hybr1s, profile picture
Uploaded byhybr1s
PDF, PPTX1,971 views

Social Engineering

Social engineering involves interpersonal influences aimed at eliciting specific behaviors from individuals, such as disclosing confidential information or financial resources. It exploits trust and emotions through techniques like phishing and identity theft, often leading to compromised security. The document includes a fictional dialogue illustrating how a social engineer might manipulate someone into changing a system password.

Embed presentation

Download as PDF, PPTX
Social Engineering
Social Engineering nennt man zwischenmenschliche Beeinflussungen mit dem Ziel, bei Personen bestimmte Verhalten hervorzurufen, sie zum Beispiel zur Preisgabe von vertraulichen Informationen, zum Kauf eines Produktes oder zur Freigabe von Finanzmitteln zu bewegen.
Direkte Anfragen Vertrauen und Emotionen ausnutzen Verkörperung Nachforschung
Personal Dienstleister Mobile Devices Physik IT
Komplexität ~ Erfolg
Personal Erschleichen von Zutritt Identitätsdiebstahl Abfischen von Informationen Einbringen von Schadsoftware Einblick in Sicherheitsschwächen
Fehlende Security Policy Unwissen
“Hi there, this is Dave Simpson calling from information services at the main branch. Sorry about the echo, I’m working in the cabling closet at the moment, so I’m calling you on my cell phone.” “No problem, I can hear you fine.What can I do for you?” “Thanks. A lot of the branches have been having network problems over the last few days. Has everything been okay at the Seashore Branch reference desk?” “I think so.” “Okay, that’s good. I’m running a test right now on the network and needed to find a terminal that was behaving itself. Could you log off and let me know if any messages come up?” “No problem.” Marcy logs off of the reference computer; nothing strange happens.“Just the usual messages.” “Good. Now start logging back on. What user are you going in as? I mean which login name are you using?” “Searef. Okay, I’m logged on now.” “No strange messages?” “Nothing.” “That’s great. Look, our problem might be kids hacking into the system so I need you to change the password. Do you know how to do that?” “I think so.”
“Well, let me walk you through it.” Dave spends a couple of minutes walking Marcy through changing the system password. The password is now changed to 5eaR3f, a moderately secure password. “Thanks, Marcy. You’ve been a great help. We have your new password logged into the system. Could you pass on the new password to the other reference personnel?” “Sure.” “Wonderful. Just remember not to give the password out to anyone who doesn’t need it, and don’t write it down where anyone who shouldn’t have it can get at it. Have a great day.” “You too.”
Aufmerksamkeit MisstrauenKontrolle Schulung
Profiling Tracking Müll Verunglimpfung Blackmail Phishing Shoulder Surfing Tailgating
Vertraue deinen Gefühlen!
Q&A E-Mail: XMPP: phil@phkr.de OTR: 71E1 0CDE 86B8 0121 83B3 A09E E069 AD18 01F7 36BD PGP: BD97 D5D3 D29F 3248 F253 0793 D996 E113 68E9 C588
Bilder • Opa am Telefon: http://waltons.steve-p.org/pix/65B_01193100.jpg • Hacker mit Sturmhaube: http://blog.malwarebytes.org/wp-content/uploads/2013/06/photodune-3396562-calling-m.jpg • Tresorraum in der Schweiz: http://richtigteuer.de/wp-content/uploads/2013/12/Schweizer-Bank-Tresorraum-1.jpg • Attack Tree Tresor: https://www.schneier.com/attacktrees.pdf • Bibliothek: http://blogs.loc.gov/law/files/2010/08/Reference-Librarian-assisting-readers-1.jpg • Passwort-Comic: https://xkcd.com/936/ • BSI-Comic: https://www.bsi.bund.de/SharedDocs/Bilder/DE/BSI/Themen/grundschutzdeutsch/Webkurs/pic1120_gif.gif?__blob=normal&v=3 • Zaun: http://www.nilesfence.com/blog/wp-content/uploads/2013/06/WETTSUPERC2.jpg • Bürogebäude: https://phandroid.s3.amazonaws.com/wp-content/uploads/2013/06/NSA-Building.jpg • Büro: http://p1.pichost.me/i/27/1502108.jpg • Influence: http://ecx.images-amazon.com/images/I/71FDaBi9zaL.jpg
Quellen • Definition Social Engineering: https://de.wikipedia.org/wiki/ Social_Engineering_%28Sicherheit%29 • Beispielunterhaltung: S.T. C.Thompson: „Helping the Hacker?“

More Related Content

PDF
8 robert schneider application security-audit_in_theorie_und_praxis
byDigicomp Academy AG
 
PPTX
Computersicherheit im Unternehmen - Was ist Social Engineering Teil 1
byDaniel Niklaus
 
