The Art of Deception: Controlling the Human Element of Security
| Author | : | |
| Rating | : | 4.49 (584 Votes) |
| Asin | : | 0471237124 |
| Format Type | : | paperback |
| Number of Pages | : | 304 Pages |
| Publish Date | : | 2017-01-20 |
| Language | : | English |
DESCRIPTION:
And, perhaps most importantly, Mitnick offers advice for preventing these types of social engineering hacks through security protocols, training programs, and manuals that address the human element of security.. With the help of many fascinating true stories of successful attacks on business and government, he illustrates just how susceptible even the most locked-down information systems are to a slick con artist impersonating an IRS agent. Narrating from the points of view of both the attacker and the victims, he explains why each attack was so successful and how it could have been prevented in an engaging and highly readable style reminiscent of a true-crime novel. Now, in The Art of Deception, the world's most notorious hacker gives new meaning to the old adage, "It takes a thief to catch a thief." Focusing on the human
Hackers use the euphemism "social engineering" and hacker-guru Kevin Mitnick examines many example scenarios.After Mitnick's first dozen examples anyone responsible for organizational security is going to lose the will to live. The Art of Deception is about gaining someone's trust by lying to them and then abusing that trust for fun and profit. --Steve Patient, amazon. This circle can't be squared.Considering Mitnick's reputation as a hacker guru, it's ironic that the last point of attack for hackers using social engineering are computers. Phones are faster than letters, after all, and having large organizations means dealing with lots of strangers.Much of Mitnick's security advice sounds practical until you think about implementation, when you realize that more effective security means reducing organizational efficiency--an impossible trade in competitive business. It
Social Engineering 101 - Highly Recommended "The Art of Deception" was recommended to me by an instructor teaching a CISSP prep class. It is both an enjoyable and informative read. Mitnik is the "real deal" in exploiting social engineering techniques and his books should be required reading by corporate security policy makers (and I am sure it is for many already).This book illustrates various techniques for bypassing established corporate physical and information security security policies. I have actually inadvertently used some of these techniques when troubleshooting network issues or having forgotten my passcard to gain access to s. "Speaks volumes on social engineering/makes you think!" according to E. After reading it, the book makes one more aware of what to be careful when giving out information of any kind and how to protect yourself and your company's assets. I've heard alot of "Don't ever give out your id/password", "Always have firewalls on your network." One hardly ever hears about 'make sure you're giving information to someone who's supposed to have it'. There's tons of books on security with respect to technology but this is the first one I've seen that actually focuses on the weakest link when it comes to security - the human element.All the firewalls and software can't prevent a. Great stories to read as well as scope given in Kev's book Very comprehensive and informational, Kevin knows his security and its scary in one respect that systems all have some way of being broken afterall they were designed by humans. I like how its written its captivating and uses lots of story lines to back up the topics of the book.