DG
Uploaded byDaniel Gorita
PPTX, PDF43 views

Social Engineering - Enterprise Phishing.pptx

The document discusses social engineering, particularly phishing, which involves manipulating individuals to disclose confidential information or compromise security. It outlines various types of social engineering attacks, notable historical examples, and best practices for personal security. Understanding these techniques is crucial for protecting oneself and organizations from such attacks.

Embed presentation

Download to read offline
Phishing 1
Definition of Social Engineering Social engineering is the art of manipulating people to disclose confidential information, perform actions, or compromise security. It involves psychological manipulation and technical exploits. Goals of Social Engineering Obtain sensitive information (passwords, credit card details, etc.) Gain unauthorized access to systems or physical spaces Influence people's behavior to perform specific actions Circumvent security measures and controls
Types of Social Engineering Attacks Phishing: Sending deceptive emails or messages to trick recipients into revealing sensitive information. Pretexting: Creating a false narrative or scenario to gain someone's trust and extract information or access. Baiting: Offering something enticing (e.g., USB drive, free merchandise) to prompt a person to take an action that compromises security. Tailgating: Unauthorized entry to a restricted area by following someone who has authorized access. Impersonation: Pretending to be someone else, such as a trusted authority figure, to gain trust and manipulate individuals.
Phishing 91% of UK companies experienced at least one successful phishing attack in 2021 Phishing When criminals use scam emails, text messages (smishing) or phone calls (vishing) to trick their victim with the aim to make you visit a website or open a file, which may download a virus onto your device or direct you to a malicious website to steal your personal details. Don’t take the bait URGE NT DOES IT LOOK LEGITIMATE? REPORT IT Use your 'report suspicious email' button located at the top of your outlook window. SPELLI NG MISTAK ES VAGU E FISHING THE PHISH
Phishing CASES A real-life demo of a phishing scam – this could be you! FISHING THE PHISH 2020: TWITTER In 2020, Twitter became the site of social engineering attacks where the accounts of Barack Obama, Bill Gates, Elon Musk, and others were compromised to solicit Bitcoins from their followers. The creators of the social engineering attack earned nearly $120,000 in Bitcoin, but the greatest danger was the clear access the hackers had to the celebrities' accounts, although supposedly no personal data was compromised. 2016: Democratic Party The email hack of the US Democratic Party during the presidential election campaign in 2016 is one of the most emblematic social engineering attacks in recent memory. Russian hackers launched a spear-phishing attack against Democratic Party leaders, which allowed them to access sensitive campaign information and data from nearly 500,000 voters. 2019: Tinder Swindler The infamous "Tinder Swindler" has been around since 2011 and has deceived victims into financing a luxurious lifestyle through a series of romantic scams. He used a combination of manipulation, love influence, and a lie as an excuse, eventually stealing around $10 million in his last two years of social engineering tricks. In 2019, he was convicted, and in 2022, the swindler himself fell victim to a scam, losing nearly $7,000 of the money he had worked hard to earn (through the scam). 2018: The Federal Police (PF) investigate the theft of computers from Petrobras contained strategic information about oil exploration activities. According to PF delegate Carla Dolinski in Macaé, the information was stored on four notebooks and two hard drives belonging to the service provider company Halliburton, which were stolen from a container transported from Santos to Macaé by the carrier Transmagno. The shipment left Santos on January 18th and arrived in Macaé 12 days later. "On January 31st, Halliburton employees noticed that the seal of the container had been broken," the delegate said.).
Phishing Best Practices for Personal Security • Protect personal information (e.g., avoid sharing sensitive details on social media). • Regularly update passwords and use strong, unique passwords for different accounts. • Enable two-factor authentication wherever possible. • Be cautious when clicking on links or downloading attachments from unknown or suspicious sources. Conclusion Social engineering attacks exploit human psychology and trust. By understanding the techniques used in social engineering attacks, we can better protect ourselves and our organizations. Stay informed, stay vigilant, and stay secure!
Phishing A real-life demo of a phishing scam – this could be you! FISHING THE PHISH

