Uploaded byinternetcomputer60
5 views

Presentation_Social_Engineering.pdf

This document discusses social engineering techniques used by hackers to manipulate people into revealing confidential information. It begins by providing examples of successful social engineering attacks against major companies. It then explains the basics of social engineering, focusing on establishing trust and relationships to gain access. Several classic and modern types of social engineering techniques are outlined, such as phishing and using social media like Facebook. The document gives a hypothetical example of how to use a fake Facebook profile to sabotage an employee's life. It concludes by advising on how to identify and protect against social engineering attacks.

Education
Related topics:
Social Engineering

Embed presentation

Download to read offline
Social Engineering The Art of Human Hacking www.facebook.com/realexninja
€24bn processed annually 12,000 clients 3 offices: London. Dublin. Paris. 170 employees
Social Engineering: Content • Content: – What is social engineering? – Types of social engineering & new age threats – How to use Facebook to ruin someone’s life – Countermeasures – Q&A
Social Engineering: Intro Which city is on the picture?
Social Engineering: Intro Firewalls
Social Engineering: Intro • Victims of social engineering – RSA • Infected Excel attachment, over $100 million of damage – Well Fargo Bank • “Catholic Healthcare” phone call, $2.1 million vanished – Vodafone Help Desk • Malware and fraud call, end user lost everything
Social Engineering: Intro
Social Engineering: Basics to Succeed • What is social engineering? The attempt to control social behaviour. – The 3 Critical Success Factors: • trust • satisfaction • relationship
Social Engineering: Basics to Succeed
Social Engineering: Basics to Succeed • The first “touch” with social engineering Happy mom Happy child
Social Engineering: Basics to Succeed Good Evil
Social Engineering: Types • Old-Fashioned Types of Social Engineering Techniques: – Direct approach – Important user – Helpless user – Technical support – Mail-outs – Social media - Facebook
Social Engineering: Types • 1. Direct approach • 2. Important user
Social Engineering: Types • 3. Helpless user • 4. Technical support
Social Engineering: Types • 6. Social media • 5. Mail-outs
Social Engineering: Types • New-Fashioned Types of Social Engineering Techniques: – 1. Phishing with new lethal-strains of ransomware
Social Engineering: Types • New-Fashioned Types of Social Engineering Techniques: – 2. IVR and robocalls for credit card information Did you purchase a flat screen TV for $3,295? Press 1 for yes or 2 for no.
Social Engineering: Types • New-Fashioned Types of Social Engineering Techniques: – 3. Phishing with funerals
Social Engineering: Practical example How to use Facebook to ruin someone’s life (attack on an employee)
Social Engineering: Practical example • 1st step: Protect your identity – Install new operation system on a new disk – Encrypt your disk – Use anonymous proxy – Use free Wi-Fi in a bar – Preform attack drinking cold beer
Social Engineering: Practical example • 2nd step: Fake e-mail and Facebook account – The character must be: • Woman* • 25 to 35 years old • Single • High educated • Interesting * Statistically is proven that the success rate using a woman character is more than 100 times (!) higher then using a male profile.
Social Engineering: Practical example • 3rd step: Select the victim(s) – Before sending the invitation: • Get him/her friends • Get him/her interests
Social Engineering: Practical example • 4th step: Get the victim(s) as friend – Start chatting and get sensitive information – Start chat and get “sensitive” photos – Post link to an infected site – …
Social Engineering: How to spot • How to spot Social Engineering attack? – unusual requirements – requiring respect for authority – threating with negative consequences – giving praise and flattery – offering something for nothing – seems too good to be true, etc…
Social Engineering: Countermeasure • Social Engineering Countermeasure – Slow down and Research the facts – Delete any request for financial information or passwords. – Reject requests for help or offers of help – Don’t let a link in control of where you land – Do not post yours personal data or photos – Do not reveal sensitive data (e.g. passwords) – Do not avoid policies and procedures – Report any suspicious activity
Social Engineering: Last Slide… Promise! • Questions and discussion “There is no such thing as a stupid question, only stupid answers“: Colin Powell www.facebook.com/realexninja
Social Engineering: The end Thank you!

