Factbites
Where results make sense
About us   |   Why use us?   |   Reviews   |   PR   |   Contact us  

Topic: Social engineering


Related Topics
Social engineering (political science)
Social engineering (computer security)
Political correctness
Nationalist
Multiculturalism
White pride
Thoughtcrime
Politically Incorrect
Warcraft III
Madura
Arthas

  
  Social engineering (computer security) - Wikipedia, the free encyclopedia
A social engineer will commonly use the telephone or Internet to trick people into revealing sensitive information or getting them to do something that is against typical policies.
By this method, social engineers exploit the natural tendency of a person to trust his or her word, rather than exploiting computer security holes.
A contemporary example of a social engineering attack is the use of e-mail attachments that contain malicious payloads (that, for instance, use the victim's machine to send massive quantities of spam).
en.wikipedia.org /wiki/Social_engineering_(computer_security)   (440 words)

  
 Learn more about Social engineering in the online encyclopedia.   (Site not responding. Last check: 2007-11-07)
In its most usual sense, social engineering is a mainly pejorative term used to describe the intended effects of authoritarian systems of government.
The implication is that some governments are intending to change or "engineer" their citizens, for example, by the use of propaganda.
Social engineering has been used in the information technology field to mean the art of conning a naive person into revealing sensitive data on a computer system, often the Internet.
www.onlineencyclopedia.org /s/so/social_engineering.html   (546 words)

  
 Social engineering - Infosecpedia   (Site not responding. Last check: 2007-11-07)
Social engineering is the term used in the information technology and information security fields to mean the art of conning a naive person into revealing sensitive data on or about a computer system.
Social engineering is often described as the use of non-technical means to defeat technical and administrative security controls or protection.
A contemporary example of a milder form of a social engineering attack is the use of well crafted and worded e-mail messages that trick or entice readers to open attachments that contain malicious payloads.
www.infosecpedia.org /pedia/index.php/Social_engineering   (926 words)

  
 Social Engineering   (Site not responding. Last check: 2007-11-07)
Social engineering was the one the preferred tools used by the most notorious hacker in the world, Kevin Mitnick - the author of this book.
Social engineering is a hacker©s clever manipulation of the natural human tendency to trust, with the goal of obtaining information that will allow him/her to gain unauthorized access to a valued system and the information that resides on that system.
The basic goals of social engineering are the same as hacking in general: to gain unauthorized access to systems or information in order to commit fraud, network intrusion, industrial espionage, identity theft, or simply to disrupt the system or network.
labmice.techtarget.com /security/socialengineering.htm   (1035 words)

  
 Social Engineering
Social Engineering attacks may also involve going through trash dumpsters The term for going through trash dumpsters is "dumpster diving." Again, the tactic may seem to be almost comical, however it does provide very valuable information.
A Social Engineering attack may be composed of several small attacks, which in and of themselves might be inconsequential.
Social Engineering is the only conceivable method for testing security policies and their effectiveness.
www.utdallas.edu /ir/security/sectips/soceng.html   (3547 words)

  
 DMS - Social Engineering   (Site not responding. Last check: 2007-11-07)
Social engineering can involve a lot of 'groundwork', information gathering and idle chit chat before an attempt at gaining information is ever made.
However, most social engineering is conducted by lone individuals and so the social pressure and other influencing factors have to be constructed by creating a believable situation which the target feels emmersed in.
The moral of these points is, don’t try and social engineer the sysadmin, unless of course the sysadmin is less competent than you are, which as we all know is very unlikely.
packetstormsecurity.nl /docs/social-engineering/aaatalk.html   (2039 words)

  
 Social engineering (computer security)   (Site not responding. Last check: 2007-11-07)
In the field of computer security, social engineering is the practice of conning people into revealing sensitive data on a computer system, often on the Internet.
With the profusion of poorly-secured computers with known security holes connected to the Internet, the majority of security compromises are now done by exploiting such; however, social engineering attacks remain extremely common and are a way to attack systems protected against other methods–for instance, computers which are not connected to the Internet.
However, even this might not be necessary–in an Infosecurity survey, 90% of office workers gave away their password in exchange for a cheap pen.
www.sciencedaily.com /encyclopedia/social_engineering__computer_security_   (434 words)

