Security Information

Social Engineering - The Real E-Terrorism?


One evening, during the graveyard shift, an AOL technical support operator took a call from a hacker. During the hour long conversation the hacker mentioned he had a car for sale. The technical support operator expressed an interest so the hacker sent him an e-mail with a photo of the car attached. When the operator opened the attachment it created a back door that opened a connection out of AOL's network, through the firewall, allowing the hacker full access to the entire internal network of AOL with very little effort on the hacker's part.

The above is a true story and it is an excellent example of one of the biggest threats to an organisation's security - social engineering. It has been described as people hacking and it generally means persuading someone inside a company to volunteer information or assistance.

Examples of techniques employed by hackers include:

  • Unobtrusively observing over your shoulder as you key in your password or PIN.

  • Calling helpdesks with questions or being overly friendly

  • Pretending to be someone in authority.

Social engineering attacks can have devastating consequences for the businesses involved. Accounts can be lost, sensitive information can be compromised, competitive advantage can be wiped out and reputation can be destroyed.

By implementing some simple techniques you can reduce the risk of your organisation becoming a victim or, in the event that you are targeted, keep the consequences to a minimum.

  • Make sure that all staff, especially non-IT staff, are aware of the risk of social engineering and what to do in the event of such an attack.

  • Conduct regular security awareness training so that all staff are kept up to date with security related issues.

  • Implement a formal incident reporting mechanism for all security related incidents to ensure there is a rapid response to any breaches.

  • Ensure that the company has security policies and procedures in place, that all staff are aware of them and that they are followed.

  • Put an information classification system in place to protect sensitive information.

Conduct regular audits, not only on IT systems but also on policies, procedures and personnel so that any potential weaknesses can be addressed as soon as possible.

About The Author

Rhona Aylward has extensive experience in the area of Quality Management and more recently in Information Security Management. She is a qualified Lead Auditor for BS7799 and CEO for Alpha Squared Solutions Ltd.

www.a2solutions.co.uk, raylward@a2solutions.co.uk

MORE RESOURCES:
Funding granted to increase security amid heightened fear of violence - KCRA Sacramento
Funding granted to increase security amid heightened fear of violence  KCRA Sacramento

Elon Musk meeting with Iranian ambassador alarms national security experts - Jewish Insider
Elon Musk meeting with Iranian ambassador alarms national security experts  Jewish Insider

Protecting Trump in a second administration presents unprecedented security challenges - CNN
Protecting Trump in a second administration presents unprecedented security challenges  CNN

Trump blows through transition deadlines, sparking security concerns - Axios
Trump blows through transition deadlines, sparking security concerns  Axios

Homeland Security Department to Release New A.I. Guidance - The New York Times
Homeland Security Department to Release New A.I. Guidance  The New York Times

Officials detail increased D.C. security for certification, inauguration - The Washington Post
Officials detail increased D.C. security for certification, inauguration  The Washington Post

Google Confirms $1 Trillion AI Security Protection For Pixel Users - Forbes
Google Confirms $1 Trillion AI Security Protection For Pixel Users  Forbes

U.S. ambassador bashes Mexico’s security efforts. Mexico’s president pushes back - Los Angeles Times
U.S. ambassador bashes Mexico’s security efforts. Mexico’s president pushes back  Los Angeles Times

Former French security agency head is in court for allegedly spying for LVMH billionaire Bernard Arnault - Fortune
Former French security agency head is in court for allegedly spying for LVMH billionaire Bernard Arnault  Fortune

Brief scuffle between fans mars France-Israel soccer match amid high security - CBS News
Brief scuffle between fans mars France-Israel soccer match amid high security  CBS News

Opinion | Trump’s national security wrecking crew - The Washington Post
Opinion | Trump’s national security wrecking crew  The Washington Post

Rancher, Politician, Trump Ally: Who Is Kristi Noem, the Homeland Security Pick? - The New York Times
Rancher, Politician, Trump Ally: Who Is Kristi Noem, the Homeland Security Pick?  The New York Times

‘Never trust, always verify’: The zero trust approach to network security - United States Army
‘Never trust, always verify’: The zero trust approach to network security  United States Army

France-Israel game: Paris ramps up security after Amsterdam violence - NBC News
France-Israel game: Paris ramps up security after Amsterdam violence  NBC News

Rand Paul has plans to kneecap the nation’s cyber agency - POLITICO
Rand Paul has plans to kneecap the nation’s cyber agency  POLITICO

Brief altercation between fans mars France-Israel soccer match despite heavy security - The Associated Press
Brief altercation between fans mars France-Israel soccer match despite heavy security  The Associated Press

