Security Awareness Training

109 - Social Engineering

Although sometimes neglected in favor of technical security measures, social engineering can often be the Achilles' heel of an organization. Hackers and other criminals may well find it easier to trick unsuspecting employees out of sensitive information than to break through other security systems.

A social engineering attack could be aimed at securing sensitive information directly, or might only be the start of a far broader attack. And the recent rise of "phishing" attacks - emails designed to trick people into revealing personal information - is a source of concern for both individuals and for organizations.

"Social Engineering" has been developed to make business users aware of the potential for these forms of attacks. The course discusses:

• What is social engineering?
• How attackers select their targets.
• Some techniques that attackers employ.
• Preventing attacks.
• Spotting attacks.
• Responding to attacks.