Episode 6 - What is Social Engineering?

Social Engineering is one of the number one issues when it comes to organizations protecting their networks.  Social engineering is when an attacker uses interaction and study of human behavior to manipulate and trick a person into providing information or access.  In this week's episode, Mike Miller steps through 3 types of social engineering and shares how a simple box of donuts gave him all the access he could want.  

What to Know -

Social engineering can be a low effort/high return attack for a cyber criminal.  In many cases, it hinges on kindness and human nature.  The more effort a criminal puts into learning about a target, the more successful the attack.  Social engineering can be used on physical security, via the phone, as well as through the computer.

Why You Should Care - 

The human element is responsible for roughly 85% of breaches.  In many cases, regular employee security awareness training can empower employees to be a part of business protection.  Encouraging security awareness as part of company culture is a high ROI activity.

Read Mike Miller's full blog response on Social Engineering HERE.