More Related Content

PDF
Cybersecurity_Awareness_educational_presentation.pdf
byjacobjacob21124
 
PDF
Drooger, jack cyber security
byHagerstown Chamber Business Expo
 
PDF
Uk computer emergency response team (cert) introduction to social engineering
byPublicLeaker
 
PDF
Uk computer emergency response team (cert) introduction to social engineering
byPublicLeaks
 
PDF
Phishing.pdf
byMariGogokhia
 
PPTX
phishing.pptx
byReenuMariaBinoy1
 
PPTX
Phishing demo
byJennifer Leone Thompson
 
DOCX
social engineering attacks.docx
byMehwishAnsari11
 
Cybersecurity_Awareness_educational_presentation.pdf
byjacobjacob21124
 
Drooger, jack cyber security
byHagerstown Chamber Business Expo
 
Uk computer emergency response team (cert) introduction to social engineering
byPublicLeaker
 
Uk computer emergency response team (cert) introduction to social engineering
byPublicLeaks
 
Phishing.pdf
byMariGogokhia
 
phishing.pptx
byReenuMariaBinoy1
 
Phishing demo
byJennifer Leone Thompson
 
social engineering attacks.docx
byMehwishAnsari11
 

Similar to Social Engineering - Enterprise Phishing.pptx

PPTX
Lect6_TWIN_PHIS.pptxdsdwdwdjjdo2jdo2d2d2d2d
byzmulani8
 
PPTX
COVID-19 Phishing Scams
byJLeoneThompson1
 
PPTX
cyber security _akhand pratap chaurasiya.pptx
bydjsammy0342
 
PPTX
Phishing
bySouganthikaSankaresw
 
PDF
What is social engineering.pdf
byuzair
 
PPTX
Email phishing and countermeasures
byJorge Sebastiao
 
PDF
Phishing is a type of cyber attack that involves tricking individuals.pdf
byEthioTelecom_Getahun Biratu
 
PPTX
social_engineering.pptx
byalexadejumo
 
PPT
Social Engineering | #ARMSec2015
byHovhannes Aghajanyan
 
PPTX
Day 2
bysefreed
 
PPSX
Social Engineering - Are You Protecting Your Data Enough?
byJamRivera1
 
PDF
Phishing 101 General Course
byAaron Keating
 
PDF
Phishing: Analysis and Countermeasures
byIRJET Journal
 
PPTX
Rods and Hooks - The Phishing Trip by Soummya Mukhopadhyay
bynull - The Open Security Community
 
PDF
Phishing & Pharming Explained.pdf
byEvs, Lahore
 
PPTX
IT2252_Presentation_Group03.pptx
byNLFunnyFunky
 
PDF
OWASP_Presentation_FINAl. Cybercrime and cyber security awareness
byMaherHamza9
 
PDF
Edu 03 assingment
byAswani34
 
PPTX
Social engineering
byAlexander Zhuravlev
 
PPTX
Phishing Whaling and Hacking Case Studies.pptx
byStephen Jesukanth Martin
 
Lect6_TWIN_PHIS.pptxdsdwdwdjjdo2jdo2d2d2d2d
byzmulani8
 
COVID-19 Phishing Scams
byJLeoneThompson1
 
cyber security _akhand pratap chaurasiya.pptx
bydjsammy0342
 
Phishing
bySouganthikaSankaresw
 
What is social engineering.pdf
byuzair
 
Email phishing and countermeasures
byJorge Sebastiao
 
Phishing is a type of cyber attack that involves tricking individuals.pdf
byEthioTelecom_Getahun Biratu
 
social_engineering.pptx
byalexadejumo
 
Social Engineering | #ARMSec2015
byHovhannes Aghajanyan
 
Day 2
bysefreed
 
Social Engineering - Are You Protecting Your Data Enough?
byJamRivera1
 
Phishing 101 General Course
byAaron Keating
 
Phishing: Analysis and Countermeasures
byIRJET Journal
 
Rods and Hooks - The Phishing Trip by Soummya Mukhopadhyay
bynull - The Open Security Community
 
