Abstract image of a woman sitting on books and studying on a laptop

Introduction to Social engineering | Techniques of Social engineering

Download as PPTX, PDF
Prem Lamsal, profile picture
Prem Lamsal

Social engineering is a manipulation technique that targets individuals in order to exploit weaknesses in security systems for malicious purposes. Common methods include pretexting, phishing, and vishing, which involve tricking individuals into divulging sensitive information. To enhance security, it is vital to verify information sources and ensure safe online practices.

Technology
Related topics:
Social Engineering
1 of 15
Downloaded 14 times
1
2
Most read
3
4
5
Most read
6
7
Most read
8
9
10
11
12
13
14
15
Social Engineering BY PREM LAMSAL BSC.CSIT 7TH SEMESTER 31
What is Social Engineering? • In a security context, Social Engineering can be defined as: • A combination of social, psychological and information gathering techniques that are used to manipulate people for nefarious purposes. • It target humans rather then technology to exploit weakness in an organizations security.
• Is the art of manipulating people so they give up confidential information • Attacker uses human interaction to obtain or compromises information • Tricking people to get information • Most common type of SE happens over the phone Social Engineering
Kevin Mitnick - Famous Social Engineer “People are generally helpful, especially to someone who is nice, knowledgeable or insister.”
Social Engineering Cycle Gather Information Plan Attack Acquire toolsAttack Use acquired knowledge
Techniques of Social Engineering • Pretexting • Phishing • Vishing • Baiting • Quid pro quo • Diversion Theft
Pretexting • Creating fake or invented scenario
Phishing • Obtaining information through email, websites • Websites like http://shadowave.co Sending fake mail to victim
Spear Phishing • More specific to the victim • Target individual Vishing • Phone Phishing
Baiting • Using Trojan Horse that uses physical media and relies on the greed of the victim Web Click Baiting • Something on Internet makes you to click
Quid pro quo • Something for something • Call random numbers at a company, claiming to be from technical support. • Eventually, you will reach someone with a legitimate problem • Grateful you called them back, they will follow your instructions • The attacker will "help" the user, but will really have the victim type commands that will allow the attacker to install malware
Diversion Theft • Divert actual delivery location to some other place and theft information.
Weakest Link? • No matter how strong your: 1. Firewalls 2. Intrusion Detection System 3. Cryptography 4. Antivirus software • We are the weakest link in computer security ! • People are more vulnerable than computers
General Safety / Prevention • Before transmitting personal information over the internet, check the connection is secure and check the URL is correct • If unsure email message is legitimate, contact the person or company by another means to verify • Be aware of excited content on the Internet. • Making policies to verify different source rather than single source.
Thank you For more please visit : http://premlamsal.com.np

More Related Content

PPTX
Cyber Security(Password Cracking Presentation).pptx
VASUOFFICIAL
 
PPTX
HACKING
D's Surti
 
PDF
Social engineering
ankushmohanty
 
PDF
Unit 3_Private Key Management_Protection.pdf
KanchanPatil34
 
DOCX
Password Cracking
Hajer alriyami
 
PPTX
Password Cracking
Sina Manavi
 
PPTX
Chapter1 Cyber security Law & policy.pptx
Nargis Parveen
 
PPTX
Encryption & Decryption
JayantBhatt6
 
Cyber Security(Password Cracking Presentation).pptx
VASUOFFICIAL
 
HACKING
D's Surti
 
Social engineering
ankushmohanty
 
Unit 3_Private Key Management_Protection.pdf
KanchanPatil34
 
Password Cracking
Hajer alriyami
 
Password Cracking
Sina Manavi
 
Chapter1 Cyber security Law & policy.pptx
Nargis Parveen
 
Encryption & Decryption
JayantBhatt6
 

What's hot (20)

