Username / Password :   
Main Navigation
         About Dictionary
Microsoft Users

    $  .  /  0  1  2  3  4  6  8  9  A  B  C  D  E  F  G  H  I  J  K  L  M  N  O  P  Q  R  S  T  U  V  W  X  Y  Z  [  ~
The LinuxDig.Com Linux Dictionary is currently in Beta.
You can help, email Comments or Suggestions here.
I.E. users please click.
Number of Terms : 8142 Number of Definitions : 9135

social engineering (con, human engineering)

1. Social engineering is a form of hacking that targets people's minds rather than their computers. A typical example is sending out snail mail marketing materials with the words "You may already have won" emblazoned across the outside of the letter. As you can see, social engineering is not unique to hackers; it's main practitioners are the marketing departments of corporations. Key point: The classic example is to pretend to be from a company's computer department and call up a user asking for their password. Sophisticated hacks will first try to make the victim uncomfortable (i.e. "We've detected improper use of your account..."), then offer them the opportunity to be very helpful ("I'm sure we can check this out now and not involve your boss."). The technique often works well in reverse: call up the computer support department and tell them you've lost your password. This works especially well in companies that have policies requiring you to change your password -- people forgetting passwords on really old accounts are frequent, so support departments are deluged with such requests, so it's easy to slip one past them. Key point: Know as much about your victim as possible. If you are emulating something, try to find the answers to typical questions you will be asked. Key point: If all else fails, try stupidity. If you are a foreigner, pretend not to speak the language well. Likewise, females have certain advantages in male-dominated cultures. Example: For members-only access, please create an account: Username: Password: Confirm: People often choose the same password for everything. For example, put in your website the prompt shown to the right. A lot of users will use the same username/password for this that they use for websites like Hotmail, Yahoo mail, or Netscape mail. This will therefore sift valid e-mail accounts from people who visit your site. In a similar manner, these passwords might be useful within the companies they work for as well. Key point: Newbies are favorite victims of social-engineering attacks in chat rooms. Hackers go after people who appear to be unsure of themselves online. Key point: Many hackers do not consider social-engineering a "real" attack because it doesn't require extensive technical knowledge in order to pull off. From Hacking-Lexicon
Source:
Linux Dictionary (version 0.12)
author: Binh Nguyen
linuxfilesystem(at)yahoo(dot)com(dot)au

This Linux Dictionary is distributed under the GNU
Free Documentation License. Online version is at
http://www.tldp.org/LDP/Linux-Dictionary/html/index.htm



Site Hosted By Digital Environments, Inc. This Website was Created with DE-Web Version 1.9.7.4,
The Fast, Web Based - Website Design Tool, Groupware and Web Hosting System by Digital Environments, Inc.
Groupware:Project Management, Sales Tracking, Web Site Design and News / Blogger all in one package.