Social Engineering- Cyber Security

Social Engineering

Social engineering is a technique to influence or deceive people to obtain information or perform some action. People are the weak link in security and this principle makes social engineering possible. A social engineer generally uses a mobile or Internet to make people do something that is illegal. Social engineering is the art of exploiting the trust of people.

There are two main categories of social engineering: 

  • Human-based social engineering 
  • Computer-based social engineering

Human-Based Social Engineering

Refers to person-to-person interaction to get the desired information. Examples include: 

  • Impersonating an employee or valid-user 
  • Posing as an important user 
  • Using a third person 
  • Calling as technical support
  • Shoulder surfing 
  • Dumpster diving

Computer-based Social Engineering

Refers to an attempt to get the desired information using a computer or software. Examples include: 

  • Fake e-mails (phishing) 
  • E-mail attachments 
  • Pop-up windows

Comments

Post a Comment

Popular posts from this blog

Cybernatics

The term cyber had its origin with the word cybernatics which deals with information and its use. Cybernatics is the science that overlaps the fields of neurophysiology, information theory, computing machinery and automation
Read more

Cyber Criminals in Cyber Security

Cybercriminals are people who commit cybercrimes. Based on the motivation for committing cybercrimes, cybercriminals can be divided into three categories or types as given below: Cybercriminals who are hungry for recognition Cybercriminals who are not interested in recognition Cybercriminals who are insiders
Read more

Cyberspace

Cyberspace is "a network of computer networks or devices that uses the TCP/IP for communication to facilitate transmission and exchange of data." The term cyberspace was coined by " William Gibson" , a science fiction writer, in his Sci-fi novel, " Neuomancer ".
Read more