PPTX
Password cracking and brute force
vishalgohel12195
 
PDF
CRYPTOGRAPHY AND NETWORK SECURITY
Kathirvel Ayyaswamy
 
PDF
Unit 5_Classification of Cyber Crimes.pdf
KanchanPatil34
 
PPTX
Detection Rules Coverage
Sunny Neo
 
PPTX
Digital forensic tools
Parsons Corporation
 
PPT
Cloud presentation
Sachin Darekar
 
PPT
ETHICAL HACKING
Sweta Leena Panda
 
PPT
Cryptography - A Brief History
prasenjeetd
 
PPTX
Analysis of digital evidence
rakesh mishra
 
PPT
Cyber security and emails presentation
Wan Solo
 
PPTX
Digital forensics
vishnuv43
 
PDF
Unit 6_DoS and DDoS_SQL Injection_tools.pdf
KanchanPatil34
 
PDF
Unit 2_DES Algorithm_Encryption_Decryption.pdf
KanchanPatil34
 
PDF
Unit 2_Key distribution_Deffi-Hellman.pdf
KanchanPatil34
 
PDF
OSINT: Open Source Intelligence - Rohan Braganza
NSConclave
 
PPTX
Hacking
j naga sai
 
PPTX
Palmprint recognition presentation
Alexandru Dorobantu
 
PPTX
Ransomware
Akshita Pillai
 
PDF
Threat Hunting with Splunk Hands-on
Splunk
 
PPTX
Ethical Hacking - sniffing
Bhavya Chawla
 
Password cracking and brute force
vishalgohel12195
 
CRYPTOGRAPHY AND NETWORK SECURITY
Kathirvel Ayyaswamy
 
Unit 5_Classification of Cyber Crimes.pdf
KanchanPatil34
 
Detection Rules Coverage
Sunny Neo
 
Digital forensic tools
Parsons Corporation
 
Cloud presentation
Sachin Darekar
 
ETHICAL HACKING
Sweta Leena Panda
 
Cryptography - A Brief History
prasenjeetd
 
Analysis of digital evidence
rakesh mishra
 
Cyber security and emails presentation
Wan Solo
 
Digital forensics
vishnuv43
 
Unit 6_DoS and DDoS_SQL Injection_tools.pdf
KanchanPatil34
 
Unit 2_DES Algorithm_Encryption_Decryption.pdf
KanchanPatil34
 
Unit 2_Key distribution_Deffi-Hellman.pdf
KanchanPatil34
 
OSINT: Open Source Intelligence - Rohan Braganza
NSConclave
 
Hacking
j naga sai
 
Palmprint recognition presentation
Alexandru Dorobantu
 
Ransomware
Akshita Pillai
 
Threat Hunting with Splunk Hands-on
Splunk
 
Ethical Hacking - sniffing
Bhavya Chawla
 
Ad

Similar to Introduction to Social engineering | Techniques of Social engineering (20)

PPTX
Social engineering
Maulik Kotak
 
PDF
Social Engineering Basics
Luke Rusten
 
PPTX
Cyber Security PPT and how to be aware from hackers
3aitestdata
 
PPTX
Cyber Security Awareness Session for Executives and Non-IT professionals
Krishna Srikanth Manda
 
PPTX
Introduction to Cybersecurity - Secondary School_0.pptx
ShubhamGupta833557
 
PPTX
Social engineering-Attack of the Human Behavior
James Krusic
 
PPTX
Week 2 - Social Engineering attacks.pptx
juancx3
 
PDF
Social Engineering.pdf
MeshalALshammari12
 
PPTX
Unveiling the dark web. The importance of your cybersecurity posture
Lourdes Paloma Gimenez
 
