No Tech Hacking: A Guide to Social
Engineering, Dumpster Diving, and
Shoulder Surfing by Jack Wiles
An Essential Read For Any Ethical Hacker/Red Team
As the cliché reminds us, information is power. In this age of computer
systems and technology, an increasing majority of the worlds information is
stored electronically. It makes sense then that as an industry we rely on
high-tech electronic protection systems to guard that information. As a
professional hacker, I get paid to uncover weaknesses in those systems
and exploit them. Whether breaking into buildings or slipping past
industrial-grade firewalls, my goal has always been the same: extract the
informational secrets using any means necessary. After hundreds of jobs, I
discovered the secret to bypassing every conceivable high-tech security
system. This book reveals those secrets, and as the title suggests, it has
nothing to do with high technology. As it turns out, the secret isnt much of
a secret at all. Hackers have known about these techniques for years.
Presented in a light, accessible style, youll get to ride shotgun with the

authors on successful real-world break-ins as they share photos, videos
and stories that prove how vulnerable the high-tech world is to no-tech
attacks.
As you browse this book, youll hear old familiar terms like dumpster diving,
social engineering, and shoulder surfing. Some of these terms have drifted
into obscurity to the point of becoming industry folklore; the tactics of the
pre-dawn information age. But make no mistake; these and other old-
school tactics work with amazing effectiveness today. In fact, theres a very
good chance that someone in your organization will fall victim to one or
more of these attacks this year. Will they be ready?
. Dumpster Diving
Be a good sport and dont read the two D words written in big bold letters
above, and act surprised when I tell you hackers can accomplish this
without relying on a single bit of technology (punny).
. Tailgating
Hackers and ninja both like wearing black, and they do share the ability to
slip inside a building and blend with the shadows.
. Shoulder Surfing
If you like having a screen on your laptop so you can see what youre
working on, dont read this chapter.
. Physical Security
Locks are serious business and lock technicians are true engineers, most
backed with years of hands-on experience. But what happens when you
take the age-old respected profession of the locksmith and sprinkle it with
hacker ingenuity?
. Social Engineering with Jack Wiles
Jack has trained hundreds of federal agents, corporate attorneys, CEOs
and internal auditors on computer crime and security-related topics. His
unforgettable presentations are filled with three decades of personal war
stories from the trenches of Information Security and Physical Security.
. Google Hacking

A hacker doesnt even need his own computer to do the necessary
research. If he can make it to a public library, Kinkos or Internet cafe, he
can use Google to process all that data into something useful.
. P2P Hacking
Lets assume a guy has no budget, no commercial hacking software, no
support from organized crime and no fancy gear. With all those
restrictions, is this guy still a threat to you? Have a look at this chapter and
judge for yourself.
. People Watching
Skilled people watchers can learn a whole lot in just a few quick glances.
In this chapter well take a look at a few examples of the types of things that
draws a no-tech hackers eye.
. Kiosks
What happens when a kiosk is more than a kiosk? What happens when
the kiosk holds airline passenger information? What if the kiosk holds
confidential patient information? What if the kiosk holds cash?
. Vehicle Surveillance
Most people dont realize that some of the most thrilling vehicular
espionage happens when the cars arent moving at all!
Personal Review: No Tech Hacking: A Guide to Social
Engineering, Dumpster Diving, and Shoulder Surfing by Jack
Wiles
Johnny Long's book, "No Tech Hacking," brings new attention to
overlooked aspects of information security. In his book, Long reveals how
simple threats can cause serious problems, even in organizations
prepared for a Mission Impossible-style attack scenario.
Long recounts how he and his team of ethical hackers consistently access
sensitive information with no special equipment or technical skills. In fact,
Long reveals how the ordinary (coat hangers, hand towels, drinking straws,
baby powder, and aluminum cans) can result in extraordinary breaches of
organizational security.
Long shares real world stories and cell-phone photographs from his
adventures in people watching, shoulder surfing, dumpster diving, and
vehicle observation.
Long and his colleagues go to great, conspicuous lengths to collect non-
public information. While their targets should notice almost all of their

activities, most do not. The closest thing to a consequence or confrontation
they encounter is a glare from an airline passenger.
Why isn't Long confronted when others observe him surreptitiously taking
pictures? Some people don't like to confront an unfamiliar person or don't
know whom to report their concerns to. Others are complacent and don't
expect negative events to occur. Action invites risk: risk of an awkward or
unwarranted accusation, that one won't be taken seriously, and possible
personal embarrassment. Sometimes, people feel that the safest action is
no action at all. Unfortunately, that feeling of security is deceptive.
Thankfully, Long offers useful advice. He recommends that companies
should:
1. Provide incentives for reporting suspicious activities, and
2. Make the desired response well-known and easy-to-do.
To follow these recommendations, organizations need to ensure that
everyone knows what information to disclose and what information
requires protection. Foremost, all organizations should create policies for
verifying the identity of anyone who requests non-public information and
adequately train all employees to recognize these situations and take
appropriate actions.
In the next edition, it would be great to see more of the practical tips
(perhaps even a detailed checklist for each chapter) about what do to
protect against these simple, but damaging, threats.
Summary: This is a useful book for creating and spreading awareness of
important and often overlooked aspects of information security.
For More 5 Star Customer Reviews and Lowest Price:
No Tech Hacking: A Guide to Social Engineering, Dumpster Diving, and Shoulder
Surfing by Jack Wiles 5 Star Customer Reviews and Lowest Price!