The Fastest Airport Security Line You Don’t Know About - The Wall Street Journal
The Fastest Airport Security Line You Don’t Know About  The Wall Street Journal

Security upgrades coming to Tuskegee University after deadly mass shooting - WSFA
Security upgrades coming to Tuskegee University after deadly mass shooting  WSFA

Security upgrades coming soon to Dougherty County Schools - WALB
Security upgrades coming soon to Dougherty County Schools  WALB

St. Francis Seraph hires security guards for Christmas, Nativity display visitors as crowds still plague area - WCPO 9 Cincinnati
St. Francis Seraph hires security guards for Christmas, Nativity display visitors as crowds still plague area  WCPO 9 Cincinnati

Video: How The Fortinet Security Fabric Is Combatting Cybersecurity Threats And Talent Shortage - Channel Insider
Video: How The Fortinet Security Fabric Is Combatting Cybersecurity Threats And Talent Shortage  Channel Insider

Whistles and boos at tense France-Israel football match - BBC.com
Whistles and boos at tense France-Israel football match  BBC.com

'This Is Pretty Bad': National Security Expert Sounds Alarm On Tulsi Gabbard - HuffPost
'This Is Pretty Bad': National Security Expert Sounds Alarm On Tulsi Gabbard  HuffPost

New Apple security feature reboots iPhones after 3 days, researchers confirm - TechCrunch
New Apple security feature reboots iPhones after 3 days, researchers confirm  TechCrunch

FactFinder: Wichita woman loses thousands of dollars in Apple Security scam - KWCH
FactFinder: Wichita woman loses thousands of dollars in Apple Security scam  KWCH

The campus will be closed to anyone who is not a student, faculty or staff member. - WVTM13 Birmingham
The campus will be closed to anyone who is not a student, faculty or staff member.  WVTM13 Birmingham

Versa unveils VersaONE converged security, networking platform - Network World
Versa unveils VersaONE converged security, networking platform  Network World

Overcome fragmented cloud security operations with unified XDR and SIEM - CSO Online
Overcome fragmented cloud security operations with unified XDR and SIEM  CSO Online

Do Titans QB, Coach Have Job Security? - Sports Illustrated
Do Titans QB, Coach Have Job Security?  Sports Illustrated

Tuskegee president releases security updates following shooting - WIAT - CBS42.com
Tuskegee president releases security updates following shooting  WIAT - CBS42.com

Tuskegee University to overhaul security with round-the-clock policing after mass shooting - AL.com
Tuskegee University to overhaul security with round-the-clock policing after mass shooting  AL.com

Red Hat's new OpenShift delivers AI, edge and security enhancements - ZDNet
Red Hat's new OpenShift delivers AI, edge and security enhancements  ZDNet

Decline in West African coastal fish stocks threatens food security and livelihoods - Phys.org
Decline in West African coastal fish stocks threatens food security and livelihoods  Phys.org

Home security camera captures video of escaped wallaby hopping through Eastern Kentucky - USA TODAY
Home security camera captures video of escaped wallaby hopping through Eastern Kentucky  USA TODAY

FactFinder: Wichita woman loses thousands of dollars in Apple Security scam - KWCH
FactFinder: Wichita woman loses thousands of dollars in Apple Security scam  KWCH

Malco Powerhouse gets ‘OK’ for security fence around parking lot - Action News 5
Malco Powerhouse gets ‘OK’ for security fence around parking lot  Action News 5

First on CNN: Trump picks Kristi Noem to serve as his Homeland Security secretary - CNN
First on CNN: Trump picks Kristi Noem to serve as his Homeland Security secretary  CNN

Major security upgrades coming to Tuskegee University after deadly mass shooting - WSFA
Major security upgrades coming to Tuskegee University after deadly mass shooting  WSFA

Trump names Rep. Mike Waltz as national security adviser - NPR
Trump names Rep. Mike Waltz as national security adviser  NPR

Tuskegee University announces security changes - WSFA
Tuskegee University announces security changes  WSFA

Michael Anton and Sebastian Gorka in the running for deputy national security adviser - POLITICO
Michael Anton and Sebastian Gorka in the running for deputy national security adviser  POLITICO

Downtown St. Louis has new security device that is watching you; here’s how it works - KSDK.com
Downtown St. Louis has new security device that is watching you; here’s how it works  KSDK.com

Homeland Security Department releases framework for using AI in critical infrastructure - The Associated Press
Homeland Security Department releases framework for using AI in critical infrastructure  The Associated Press