Phishing & Pharming Explained.pdf
byEvs, Lahore
 
IT2252_Presentation_Group03.pptx
byNLFunnyFunky
 
OWASP_Presentation_FINAl. Cybercrime and cyber security awareness
byMaherHamza9
 
Edu 03 assingment
byAswani34
 
Social engineering
byAlexander Zhuravlev
 
Phishing Whaling and Hacking Case Studies.pptx
byStephen Jesukanth Martin
 

Recently uploaded

PPTX
Statistical Analysis for Researchers - Presentation - Lecture Two.pptx
byAmgad Fahmy
 
PPTX
Presentation for data analysis the files
bynishantsontakke2007
 
PDF
Azure Data Factory Overview for SSIS Developers.pdf
bySrinivas V
 
PPTX
Chapter_3_v9.0.pptxChapter_3_v9.0.pptxChapter_3_v9.0.pptx
bylolagom166
 
PDF
5813832bxjdjjd26-Case-Study-Autosaved.pdf
bypagibac371
 
PDF
(Share) KDD2021 Case Study #1 Causal Impact Analysis - CeViChE.pdf
byDiyaMondal13
 
PPTX
Pakistan Tableau User Group Event: A guide to Salesforce Certified Data Analyst
byWaqarAhmedShaikh8
 
PPT
unit-3 Introduction to drawing part-1.ppt
byalemayehuc1
 
PDF
7th International Conference on Artificial Intelligence and Big Data (AIBD 2026)
bymlaij
 
PDF
06FPBasicCONCEPTS AND TECHNIQUESClass6.pdf
byanhdph252
 
PPTX
Investment and Portfilio. Group no 1.pptx
byAhtshamUlHaq10
 
PDF
01IntroDATAMINGINGEXPORECLASS1INTRODUCTIO.pdf
byanhdph252
 
PPTX
Feature Extraction in Feature engineering.pptx
bysimaney145
 
PDF
Lecture Notes on Tableau for Data & Analytics
byRohit Garg
 
PDF
Chapter 4 Combinational digital system design pdf
byalisafaaie25
 
PPTX
cyber crime empowerment related to teerorism and reports
bypredictsmartness
 
PPT
unit-3 Introduction to drawing and instruments part-2.ppt
byalemayehuc1
 
PDF
NY26_Gov.uk_List__Final__18_12_25.pdf New Years Honours 2026
byHenry Tapper
 
PPTX
2ai_mockinterview.pptx hjijjjjjjjjjnhhbh
bypankajponia112
 
PPTX
1. Pharmaceutical errors unit (1) (1).pptx
byrishitvora055
 
Statistical Analysis for Researchers - Presentation - Lecture Two.pptx
byAmgad Fahmy
 
Presentation for data analysis the files
bynishantsontakke2007
 
Azure Data Factory Overview for SSIS Developers.pdf
bySrinivas V
 
Chapter_3_v9.0.pptxChapter_3_v9.0.pptxChapter_3_v9.0.pptx
bylolagom166
 
5813832bxjdjjd26-Case-Study-Autosaved.pdf
bypagibac371
 
(Share) KDD2021 Case Study #1 Causal Impact Analysis - CeViChE.pdf
byDiyaMondal13
 
Pakistan Tableau User Group Event: A guide to Salesforce Certified Data Analyst
byWaqarAhmedShaikh8
 
unit-3 Introduction to drawing part-1.ppt
byalemayehuc1
 
7th International Conference on Artificial Intelligence and Big Data (AIBD 2026)
bymlaij
 