  
 HUMAN IGNORANCE AND SOCIAL ENGINEERING
And social engineering was a key mechanism through which that freedom had been destroyed.
Social holists claimed that collective wholes had an existence that was far more than the sum of their individual parts.
Where social engineering demands a stable future and a Godlike knowledge of the present, spontaneous order recognizes and embodies the inevitability of change and the inadequacy of human knowledge.
www.zetetics.com /mac/soceng.htm   (3070 words)

  
 Social Engineering on the Internet
Social engineering is the creative mixing of truth, half-truths, or lies in order to extract information from you or encourage you to take a particular action.
Social engineering skill is often colloquially referred to as good advertising, spin doctoring, or "hacking the wetware." Successful social engineering ploys do everything from luring you into divulging your credit card number over the phone, cajoling your boss into giving you a raise, or persuading you to buy a particular product or service.
When social engineering is practiced with malicious intent, it's referred to as scamming or pulling a mark, and in the worst cases it is a federal offense.
cc.uoregon.edu /cnews/spring2004/socialengineer.html   (1460 words)

  
 Social Engineering Fundamentals, Part II: Combat Strategies
In Part One, we defined social engineering as a hacker’s clever manipulation of the natural human tendency to trust, with the goal of obtaining information that will allow him/her to gain unauthorized access to a valued system and the information that resides on that system.
To review: the basic goals of social engineering are the same as hacking in general: to gain unauthorized access to systems or information in order to commit fraud, network intrusion, industrial espionage, identity theft, or simply to disrupt the system or network.
Social engineering attacks can have two different aspects: the physical aspect or the location of the attack, such as in the workplace, over the phone, dumpster diving, on-line, and the psychological aspect, which refers to the manner in which the attack is carried out, such as persuasion, impersonation, ingratiation, conformity, and friendliness.
www.securityfocus.com /infocus/1533   (2011 words)

  
 Encyclopedia: Social engineering (computer security)   (Site not responding. Last check: 2007-11-07)
An exploit is a common term in the computer security community to refer to a piece of software that takes advantage of a bug, glitch or vulnerability, leading to privilege escalation or denial of service on a computer system.
Kevin Mitnick Kevin David Mitnick (born August 6, 1963) is one of the most famous criminal hackers to be jailed and convicted.
April 18 is the 108th day of the year in the Gregorian calendar (109th in leap years).
www.nationmaster.com /encyclopedia/Social-engineering-(computer-security)   (821 words)

  
 Social Engineering
"Social engineering" is hacker-speak for conning legitimate computer users into providing useful information that helps the hacker gain unauthorized access to their computer system.
The attacker using social engineering usually poses as a legitimate person in the organization and tricks computer users into giving useful information.
The truth is, however, that social engineering often plays a big part in helping an attacker slip through the initial security barriers.
rf-web.tamu.edu /security/SECGUIDE/V1comput/Social.htm   (994 words)

  
 SecurityDocs: Social Engineering
Social Engineering is the art of having people do what you want, or give you info on passwords, with out them knowing they're doing so.
'Social Engineering' is a practice that can be used to exploit what has long been considered the 'weakest link' in the security chain of an organization -the 'human factor'.
This paper will discuss the basics of social engineering by giving a general overview of social engineering.
www.securitydocs.com /Exploits/Social_Engineering   (382 words)

  
 Social Engineering Fundamentals, Part I: Hacker Tactics
The one thing that everyone seems to agree upon is that social engineering is generally a hacker’s clever manipulation of the natural human tendency to trust.
This type of social engineering attack doesn’t generally work, because users are generally more aware of hackers when online, but it is something of which to take note.
According to Methods of Hacking: Social Engineering, a paper by Rick Nelson, the three parts of reverse social engineering attacks are sabotage, advertising, and assisting.
www.securityfocus.com /infocus/1527   (2612 words)