The UN cybercrime convention threatens security research. The US should do something about it - CyberScoop
The UN cybercrime convention threatens security research. The US should do something about it  CyberScoop

France draws with Israel in high-security operation to reach Nations League quarterfinals with Italy - The Associated Press
France draws with Israel in high-security operation to reach Nations League quarterfinals with Italy  The Associated Press

Endpoint Security from BlackBerry - BlackBerry
Endpoint Security from BlackBerry  BlackBerry

Tuskegee University Shifts Security, Facilities Leadership - Tuskegee University
Tuskegee University Shifts Security, Facilities Leadership  Tuskegee University

3rd Annual U.S.-Mexico Defense and Security Roundtable - smallwarsjournal
3rd Annual U.S.-Mexico Defense and Security Roundtable  smallwarsjournal

Ambridge Area School District makes security changes - CBS News
Ambridge Area School District makes security changes  CBS News

UTRGV opens new Regional Security Operations Center - KVEO-TV
UTRGV opens new Regional Security Operations Center  KVEO-TV

Sudan: Allies of warring generals ‘enabling the slaughter,’ Security Council hears - UN News
Sudan: Allies of warring generals ‘enabling the slaughter,’ Security Council hears  UN News

Enhanced security and new performing arts center among key projects for Kirksville schools - ktvo.com
Enhanced security and new performing arts center among key projects for Kirksville schools  ktvo.com

Scant crowd and heavy security at Stade de France for Israel game - Reuters
Scant crowd and heavy security at Stade de France for Israel game  Reuters

How Harihara Varma Indukuri Wants to Change Data Security - USA TODAY
How Harihara Varma Indukuri Wants to Change Data Security  USA TODAY

Trump will nominate South Dakota Gov. Kristi Noem for Homeland Security secretary - NPR
Trump will nominate South Dakota Gov. Kristi Noem for Homeland Security secretary  NPR

Bitsight buys dark web security specialist Cybersixgill for $115M - TechCrunch
Bitsight buys dark web security specialist Cybersixgill for $115M  TechCrunch

Nigeria oil output rises to 1.8 million b/d on security measures: NNPC - S&P Global
Nigeria oil output rises to 1.8 million b/d on security measures: NNPC  S&P Global

2024 Duo Trusted Access Report: 5 Key Findings for MSPs to Strengthen Security - Channel E2E
2024 Duo Trusted Access Report: 5 Key Findings for MSPs to Strengthen Security  Channel E2E

Trump asks Mike Waltz to serve as his national security adviser - CNN
Trump asks Mike Waltz to serve as his national security adviser  CNN

France-Israel Soccer Match is Overshadowed by Amsterdam Attack - The New York Times
France-Israel Soccer Match is Overshadowed by Amsterdam Attack  The New York Times

Brock Purdy gains security blanket with return of 49ers playmaker - 49ers Webzone
Brock Purdy gains security blanket with return of 49ers playmaker  49ers Webzone

Akamai: 84% of security professionals experienced an API security incident in the past year - SecurityInfoWatch
Akamai: 84% of security professionals experienced an API security incident in the past year  SecurityInfoWatch

iOS 18 Security Feature Causes iPhone to Reboot After Three Days of Inactivity - MacRumors
iOS 18 Security Feature Causes iPhone to Reboot After Three Days of Inactivity  MacRumors

‘We’re just a target’: Pickleball players call for more security - Camas Washougal Post Record
‘We’re just a target’: Pickleball players call for more security  Camas Washougal Post Record

ESA opens registration for 2024 Town Hall Broadcast - SecurityInfoWatch
ESA opens registration for 2024 Town Hall Broadcast  SecurityInfoWatch

Cloud Security Alliance issues comprehensive guidelines for auditing AI systems - SecurityInfoWatch
Cloud Security Alliance issues comprehensive guidelines for auditing AI systems  SecurityInfoWatch

Trump picks Kristi Noem to be Homeland Security secretary - ABC News
Trump picks Kristi Noem to be Homeland Security secretary  ABC News

Trump says he will nominate Kristi Noem for homeland security secretary - NBC News
Trump says he will nominate Kristi Noem for homeland security secretary  NBC News

Trump picks Kristi Noem for homeland security secretary - Reuters
Trump picks Kristi Noem for homeland security secretary  Reuters

New infosec products of the week: November 15, 2024 - Help Net Security
New infosec products of the week: November 15, 2024  Help Net Security

Tom Homan, Trump’s ‘Border Czar,’ on Border Security - The New York Times
Tom Homan, Trump’s ‘Border Czar,’ on Border Security  The New York Times

