.

Similar presentations

Ads by Google