More Related Content

PDF
Sharon Conheady - Social engineering & social networks (4 novmber Jaarbeurs U...
byInfosecurity2010
 
PDF
- Social Engineering Unit- II Part- I.pdf
byRamya Nellutla
 
PDF
02 Intro to Social Engg understanding society
by2961rabbit
 
PPTX
Social engineering
byVîñàý Pãtêl
 
PPT
Social Engineering | #ARMSec2015
byHovhannes Aghajanyan
 
PPTX
Social engineering
byMaulik Kotak
 
PPSX
Social Engineering - Are You Protecting Your Data Enough?
byJamRivera1
 
PPTX
Social Engineering By Rakesh Nagekar
bynforceit
 
Sharon Conheady - Social engineering & social networks (4 novmber Jaarbeurs U...
byInfosecurity2010
 
- Social Engineering Unit- II Part- I.pdf
byRamya Nellutla
 
02 Intro to Social Engg understanding society
by2961rabbit
 
Social engineering
byVîñàý Pãtêl
 
Social Engineering | #ARMSec2015
byHovhannes Aghajanyan
 
Social engineering
byMaulik Kotak
 
Social Engineering - Are You Protecting Your Data Enough?
byJamRivera1
 
Social Engineering By Rakesh Nagekar
bynforceit
 

Similar to Presentation_Social_Engineering.pdf

PPTX
FINAL INTRO 2 Social engineering for BSIT
byUzumakiNamikaze
 
PPTX
Social engineering presentation
bypooja_doshi
 
PDF
Social engineering
byRobert Hood
 
PDF
Unlocking the Hidden Potential
byEricaCiko
 
PDF
What is social engineering.pdf
byuzair
 
PPTX
Cybersecurity Social Engineering Tactics & Mitigation Strategies
byCindtoro
 
PDF
DebmallyaManda_18700122148_1_Project.pdf
byPiyushKaloya1
 
PPT
Social Engineering
byNicholas Davis
 
PPT
Social engineering
byNicholas Davis
 
PPT
Module 3 social engineering-b
byBbAOC
 
PDF
Yehia Mamdouh @ DTS Solution - The Gentleman Thief
byShah Sheikh
 
PPTX
Social engineering
byAlexander Zhuravlev
 
PPTX
Social Engineering
byManish Chauhan
 
DOCX
ITE516 A3
byJon Newson
 
PPTX
Social Engineering
byMuhanned Alaqili
 
PPTX
Social engineering 101 or The Art of How You Got Owned by That Random Stranger
bySteven Hatfield
 
PPTX
The Art of Human Hacking : Social Engineering
byOWASP Foundation
 
PDF
Social engineering by-rakesh-nagekar
byRaghunath G
 
PDF
Social Engineering Techniques - The Dark Arts
byn|u - The Open Security Community
 
PPTX
Se presentation
byreyreroma
 
FINAL INTRO 2 Social engineering for BSIT
byUzumakiNamikaze
 
Social engineering presentation
bypooja_doshi
 
Social engineering
byRobert Hood
 
Unlocking the Hidden Potential
byEricaCiko
 
What is social engineering.pdf
byuzair
 
Cybersecurity Social Engineering Tactics & Mitigation Strategies
byCindtoro
 
DebmallyaManda_18700122148_1_Project.pdf
byPiyushKaloya1
 
Social Engineering
byNicholas Davis
 
Social engineering
byNicholas Davis
 
Module 3 social engineering-b
byBbAOC
 
Yehia Mamdouh @ DTS Solution - The Gentleman Thief
byShah Sheikh
 
Social engineering
byAlexander Zhuravlev
 
Social Engineering
byManish Chauhan
 
ITE516 A3
byJon Newson
 
Social Engineering
byMuhanned Alaqili
 
Social engineering 101 or The Art of How You Got Owned by That Random Stranger
bySteven Hatfield
 
The Art of Human Hacking : Social Engineering
byOWASP Foundation
 
Social engineering by-rakesh-nagekar
byRaghunath G
 
Social Engineering Techniques - The Dark Arts
byn|u - The Open Security Community
 