Verizon to Advance Knightscope’s Security Robot Capabilities - Executive Gov
Verizon to Advance Knightscope’s Security Robot Capabilities  Executive Gov

Why Kristi Noem got the Homeland Security job - POLITICO
Why Kristi Noem got the Homeland Security job  POLITICO

Linn County’s Food for Health pilot program aims to improve food security, support local economy - KEZI TV
Linn County’s Food for Health pilot program aims to improve food security, support local economy  KEZI TV

South Florida campus security officer arrested after attempting to meet minor for sex - WPBF West Palm Beach
South Florida campus security officer arrested after attempting to meet minor for sex  WPBF West Palm Beach

Trump’s National Security Team Keeps Getting More Extreme - The New Republic
Trump’s National Security Team Keeps Getting More Extreme  The New Republic

Trump names Florida’s Rep. Mike Waltz as national security adviser - Nebraska Examiner
Trump names Florida’s Rep. Mike Waltz as national security adviser  Nebraska Examiner

National security picks signal direction of Trump's foreign policy plans - PBS NewsHour
National security picks signal direction of Trump's foreign policy plans  PBS NewsHour

Mexican Officials Arrest Top Security Official in Mayor’s Beheading - The New York Times
Mexican Officials Arrest Top Security Official in Mayor’s Beheading  The New York Times

Boeing Defense, Space & Security - Boeing
Boeing Defense, Space & Security  Boeing

Silverfort Buys Rezonate to Fortify Identity Security Muscle - BankInfoSecurity.com
Silverfort Buys Rezonate to Fortify Identity Security Muscle  BankInfoSecurity.com

Who is Kristi Noem, Trump’s pick for homeland security secretary - CNN
Who is Kristi Noem, Trump’s pick for homeland security secretary  CNN

County tours Missoula detention center, satisfied with safety and security - KPAX News
County tours Missoula detention center, satisfied with safety and security  KPAX News

Rand Paul Will Continue His COVID-19 Investigations From Atop the Senate Homeland Security Committee - Reason
Rand Paul Will Continue His COVID-19 Investigations From Atop the Senate Homeland Security Committee  Reason

NIST report on hardware security risks reveals 98 failure scenarios - Help Net Security
NIST report on hardware security risks reveals 98 failure scenarios  Help Net Security

Lamar CISD invests in safety, security amid rapid growth - Community Impact
Lamar CISD invests in safety, security amid rapid growth  Community Impact

Trump Picks Kristi Noem for Homeland Security Secretary - The New York Times
Trump Picks Kristi Noem for Homeland Security Secretary  The New York Times

Trump begins to fill foreign policy and national security teams for 2nd term - PBS NewsHour
Trump begins to fill foreign policy and national security teams for 2nd term  PBS NewsHour

Trump officially nominates SD Gov. Kristi Noem to lead Department of Homeland Security - Argus Leader
Trump officially nominates SD Gov. Kristi Noem to lead Department of Homeland Security  Argus Leader

Secret Service agent breached security, took lover to Obama's beach house: Memoir - ABC News
Secret Service agent breached security, took lover to Obama's beach house: Memoir  ABC News

11/14/24 National Security and Korean News and Commentary - smallwarsjournal
11/14/24 National Security and Korean News and Commentary  smallwarsjournal

Microsoft Patch Tuesday, November 2024 Edition - Krebs on Security
Microsoft Patch Tuesday, November 2024 Edition  Krebs on Security

France tie with Israel amid brief clashes in stands - ESPN
France tie with Israel amid brief clashes in stands  ESPN

Mexico’s ‘hugs, not bullets’ security strategy has failed, says US Ambassador Ken Salazar - Mexico News Daily
Mexico’s ‘hugs, not bullets’ security strategy has failed, says US Ambassador Ken Salazar  Mexico News Daily

Security guard turned gunman: Christopher Farrell's fatal rampage in downtown San Diego - CBS News 8
Security guard turned gunman: Christopher Farrell's fatal rampage in downtown San Diego  CBS News 8

Fans scuffle despite heavy security presence at France-Israel soccer match - CNN
Fans scuffle despite heavy security presence at France-Israel soccer match  CNN

Who Is Michael Waltz, Trump’s Pick to Be National Security Adviser? - The New York Times
Who Is Michael Waltz, Trump’s Pick to Be National Security Adviser?  The New York Times

Verizon partners with Knightscope to power connectivity for public safety - SecurityInfoWatch
Verizon partners with Knightscope to power connectivity for public safety  SecurityInfoWatch

Federal officials warn Boston churches to increase security after wave of arson attacks - CatholicVote org
Federal officials warn Boston churches to increase security after wave of arson attacks  CatholicVote org

