IT Security/Threats/Social Engineering

This lesson covers social engineering.

Objectives and SkillsEdit

Objectives and skills for the social engineering portion of Security+ certification include:[1]

Summarize social engineering attacks and the associated effectiveness with each attack.
  • Shoulder surfing
  • Dumpster diving
  • Tailgating
  • Impersonation
  • Hoaxes
  • Whaling
  • Vishing
  • Principles (reasons for effectiveness)
    • Authority
    • Intimidation
    • Consensus/Social proof
    • Scarcity
    • Urgency
    • Familiarity/liking
    • Trust

ReadingsEdit

MultimediaEdit

  1. YouTube: Shoulder Surfing - CompTIA Security+ SY0-401: 3.3
  2. YouTube: Dumpster Diving - CompTIA Security+ SY0-401: 3.3
  3. YouTube: Tailgating - CompTIA Security+ SY0-401: 3.3
  4. YouTube: Impersonation - CompTIA Security+ SY0-401: 3.3
  5. YouTube: Hoaxes - CompTIA Security+ SY0-401: 3.3
  6. YouTube: Whaling - CompTIA Security+ SY0-401: 3.3
  7. YouTube: The Effectiveness of Social Engineering - CompTIA Security+ SY0-401: 3.3

ActivitiesEdit

See AlsoEdit

ReferencesEdit