Se presentation
byreyreroma
 

Recently uploaded

PDF
The Industrialisation of Deception: An Analysis of the 2024 Cybercrime Landscape
bykrutivyas2005
 
PPTX
Shaping Tomorrow: The Next Chapter for Irish Research Libraries
byCONUL Conference
 
PDF
Pharmaceutical Organic Chemistry Unit 5 Cycloalkanes
bySandeshSul
 
PDF
Fever & Fragment Uncovering the Plague in The Waste Land
byNidhi Pandya
 
PDF
• Reinforcing the Human Firewall: Moving From Awareness to Applied Skill
byAdityarajsinh Gohil
 
PPTX
How to Add an Icon Image to a Module in Odoo 18
byCeline George
 
PPTX
Bookish Bats: a unique sustainable delivery service in the Russell Library. A...
byCONUL Conference
 
PPTX
PixelX : Think Design Experience powerpoint presentation
byVinaySiddha
 
PPTX
Archival literacy and engagement through Brightspace: the new Special Collect...
byCONUL Conference
 
PPTX
Aligning Ireland’s Open Repository Network by Strengthening Shared Standards ...
byCONUL Conference
 
PPTX
What’s a Milestone in a Sales Order in Odoo 18
byCeline George
 
PPTX
Changing hearts at DCU Library: Confronting prejudice through The Human Libra...
byCONUL Conference
 
PPTX
Cardiovascular System or The Details of Heart.pptx
byAshish Umale
 
PDF
syllabus for mca regulation 2025 anna university
bySASIDHARANMURUGAN
 
PPTX
CHAPTER 4. Size Reduction, Size Separation, Mixing, Filtration, Drying, Extra...
bySharibJamal
 
PPTX
Collecting and preserving: new imperatives and new challenges. Speaker: Richa...
byCONUL Conference
 
PPTX
To Stand in Another’s Shoes: Using Archives, History and Performance to Enhan...
byCONUL Conference
 
PPTX
Conduction System of the Heart, The Cardiac Cycle, The Cardiac Output, ECG.pptx
byAshish Umale
 
PDF
Behind the Studioz Report by LDMMIA 2026
by©LDMMIA, ©Reiki Yoga
 
PDF
Road Safety Calendar-2026 Courtesy - IYSO Team India - Safer Indian Roads
byIndian Youth Secured Organisation
 
The Industrialisation of Deception: An Analysis of the 2024 Cybercrime Landscape
bykrutivyas2005
 
Shaping Tomorrow: The Next Chapter for Irish Research Libraries
byCONUL Conference
 
Pharmaceutical Organic Chemistry Unit 5 Cycloalkanes
bySandeshSul
 
Fever & Fragment Uncovering the Plague in The Waste Land
byNidhi Pandya
 
• Reinforcing the Human Firewall: Moving From Awareness to Applied Skill
byAdityarajsinh Gohil
 
How to Add an Icon Image to a Module in Odoo 18
byCeline George
 
Bookish Bats: a unique sustainable delivery service in the Russell Library. A...
byCONUL Conference
 
PixelX : Think Design Experience powerpoint presentation
byVinaySiddha
 
Archival literacy and engagement through Brightspace: the new Special Collect...
byCONUL Conference
 
Aligning Ireland’s Open Repository Network by Strengthening Shared Standards ...
byCONUL Conference
 
What’s a Milestone in a Sales Order in Odoo 18
byCeline George
 
Changing hearts at DCU Library: Confronting prejudice through The Human Libra...
byCONUL Conference
 
Cardiovascular System or The Details of Heart.pptx
byAshish Umale
 
syllabus for mca regulation 2025 anna university
bySASIDHARANMURUGAN
 
CHAPTER 4. Size Reduction, Size Separation, Mixing, Filtration, Drying, Extra...
bySharibJamal
 
Collecting and preserving: new imperatives and new challenges. Speaker: Richa...
byCONUL Conference
 
To Stand in Another’s Shoes: Using Archives, History and Performance to Enhan...
byCONUL Conference
 
Conduction System of the Heart, The Cardiac Cycle, The Cardiac Output, ECG.pptx
byAshish Umale
 
