

Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
what is social engineering attack and how to mitigate them
Typology: Assignments
1 / 2
This page cannot be seen from the preview
Don't miss anything!


they are upgrading the wifi in adjacent offices with a brand new technology, and had one leftover router. If the office staff would like, he can install it here. If they agree, they think they're getting early access to new technology while the hacker is actually establishing a foothold on the network. Urgency is the fifth tactic of social engineers. With this tactic, the hacker creates a situation where people feel pressured to act quickly because time is running out. For example, a hacker might show up at an office and say he is a network technician there to perform a critical repair. He needs access to a sensitive networking closet. When staff refuse to grant access, he can say that he has another appointment and can't waste time there. If they open the door now, he'll perform the repair. Otherwise, the network will probably go down, and they'll be out of luck. The final social engineering tactic is simple, familiarity or liking. People will want to say yes to someone they like. Social engineers will use flattery, false compliments, and fake relationships to get on a target's good side, and influence their activities. The best way to protect your organization against social engineering attacks is user education. Everyone in the organization must understand that social engineers use these tactics to gain sensitive information, and be watchful for outsiders trying to use the tactics of authority and trust, intimidation, consensus and social proof, scarcity, urgency, and familiarity and liking against them and others in the organization. In this case, wariness is a virtue.