PDF
It strategie-security-first
byRalph Belfiore
 
PPT
Social Engineering
bythetacker
 
PDF
Network Security
byJonathan Weiss
 
PDF
InfoSecure security awareness trainings
byMichael Watzl
 
PPT
Ia 124 1621324160 ia_124_lecture_02
byITNet
 
PPTX
Social Engineering
bySpencerBurton8
 
8 robert schneider application security-audit_in_theorie_und_praxis
byDigicomp Academy AG
 
Computersicherheit im Unternehmen - Was ist Social Engineering Teil 1
byDaniel Niklaus
 
It strategie-security-first
byRalph Belfiore
 
Social Engineering
bythetacker
 
Network Security
byJonathan Weiss
 
InfoSecure security awareness trainings
byMichael Watzl
 
Ia 124 1621324160 ia_124_lecture_02
byITNet
 
Social Engineering
bySpencerBurton8
 

Similar to Social Engineering

PPTX
Social engineering hacking attack
byPankaj Dubey
 
PDF
Social Engineering.pdf
byMeshalALshammari12
 
PPT
Isys20261 lecture 10
byWiliam Ferraciolli
 
PPTX
social engineering
byRavi Patel
 
PPTX
Social engineering: A Human Hacking Framework
byJahangirnagar University
 
PPTX
Mobile security
byTapan Khilar
 
PPTX
Social Engineering,social engeineering techniques,social engineering protecti...
byABHAY PATHAK
 
PPTX
Social Engineering Attacks How Hackers Exploit Human Psychology.pptx
byxploreitcorp
 
PPTX
Social Engineering security Aweness.pptx
byYacinRouger
 
PPTX
Psychological aspect of social engineering
byYuvaraj Naresh
 
PPTX
Social engineering-Attack of the Human Behavior
byJames Krusic
 
PDF
Social Engineering Attacks & Principles
byLearningwithRayYT
 
PPTX
10TH FEB CYBER SECURITY by C-DAC Noida.pptx
by24149052
 
PPTX
Cs3254
byguest71d7ee
 
PPTX
Basic practices for information & computer security
byPrajktaGN
 
PPTX
Computer hacking
byArjun Tomar
 
DOCX
Computer Fraud and Abuse TechniquesChapter 66-1.docx
bypatricke8
 
PPTX
cyber security.pptx
byTapan Khilar
 
PPTX
Blue team responses to people who "hack like a girl"
byKate Brew
 
PPTX
Social engineering
byAlexander Zhuravlev
 
Social engineering hacking attack
byPankaj Dubey
 
Social Engineering.pdf
byMeshalALshammari12
 
Isys20261 lecture 10
byWiliam Ferraciolli
 
social engineering
byRavi Patel
 
Social engineering: A Human Hacking Framework
byJahangirnagar University
 
Mobile security
byTapan Khilar
 
Social Engineering,social engeineering techniques,social engineering protecti...
byABHAY PATHAK
 
Social Engineering Attacks How Hackers Exploit Human Psychology.pptx
byxploreitcorp
 