06FPBasicCONCEPTS AND TECHNIQUESClass6.pdf
byanhdph252
 
Investment and Portfilio. Group no 1.pptx
byAhtshamUlHaq10
 
01IntroDATAMINGINGEXPORECLASS1INTRODUCTIO.pdf
byanhdph252
 
Feature Extraction in Feature engineering.pptx
bysimaney145
 
Lecture Notes on Tableau for Data & Analytics
byRohit Garg
 
Chapter 4 Combinational digital system design pdf
byalisafaaie25
 
cyber crime empowerment related to teerorism and reports
bypredictsmartness
 
unit-3 Introduction to drawing and instruments part-2.ppt
byalemayehuc1
 
NY26_Gov.uk_List__Final__18_12_25.pdf New Years Honours 2026
byHenry Tapper
 
2ai_mockinterview.pptx hjijjjjjjjjjnhhbh
bypankajponia112
 
1. Pharmaceutical errors unit (1) (1).pptx
byrishitvora055
 

Social Engineering - Enterprise Phishing.pptx

  • 1.
  • 2.
    Definition of Social Engineering Socialengineering is the art of manipulating people to disclose confidential information, perform actions, or compromise security. It involves psychological manipulation and technical exploits. Goals of Social Engineering Obtain sensitive information (passwords, credit card details, etc.) Gain unauthorized access to systems or physical spaces Influence people's behavior to perform specific actions Circumvent security measures and controls
  • 3.
    Types of SocialEngineering Attacks Phishing: Sending deceptive emails or messages to trick recipients into revealing sensitive information. Pretexting: Creating a false narrative or scenario to gain someone's trust and extract information or access. Baiting: Offering something enticing (e.g., USB drive, free merchandise) to prompt a person to take an action that compromises security. Tailgating: Unauthorized entry to a restricted area by following someone who has authorized access. Impersonation: Pretending to be someone else, such as a trusted authority figure, to gain trust and manipulate individuals.
  • 4.
    Phishing 91% of UKcompanies experienced at least one successful phishing attack in 2021 Phishing When criminals use scam emails, text messages (smishing) or phone calls (vishing) to trick their victim with the aim to make you visit a website or open a file, which may download a virus onto your device or direct you to a malicious website to steal your personal details. Don’t take the bait URGE NT DOES IT LOOK LEGITIMATE? REPORT IT Use your 'report suspicious email' button located at the top of your outlook window. SPELLI NG MISTAK ES VAGU E FISHING THE PHISH
  • 5.
    Phishing CASES A real-lifedemo of a phishing scam – this could be you! FISHING THE PHISH 2020: TWITTER In 2020, Twitter became the site of social engineering attacks where the accounts of Barack Obama, Bill Gates, Elon Musk, and others were compromised to solicit Bitcoins from their followers. The creators of the social engineering attack earned nearly $120,000 in Bitcoin, but the greatest danger was the clear access the hackers had to the celebrities' accounts, although supposedly no personal data was compromised. 2016: Democratic Party The email hack of the US Democratic Party during the presidential election campaign in 2016 is one of the most emblematic social engineering attacks in recent memory. Russian hackers launched a spear-phishing attack against Democratic Party leaders, which allowed them to access sensitive campaign information and data from nearly 500,000 voters. 2019: Tinder Swindler The infamous "Tinder Swindler" has been around since 2011 and has deceived victims into financing a luxurious lifestyle through a series of romantic scams. He used a combination of manipulation, love influence, and a lie as an excuse, eventually stealing around $10 million in his last two years of social engineering tricks. In 2019, he was convicted, and in 2022, the swindler himself fell victim to a scam, losing nearly $7,000 of the money he had worked hard to earn (through the scam). 2018: The Federal Police (PF) investigate the theft of computers from Petrobras contained strategic information about oil exploration activities. According to PF delegate Carla Dolinski in Macaé, the information was stored on four notebooks and two hard drives belonging to the service provider company Halliburton, which were stolen from a container transported from Santos to Macaé by the carrier Transmagno. The shipment left Santos on January 18th and arrived in Macaé 12 days later. "On January 31st, Halliburton employees noticed that the seal of the container had been broken," the delegate said.).
  • 6.
    Phishing Best Practices forPersonal Security • Protect personal information (e.g., avoid sharing sensitive details on social media). • Regularly update passwords and use strong, unique passwords for different accounts. • Enable two-factor authentication wherever possible. • Be cautious when clicking on links or downloading attachments from unknown or suspicious sources. Conclusion Social engineering attacks exploit human psychology and trust. By understanding the techniques used in social engineering attacks, we can better protect ourselves and our organizations. Stay informed, stay vigilant, and stay secure!
  • 7.
    Phishing A real-life demoof a phishing scam – this could be you! FISHING THE PHISH

Editor's Notes

  • #2 Click to add text
  • #3 Click to add text
  • #4 Click to add text
  • #5 Click to add text
  • #6 Click to add text
  • #7 Click to add text
  • #8 Click to add text