  
 Infoconomy - News and Gossip   (Site not responding. Last check: 2007-11-07)
Social engineers attempt to break in to systems by persuading unwitting staff to part with vital information, including login names and passwords.
Social engineers normally do a lot of research into their targets before attacking.
"A social engineer needs to understand the corporate culture, the corporate structure, the organisational chart, who has access to what information, where in the company that information resides," says Mitnick.
www.infoconomy.com /pages/news-and-gossip/group66338.adp   (497 words)

  
 social engineering - a Whatis.com definition   (Site not responding. Last check: 2007-11-07)
In computer security, social engineering is a term that describes a non-technical kind of intrusion that relies heavily on human interaction and often involves tricking other people to break normal security procedures.
For example, a person using social engineering to break into a computer network would try to gain the confidence of someone who is authorized to access the network in order to get them to reveal information that compromises the network's security.
Social engineers rely on the fact that people are not aware of the value of the information they possess and are careless about protecting it.
searchsecurity.techtarget.com /sDefinition/0,,sid14_gci531120,00.html   (339 words)

  
 Social Engineering
Social Engineering is an attack method used by many attackers that takes advantage of trust and complacency at work.
A lot of what Social Engineering is about deals with violating the trust we have for other people and even people positions.
Social Engineering is a great tool that many attackers will use to evade Intrusion Detection Systems and many other computer programs that are designed to catch attackers.
www.securityfocus.com /infocus/1229   (2177 words)

  
 Kids.net.au - Encyclopedia Social engineering -   (Site not responding. Last check: 2007-11-07)
Social engineering has been used by programmers to mean the art of conning a naive person into revealing sensitive data on a computer system, often the Internet.
After earlier malicious emails led software vendors to disable automatic execution of attachments, users now have to explicitly activate attachments for this to occur.
Kids.net.au - Search engine for kids, children, educators and teachers - Searching sites designed for kids that are child safe and clean.
www.kids.net.au /encyclopedia-wiki/so/Social_engineering   (417 words)

  
 The Engineering of Social Control: The Search for the Silver Bullet
In considering current developments and trends in the study of social control, I have suggested the idea of the "maximum security society" (Marx1981, 1987, 1988); with clear indebtedness to Bentham and Foucault I have found it useful to note some parallels between control themes found in the maximum security prison and the broader society.
The social- engineering example of castration as a device to control sexuality clearly contrasts with appeals to virtue to accomplish the same end.
To the extent that engineered solutions with their potential for access to past records and effective public communication create permanent stigmatization of offenders, the initial inequality associated with life chances may be increased.
web.mit.edu /gtmarx/www/bullet.html   (8882 words)

  
 Social Engineering   (Site not responding. Last check: 2007-11-07)
Social Engineering is hacker-speak for tricking a person into revealing their password.
A classic social engineering trick is for a hacker to send email claiming to be a system administrator.
Another form of social engineering is for somebody to ask you to let them use your account.
www.seas.rochester.edu:8080 /CNG/docs/Security/node9.html   (436 words)

  
 How to Defend your Network Against Social Engineers
Social engineers don’t even need to be particularly technically savvy; it’s their “people skills” that get them in where they aren’t supposed to be.
Social engineering is defined as a “non-technical kind of intrusion that relies heavily on human interaction and often involves tricking other people to break normal security procedures.” (from searchsecurity.techtarget.com).
A good social engineer is not only a good actor, but is also good at “reading” people to determine what type of ploy will work best with a particular person.
www.windowsecurity.com /articles/Social_Engineers.html   (1545 words)

  
 Social Engineering: Security Basics | WatchGuard Technologies, Inc.
The hacker (or phone phreaks, as they used to be called) would dial-up an operator and by using the right jargon, convince him or her to make a connection or share some information that should not have been shared.
Social engineering can be used to collect any information an attacker might be interested in, such as the layout of your network, names and/or IP addresses of important servers, version numbers of operating systems and software, and security products in use internally.
In reality, social engineering is probably as old as speech, and goes back to the first lie.
www.watchguard.com /infocenter/editorial/1302.asp   (677 words)

