SOCIAL ENGINEERING : AN APPROACH TO HACK HUMAN MINDS.........................
INTRODUCTION:
It is an art of deception.Social engineering is an approach to gain access to information through misrepresentation.It can be called as the manipulation of people to obtain information without realising that a security breach is occurring.It may take the form of impersonating via telephone or in person and through email. Some emails lead the recipient into opening an attachment that activates a malicious program in to your computer.
The main reason behind the social engineering is like careless talking about business, the office and personal information with an unauthorised person. You may also be one of the victim of the unauthorised person if you also make a mistake like above talks.So be careful from being social engineered from an unauthorised person as it may lead to harm your confidential information or your office or organisation's secrets.
HOW A SOCIAL ENGINEER DONE ALL THIS....????
* Social engineering can be done in many ways like in public places, gossips
bla bla bla......
* A Social engineer may meet you outside of your workplace, or organisation
and may ask you about your work or how your organisation does this
things.
* A social engineer may ask your identity card to gain your personal
information about your school, organisation etc.
* A social engineer may approach you either via a telephone or email and pose
as a person interest to work with you and later come to know about all your
personal details and may ask your user id, password or other details like
systems and network information.
* The main goal of social engineering is same as hacking in general such as
trying to gain unauthorised access to systems and personal information to
commit fraud, network intrusion , identity theft or simply disrupt the
system and network.
MAKE YOURSELF SECURE FROM BEING SOCIAL ENGINEERED:
* Don't send sensitive information over the Internet before checking a website's
security. Pay attention to the URL of a website. Malicious websites may look
identical to a legitimate website, but the URL contains the variations say
spellings etc. example: https://www.faceb00k.com instead of
https://www.facebook.com
* Don't provide personal or financial information in email and do not respond to
emails asking for this informations.
* Don't provide personal information or information about your organisation
including its structure or networks to a unauthorised person.
* Be cautious because social engineers try to fool you by creating false situation
and make you to believe in order to collect your confidential informations.
* If you are in doubt in opening an email or if you know that you have received a
phising email, then don't respond to it and don't even click the links you received
from untrusted sources.
* Don't give any financial information to unknown people over phone, confirm to
whom you are speaking and cross check the concern company or bank before
giving any information.
INTRODUCTION:
It is an art of deception.Social engineering is an approach to gain access to information through misrepresentation.It can be called as the manipulation of people to obtain information without realising that a security breach is occurring.It may take the form of impersonating via telephone or in person and through email. Some emails lead the recipient into opening an attachment that activates a malicious program in to your computer.
The main reason behind the social engineering is like careless talking about business, the office and personal information with an unauthorised person. You may also be one of the victim of the unauthorised person if you also make a mistake like above talks.So be careful from being social engineered from an unauthorised person as it may lead to harm your confidential information or your office or organisation's secrets.
HOW A SOCIAL ENGINEER DONE ALL THIS....????
* Social engineering can be done in many ways like in public places, gossips
bla bla bla......
* A Social engineer may meet you outside of your workplace, or organisation
and may ask you about your work or how your organisation does this
things.
* A social engineer may ask your identity card to gain your personal
information about your school, organisation etc.
* A social engineer may approach you either via a telephone or email and pose
as a person interest to work with you and later come to know about all your
personal details and may ask your user id, password or other details like
systems and network information.
* The main goal of social engineering is same as hacking in general such as
trying to gain unauthorised access to systems and personal information to
commit fraud, network intrusion , identity theft or simply disrupt the
system and network.
MAKE YOURSELF SECURE FROM BEING SOCIAL ENGINEERED:
* Don't send sensitive information over the Internet before checking a website's
security. Pay attention to the URL of a website. Malicious websites may look
identical to a legitimate website, but the URL contains the variations say
spellings etc. example: https://www.faceb00k.com instead of
https://www.facebook.com
* Don't provide personal or financial information in email and do not respond to
emails asking for this informations.
* Don't provide personal information or information about your organisation
including its structure or networks to a unauthorised person.
* Be cautious because social engineers try to fool you by creating false situation
and make you to believe in order to collect your confidential informations.
* If you are in doubt in opening an email or if you know that you have received a
phising email, then don't respond to it and don't even click the links you received
from untrusted sources.
* Don't give any financial information to unknown people over phone, confirm to
whom you are speaking and cross check the concern company or bank before
giving any information.
No comments:
Post a Comment