Cyber Security - GCHQ
2y ago
17 Views
1 Downloads
890.90 KB
14 Pages
Report/dmca
Download PDF

Transcription

Cyber SecurityChantal CrannyHome Office Digital, Data and Technology

Social Media and Social Engineering

Is this security?3

Social Engineering

Social Engineering Social engineering is the term used for a broad range ofmalicious activities accomplished through humaninteractions. It uses psychological manipulation to trickusers into making security mistakes or giving awaysensitive information. Social engineering attacks happen in one or more steps.A perpetrator first investigates the intended victim togather necessary background information, such aspotential points of entry and weak security protocols,needed to proceed with the attack. Then, the attackermoves to gain the victim’s trust and provide stimuli forsubsequent actions that break security practices, such asrevealing sensitive information or granting access tocritical resources.Social Engineering Attack LifecycleWhat makes social engineering especially dangerous is that it relies on human error, rather than vulnerabilities in software and operating systems.Mistakes made by legitimate users are much less predictable, making them harder to identify and thwart than a malware-based intrusion.5

Who should you trust?6

Group Discussion

What do you postonline? What types of Social Media doyou use and what types ofthings do you post? What are the dangers ofposting online and on SocialMedia? How do you think we canreduce the dangers of postingon Social Media?8

Activity

Activity*Worksheets have been provided. Please referto these to complete the activityUse Jade’s Social Media Profile to answer thequestions on your worksheets and work outthe password to her Online Banking App.------------10

ActivityUse Jade’s Social Media Profile to answer thequestions on your worksheets and work outthe password to her Online Banking App.KEYBOARD1988------------11

Real world applications

How to defend yourselfStay aware of youronline surroundingsKeep your accountsand devices privateDon’t constantlypost your location –This may reveal lotsabout your habits topotential criminalsThink before you actSocialEngineeringDon’t accept friendrequests of anyoneyou don’t knowIf an offer or deal seems toogood to be true, it usually is!13

Thank YouHome Office Digital, Data and Technology

Social Engineering Social engineering is the term used for a broad range of malicious activities accomplished through human interactions. It uses psychological manipulation to trick users into making security mistakes or giving away sensitive information. Social

Related Books

Cyber Security Monitoring and Logging Guide

Cyber Security Monitoring and Logging Guide

CIP-002-5 — Cyber Security — BES Cyber System Categorization

CIP-002-5 — Cyber Security — BES Cyber System Categorization

FERC Security Program Requirements and Cyber Brief

FERC Security Program Requirements and Cyber Brief

Cyber Security Capabilities at The University of Texas at .

Cyber Security Capabilities at The University of Texas at .

Cyber security assessments of industrial control systems

Cyber security assessments of industrial control systems

An introduction to CYBER SECURITY - Skills for Care

An introduction to CYBER SECURITY - Skills for Care

Experiences with Honey-Patching in Active Cyber Security .

Experiences with Honey-Patching in Active Cyber Security .

Anti-Bullying and Cyber-Bullying Policy

Anti-Bullying and Cyber-Bullying Policy

CYBER SECURITY RESEARCH AND EDUCATION AT THE

CYBER SECURITY RESEARCH AND EDUCATION AT THE

Big-Data Architecture for Cyber Attack Graphs

Big-Data Architecture for Cyber Attack Graphs

Managing Security with SAP Solution Manager

Managing Security with SAP Solution Manager

PopularTags

Recent Views