  
 Social Engineering: The Human Side Of Hacking   (Site not responding. Last check: 2007-11-07)
Social engineering is the human side of breaking into a corporate network.
Robertson says for companies with great security technology in place, it's almost always possible to penetrate them using social engineering simply because it preys on the human impulse to be kind and helpful, and because IT executives aren't training employees to wary of it.
Rabinovitch says he deals with social engineering by focusing a lot of training on his people on the perimeter -- security guards, receptionists and help desk workers.
itmanagement.earthweb.com /secu/article.php/1040881   (1102 words)

  
 Reason: Social Security as Social Engineering
Social Security reform could be for Republicans the kind of donnybrook that health care reform was for Democrats in 1994.
Social Security is often said to be insolvent, because in about 2018 its benefit payments will exceed the revenues it collects through its dedicated payroll tax.
Social Security's surpluses have subsidized general budget spending for decades; if the government needs to use general revenues to subsidize Social Security, that will be no tragedy.
www.reason.com /rauch/011505.shtml   (1382 words)

  
 "Social Engineering Training"
It is called Social Engineering which is a term that may have been coined by the Nazi’s prior to World War II.
We contend that it is the manner in which the threat is communicated to the every day non-security, non-technology personnel that are the Social Engineer’s targets and the manner in which they are trained to prevent such an attack.
Ron will tell you about his first encounter with a successful Social Engineering penetration on the battle fields of Viet Nam and how that experience stuck with him causing him to develop the strange area of interest in which he studies deception, deceptive techniques their effectiveness and prevention.
www.mile2.com /Social_Engineering_Training.html   (554 words)

  
 Hacker Mitnick preaches social engineering awareness | InfoWorld | News | 2005-07-22 | By Rodney Gedda, Computerworld ...
Mitnick said social engineering appeals to hackers because the Internet is so widespread, it evades all intrusion detection systems, it's free or very low cost, it's low risk, it works on every operating system, leaves no audit trail, is nearly 100 percent effective, and there is a general lack of awareness of the problem.
"Social engineering attacks can be simple or complex and take from minutes to years," he said, adding that surveys have revealed that nine out of 10 people will give their password in exchange for a chocolate Easter egg.
Mitnick spoke of how social engineering has been used to extract millions of dollars from banks and how he used the technique to siphon source code for a mobile phone out of Motorola (Profile, Products, Articles) by posing as an employee in its own RandD department.
www.infoworld.com /article/05/07/22/HNhackermetnick_1.html   (1078 words)

  
 Social engineering
Social Engineering: cracking techniques that rely on weaknesses in wetware rather than software; the aim is to trick people into revealing passwords or other information that compromises a target system's security.
Social engineering can be defined also as "misrepresentation of oneself in a verbal manner to another person in order to obtain knowledge that is otherwise unattainable."
Social engineering, from a narrow point of view, is basically phone scams which pit your knowledge and wits against another human.
www.hacking.teleactivities.net /social.htm   (782 words)

  
 Amazon.com: Books: The Art of Deception: Controlling the Human Element of Security   (Site not responding. Last check: 2007-11-07)
Mitnick was highly effective at social engineering and this book provides a wealth of information regarding his views of 'social engineering' vulnerabilities and how he exploited them.
Social engineering is a method of gaining someone's trust by lying to them and then abusing that trust for malicious purposes - primarily gaining access to systems.
Even though a true hacker or social engineer (the difference is explained in the book) could still get through, all businesses should look at the list to ensure that they have done everything they could to prevent a security breach.
www.amazon.com /exec/obidos/tg/detail/-/0471237124?v=glance   (3201 words)

Try your search on: Qwika (all wikis)

Factbites
  About us   |   Why use us?   |   Reviews   |   Press   |   Contact us  
Copyright © 2005-2007 www.factbites.com Usage implies agreement with terms.