Behind the Studioz Report by LDMMIA 2026
by©LDMMIA, ©Reiki Yoga
 
Road Safety Calendar-2026 Courtesy - IYSO Team India - Safer Indian Roads
byIndian Youth Secured Organisation
 

Presentation_Social_Engineering.pdf

  • 1.
    Social Engineering The Artof Human Hacking www.facebook.com/realexninja
  • 2.
  • 3.
    Social Engineering: Content •Content: – What is social engineering? – Types of social engineering & new age threats – How to use Facebook to ruin someone’s life – Countermeasures – Q&A
  • 4.
    Social Engineering: Intro Whichcity is on the picture?
  • 5.
  • 6.
    Social Engineering: Intro •Victims of social engineering – RSA • Infected Excel attachment, over $100 million of damage – Well Fargo Bank • “Catholic Healthcare” phone call, $2.1 million vanished – Vodafone Help Desk • Malware and fraud call, end user lost everything
  • 7.
  • 8.
    Social Engineering: Basicsto Succeed • What is social engineering? The attempt to control social behaviour. – The 3 Critical Success Factors: • trust • satisfaction • relationship
  • 9.
  • 10.
    Social Engineering: Basicsto Succeed • The first “touch” with social engineering Happy mom Happy child
  • 11.
    Social Engineering: Basicsto Succeed Good Evil
  • 12.
    Social Engineering: Types •Old-Fashioned Types of Social Engineering Techniques: – Direct approach – Important user – Helpless user – Technical support – Mail-outs – Social media - Facebook
  • 13.
    Social Engineering: Types •1. Direct approach • 2. Important user
  • 14.
    Social Engineering: Types •3. Helpless user • 4. Technical support
  • 15.
    Social Engineering: Types •6. Social media • 5. Mail-outs
  • 16.
    Social Engineering: Types •New-Fashioned Types of Social Engineering Techniques: – 1. Phishing with new lethal-strains of ransomware
  • 17.
    Social Engineering: Types •New-Fashioned Types of Social Engineering Techniques: – 2. IVR and robocalls for credit card information Did you purchase a flat screen TV for $3,295? Press 1 for yes or 2 for no.
  • 18.
    Social Engineering: Types •New-Fashioned Types of Social Engineering Techniques: – 3. Phishing with funerals
  • 19.
    Social Engineering: Practicalexample How to use Facebook to ruin someone’s life (attack on an employee)
  • 20.
    Social Engineering: Practicalexample • 1st step: Protect your identity – Install new operation system on a new disk – Encrypt your disk – Use anonymous proxy – Use free Wi-Fi in a bar – Preform attack drinking cold beer
  • 21.
    Social Engineering: Practicalexample • 2nd step: Fake e-mail and Facebook account – The character must be: • Woman* • 25 to 35 years old • Single • High educated • Interesting * Statistically is proven that the success rate using a woman character is more than 100 times (!) higher then using a male profile.
  • 22.
    Social Engineering: Practicalexample • 3rd step: Select the victim(s) – Before sending the invitation: • Get him/her friends • Get him/her interests
  • 23.
    Social Engineering: Practicalexample • 4th step: Get the victim(s) as friend – Start chatting and get sensitive information – Start chat and get “sensitive” photos – Post link to an infected site – …
  • 24.
    Social Engineering: Howto spot • How to spot Social Engineering attack? – unusual requirements – requiring respect for authority – threating with negative consequences – giving praise and flattery – offering something for nothing – seems too good to be true, etc…
  • 25.
    Social Engineering: Countermeasure •Social Engineering Countermeasure – Slow down and Research the facts – Delete any request for financial information or passwords. – Reject requests for help or offers of help – Don’t let a link in control of where you land – Do not post yours personal data or photos – Do not reveal sensitive data (e.g. passwords) – Do not avoid policies and procedures – Report any suspicious activity
  • 26.
    Social Engineering: LastSlide… Promise! • Questions and discussion “There is no such thing as a stupid question, only stupid answers“: Colin Powell www.facebook.com/realexninja
  • 27.