How Social Engineering Security Awareness Stops 3 Common Scams

Social engineering, in the context of information security, refers to the use of psychological manipulation to trick people into divulging sensitive information (information gathering) or performing actions (fraud/unauthorized system access). It is a non-technical confidence scam that resembles a very elaborate plan that consists of several stages (See the Typical Phases part). The three social engineering scams examined briefly here are 1) Identity Theft, 2) Vishing and 3) Baiting. They are ordered in line with their character from more people-oriented to those used primarily against corporations. In the second part, there is a short outline of why education and security awareness training can be helpful in preventing such social engineering scams.

Article complet : ici