Social Engineering security Aweness.pptx
byYacinRouger
 
Psychological aspect of social engineering
byYuvaraj Naresh
 
Social engineering-Attack of the Human Behavior
byJames Krusic
 
Social Engineering Attacks & Principles
byLearningwithRayYT
 
10TH FEB CYBER SECURITY by C-DAC Noida.pptx
by24149052
 
Cs3254
byguest71d7ee
 
Basic practices for information & computer security
byPrajktaGN
 
Computer hacking
byArjun Tomar
 
Computer Fraud and Abuse TechniquesChapter 66-1.docx
bypatricke8
 
cyber security.pptx
byTapan Khilar
 
Blue team responses to people who "hack like a girl"
byKate Brew
 
Social engineering
byAlexander Zhuravlev
 

More from hybr1s

PDF
Asyl und Flüchtlinge in Siegen-Wittgenstein
byhybr1s
 
PDF
Minimalismus
byhybr1s
 
PDF
Dependency Injection
byhybr1s
 
PDF
Hasi-Talk: Blender
byhybr1s
 
PDF
Spacehack
byhybr1s
 
PDF
Religion in Computerspielen
byhybr1s
 
PDF
Webvideo Culturers
byhybr1s
 
PPTX
Batman
byhybr1s
 
PDF
LilyPond
byhybr1s
 
PPTX
Disney Prinzessinnen
byhybr1s
 
PDF
Isee3 Reboot
byhybr1s
 
PDF
Katastrophenmanagement
byhybr1s
 
PPTX
Wlan-Sicherheit für Fortgeschrittene
byhybr1s
 
ODP
Lovecraft & Cthulhu
byhybr1s
 
PDF
“Eine CPU kann rechnen, aber ein DSP kann zaubern”
byhybr1s
 
PPTX
Hybr1s über "Was ist Wissenschaft?"
byhybr1s
 
ODP
Phil Krämer: WLAN #HACKING
byhybr1s
 
PPTX
Gutmensch oder Weltenretter
byhybr1s
 
PDF
Return oriented programming
byhybr1s
 
PPSX
earthship biotecture
byhybr1s
 
Asyl und Flüchtlinge in Siegen-Wittgenstein
byhybr1s
 
Minimalismus
byhybr1s
 
Dependency Injection
byhybr1s
 
Hasi-Talk: Blender
byhybr1s
 
Spacehack
byhybr1s
 
Religion in Computerspielen
byhybr1s
 
Webvideo Culturers
byhybr1s
 
Batman
byhybr1s
 
LilyPond
byhybr1s
 
Disney Prinzessinnen
byhybr1s
 
Isee3 Reboot
byhybr1s
 
Katastrophenmanagement
byhybr1s
 
Wlan-Sicherheit für Fortgeschrittene
byhybr1s
 
Lovecraft & Cthulhu
byhybr1s
 
“Eine CPU kann rechnen, aber ein DSP kann zaubern”
byhybr1s
 
Hybr1s über "Was ist Wissenschaft?"
byhybr1s
 
Phil Krämer: WLAN #HACKING
byhybr1s
 
Gutmensch oder Weltenretter
byhybr1s
 
Return oriented programming
byhybr1s
 
earthship biotecture
byhybr1s
 

Recently uploaded

PDF
Top 9 Managed IT Service Providers in Addison
byCloudavize
 
PDF
Top Courier Aggregators in India for your Business
byShipdaak
 
PDF
Laser247 ID - One Hub for Sports, Games & Secure Login
byLaser247 ID
 
DOCX
Why Do Most Videos Fail to Get Reach_.docx
byjenwhite023
 
PDF
IPTV Business Model Explained: How Resellers Make Monthly Recurring Income 2026
byBoo dlamer
 
PDF
Zoho Integration Overview: Features, Benefits, and Applications
byWooplix Technologies Pvt. Ltd.
 
PDF
Is Returning Home Worth Facing Buried Family Secrets?
byEvlena Fainzo
 
DOCX
Everline Roofing Co – Expert Green & Solar Roofing Services
byRohan Smith
 
PDF
Growth Medium for Cell & Microbial Cultures | How Growth Medium Supports Cell...
byHenryJoseph34
 
PDF
Parking Structure.pdf of cars trucks bus
byaksfochzf
 
PPTX
New incl-amdt of Abbr in JSSDM 2022.pptx
byabrarhossen024
 
PDF
BIS ISI Mark Certification in India: Process, Documents & Compliance
bySS GLOBAL SERVICES
 
PPTX
ContainersClub.com – Reliable Shipping Container Services Across the USA
bycontainersclubseo
 
PPTX
On-Demand App Development Powering the Future of Instant Services.pptx
byIMG Global Infotech
 
PDF
10 Best HVAC Facebook Ads Agencies in 2026
byRankMeTop | Plumbing & HVAC Internet Marketing Agency
 
PPTX
Sunday Mass in an ordinary day powerpttt
byAdeahDaria
 
PDF
10 Best HVAC Google Ads Agencies in 2026
byRankMeTop | Plumbing & HVAC Internet Marketing Agency
 
PPTX
Get the best DFAM 3D Printing Chennai by Amuse.pptx
byAmuse3D
 
PPTX
Competitive Intelligence in Pharma: Stay Ahead of the Competitors
byPharmaLeap Training
 
PDF
GetRankDigital - Digital Marketing Agency
byGet Rank Digital
 
Top 9 Managed IT Service Providers in Addison
byCloudavize
 
Top Courier Aggregators in India for your Business
byShipdaak
 
Laser247 ID - One Hub for Sports, Games & Secure Login
byLaser247 ID
 
Why Do Most Videos Fail to Get Reach_.docx
byjenwhite023
 
IPTV Business Model Explained: How Resellers Make Monthly Recurring Income 2026
byBoo dlamer
 
Zoho Integration Overview: Features, Benefits, and Applications
byWooplix Technologies Pvt. Ltd.
 