Trump picks South Dakota Gov. Kristi Noem to head Homeland Security Department - USA TODAY
Trump picks South Dakota Gov. Kristi Noem to head Homeland Security Department  USA TODAY

 RELATED ARTICLES
Delete Cookies: New-Age Diet or Common Sense Internet Security?
No, this article isn't about some new, lose-20-pounds-in-a-week, certified-by-some-tan-Southern-California-doctor diet. It's about cookies on your computer - what they are, why they are there, and what to do about them.
The Importance of Protecting Your PC from Viruses and Spam
Today the internet is a mine field of malicious code looking to harm your computer. Hackers want to have access to your PC for both fun and profit.
Viruses and Worms: The Problems and Their Solutions
History and BackgroundThe virus was one of the first ever threats to computer security. It brought a whole new fear upon computer users.
The Risk Of Electronic Fraud & Identity Theft
Electronic Fraud and Identity Theft-----------------------------------Human beings are pretty sensible when presented with an imminent threat or risk. That is, if it's staring us directly in the face.
Technology and Techniques Used in Industrial Espionage
Industrial Espionage. These methodologies are being used on a daily basis by competitors maybe even against you.
Protecting Your Children On The Internet
If you are a parent, as am I, I think we can agree there is little else more important than keeping our children safe and protected. It's difficult enough keeping them safe from the unscrupulous people we read about in the news, but dealing with children and the Internet takes it to a completely new level.
Phishing: A Scary Way of Life
The Federal Bureau of Investigation has identified "phishing" as the "hottest and most troubling new scam on the Internet."What is Phishing?Phishing is a scam initiated via e-mail.
Breaking Into Your PC: News...
You'd better learn news from media, not from emails, security experts warn us users again.Numerous emails with "breaking news" in subject lines are appearing in users' inboxes.
5 Tips For An Unbreakable Password
Despite the current wave of identity theft and corporate security breaches it's amazing how very few people treat their passwords with any level of seriousness. Most computers users, both at home and in the office, see passwords as a nuisance and therefore make them as easy to remember as possible.
Road Warrior At Risk: The Dangers Of Ad-Hoc Wireless Networking
Airport Menace: The Wireless Peeping Tom----------------------------------------As a network security consultant, I travel quite frequently. At times, it seems like the airport is my second home.
Dont Allow Hackers to Take Out Money from Your Bank Account
If you know what is the 'Fishing' then it's very easyto understand the definition of 'Phishing'. Justreplace letter 'F' from the word Fishing with 'Ph'.
How To Cover Your Tracks On The Internet
Every single time you access a website, you leave tracks. Tracks that others can access.
How to Fight Spyware
If you are wondering how to fight spyware for safe web surfing, this Internet privacy article will answer some of your questions. By now you have probably heard about the dangers of spyware.
Internet Identity Theft - How You Can Shield Yourself
With the advent of the World Wide Web, a whole new breed of criminals have surfaced, posing threats to more than just our material assets, but also to our very identities. Although there are a number of effective methods for protecting yourself from internet identity theft, not everyone takes the necessary steps to initiate such a plan.
Phishing
Recently I have received email from my bank/credit Card Company, eBay & pay pal saying that my account has possibly been compromised and I need to confirm my details and password in order to get continued access.Spam email now has a new and more frightening variant, it's called phishing and it has been made by criminals and hackers who aim at getting unwitting consumers to reveal account numbers and passwords.
Information Security for E-businessmen: Just a Couple of Ideas
If you constantly deal with bank or electronic accounts, it must beyour worst nightmare--to wake up and learn that you are a bankrupt.Some crook stole your personal data and all the money you have beensweating blood for years has flown to somebody else's account.
How Did This Happen to Me? Top 10 Ways to Get Spyware or Viruses on Your Computer
If you use the internet, you have probably been infected with a virus, trojan or spyware. According to the SANS Internet Storm Center, the average unprotected PC is infected within 20 minutes of normal internet usage.
The 5 Critical Steps to Protecting Your Computer on the Internet
Spyware, viruses and worms..
Spyware is Not Like a Nosy Neighbor
Remember the television show about the nosy neighbor Mrs. Kravitzalways peeking out her window or over the fence, sometimes evenknocking on the door just to find out what was going on in herneighborhood? If you don't wait a month or so and the DVD orthe movie will be out.
Spyware Removal
Spyware SolutionProbably Today's Biggest Computer Problem.You Suffer Without Knowing Your PC is Infected!"The effects can be devastating.

home | site map
© 2006