Is Returning Home Worth Facing Buried Family Secrets?
byEvlena Fainzo
 
Everline Roofing Co – Expert Green & Solar Roofing Services
byRohan Smith
 
Growth Medium for Cell & Microbial Cultures | How Growth Medium Supports Cell...
byHenryJoseph34
 
Parking Structure.pdf of cars trucks bus
byaksfochzf
 
New incl-amdt of Abbr in JSSDM 2022.pptx
byabrarhossen024
 
BIS ISI Mark Certification in India: Process, Documents & Compliance
bySS GLOBAL SERVICES
 
ContainersClub.com – Reliable Shipping Container Services Across the USA
bycontainersclubseo
 
On-Demand App Development Powering the Future of Instant Services.pptx
byIMG Global Infotech
 
10 Best HVAC Facebook Ads Agencies in 2026
byRankMeTop | Plumbing & HVAC Internet Marketing Agency
 
Sunday Mass in an ordinary day powerpttt
byAdeahDaria
 
10 Best HVAC Google Ads Agencies in 2026
byRankMeTop | Plumbing & HVAC Internet Marketing Agency
 
Get the best DFAM 3D Printing Chennai by Amuse.pptx
byAmuse3D
 
Competitive Intelligence in Pharma: Stay Ahead of the Competitors
byPharmaLeap Training
 
GetRankDigital - Digital Marketing Agency
byGet Rank Digital
 

Social Engineering

  • 1.
  • 7.
    Social Engineering nenntman zwischenmenschliche Beeinflussungen mit dem Ziel, bei Personen bestimmte Verhalten hervorzurufen, sie zum Beispiel zur Preisgabe von vertraulichen Informationen, zum Kauf eines Produktes oder zur Freigabe von Finanzmitteln zu bewegen.
  • 8.
    Direkte Anfragen Vertrauen undEmotionen ausnutzen Verkörperung Nachforschung
  • 11.
  • 12.
  • 13.
    Personal Erschleichen von Zutritt Identitätsdiebstahl Abfischenvon Informationen Einbringen von Schadsoftware Einblick in Sicherheitsschwächen
  • 14.
  • 16.
    “Hi there, thisis Dave Simpson calling from information services at the main branch. Sorry about the echo, I’m working in the cabling closet at the moment, so I’m calling you on my cell phone.” “No problem, I can hear you fine.What can I do for you?” “Thanks. A lot of the branches have been having network problems over the last few days. Has everything been okay at the Seashore Branch reference desk?” “I think so.” “Okay, that’s good. I’m running a test right now on the network and needed to find a terminal that was behaving itself. Could you log off and let me know if any messages come up?” “No problem.” Marcy logs off of the reference computer; nothing strange happens.“Just the usual messages.” “Good. Now start logging back on. What user are you going in as? I mean which login name are you using?” “Searef. Okay, I’m logged on now.” “No strange messages?” “Nothing.” “That’s great. Look, our problem might be kids hacking into the system so I need you to change the password. Do you know how to do that?” “I think so.”
  • 17.
    “Well, let mewalk you through it.” Dave spends a couple of minutes walking Marcy through changing the system password. The password is now changed to 5eaR3f, a moderately secure password. “Thanks, Marcy. You’ve been a great help. We have your new password logged into the system. Could you pass on the new password to the other reference personnel?” “Sure.” “Wonderful. Just remember not to give the password out to anyone who doesn’t need it, and don’t write it down where anyone who shouldn’t have it can get at it. Have a great day.” “You too.”
  • 20.
  • 24.
  • 28.
  • 29.
    Q&A E-Mail: XMPP: phil@phkr.de OTR: 71E1 0CDE86B8 0121 83B3 A09E E069 AD18 01F7 36BD PGP: BD97 D5D3 D29F 3248 F253 0793 D996 E113 68E9 C588
  • 30.
    Bilder • Opa amTelefon: http://waltons.steve-p.org/pix/65B_01193100.jpg • Hacker mit Sturmhaube: http://blog.malwarebytes.org/wp-content/uploads/2013/06/photodune-3396562-calling-m.jpg • Tresorraum in der Schweiz: http://richtigteuer.de/wp-content/uploads/2013/12/Schweizer-Bank-Tresorraum-1.jpg • Attack Tree Tresor: https://www.schneier.com/attacktrees.pdf • Bibliothek: http://blogs.loc.gov/law/files/2010/08/Reference-Librarian-assisting-readers-1.jpg • Passwort-Comic: https://xkcd.com/936/ • BSI-Comic: https://www.bsi.bund.de/SharedDocs/Bilder/DE/BSI/Themen/grundschutzdeutsch/Webkurs/pic1120_gif.gif?__blob=normal&v=3 • Zaun: http://www.nilesfence.com/blog/wp-content/uploads/2013/06/WETTSUPERC2.jpg • Bürogebäude: https://phandroid.s3.amazonaws.com/wp-content/uploads/2013/06/NSA-Building.jpg • Büro: http://p1.pichost.me/i/27/1502108.jpg • Influence: http://ecx.images-amazon.com/images/I/71FDaBi9zaL.jpg
  • 31.
    Quellen • Definition SocialEngineering: https://de.wikipedia.org/wiki/ Social_Engineering_%28Sicherheit%29 • Beispielunterhaltung: S.T. C.Thompson: „Helping the Hacker?“