PPTX
Nep bnu bca unit 2: Cyber Crimes and Cyber Law.pptx
TasmiyaTehreenR
 
PPTX
Unit iii: Common Hacking Techniques
Arnav Chowdhury
 
PPTX
Cyber Crime And Cyber Safety Project.pptx
RavinderSingh172970
 
PPTX
ETHICAL HACKING
miltonnancy
 
PPT
Social Engineering
Nicholas Davis
 
PPT
Social engineering
Nicholas Davis
 
PPTX
Cybercrimes and Cybercriminals
Ashikur Rahman
 
PPT
Computer security
Univ of Salamanca
 
PPTX
Amir bouker
Amir Bouker
 
PDF
- Social Engineering Unit- II Part- I.pdf
Ramya Nellutla
 
PPTX
computer law.pptx
MouradAKenk
 
Social engineering
Maulik Kotak
 
Social Engineering Basics
Luke Rusten
 
Cyber Security PPT and how to be aware from hackers
3aitestdata
 
Cyber Security Awareness Session for Executives and Non-IT professionals
Krishna Srikanth Manda
 
Introduction to Cybersecurity - Secondary School_0.pptx
ShubhamGupta833557
 
Social engineering-Attack of the Human Behavior
James Krusic
 
Week 2 - Social Engineering attacks.pptx
juancx3
 
Social Engineering.pdf
MeshalALshammari12
 
Unveiling the dark web. The importance of your cybersecurity posture
Lourdes Paloma Gimenez
 
Nep bnu bca unit 2: Cyber Crimes and Cyber Law.pptx
TasmiyaTehreenR
 
Unit iii: Common Hacking Techniques
Arnav Chowdhury
 
Cyber Crime And Cyber Safety Project.pptx
RavinderSingh172970
 
ETHICAL HACKING
miltonnancy
 
Social Engineering
Nicholas Davis
 
Social engineering
Nicholas Davis
 
Cybercrimes and Cybercriminals
Ashikur Rahman
 
Computer security
Univ of Salamanca
 
Amir bouker
Amir Bouker
 
- Social Engineering Unit- II Part- I.pdf
Ramya Nellutla
 
computer law.pptx
MouradAKenk
 
Ad

Recently uploaded (20)

PDF
Video forgery: An extensive analysis of inter-and intra-frame manipulation al...
IAESIJAI
 
PDF
Getting started with AI Agents and Multi-Agent Systems
Maxim Salnikov
 
PDF
STKI Israel Market Study 2025 version august
Dr. Jimmy Schwarzkopf
 
PPTX
MicrosoftCybserSecurityReferenceArchitecture-April-2025.pptx
SilvioHayashi
 
PDF
Architecture types and enterprise applications.pdf
ChristopherTHyatt
 
PDF
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
PDF
Hybrid horned lizard optimization algorithm-aquila optimizer for DC motor
IAESIJAI
 
PPTX
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
PDF
A review of recent deep learning applications in wood surface defect identifi...
IAESIJAI
 
PDF
Transform Your ITIL® 4 & ITSM Strategy with AI in 2025.pdf
PDCA Consulting
 
PDF
Unlock new opportunities with location data.pdf
Precisely
 
PDF
Microsoft Solutions Partner Drive Digital Transformation with D365.pdf
Microsoft Dynamics
 
PDF
Getting Started with Data Integration: FME Form 101
Safe Software
 
PPTX
Web Crawler for Trend Tracking Gen Z Insights.pptx
Actowiz Solustions
 
PDF
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
PDF
August Patch Tuesday
Ivanti
 
PDF
NewMind AI Weekly Chronicles – August ’25 Week III
NewMind AI
 
PPTX
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
PPT
What is a Computer? Input Devices /output devices
GulJan8
 
PDF
DASA ADMISSION 2024_FirstRound_FirstRank_LastRank.pdf
rameswartudu05
 
Video forgery: An extensive analysis of inter-and intra-frame manipulation al...
IAESIJAI
 
Getting started with AI Agents and Multi-Agent Systems
Maxim Salnikov
 
STKI Israel Market Study 2025 version august
Dr. Jimmy Schwarzkopf
 
MicrosoftCybserSecurityReferenceArchitecture-April-2025.pptx
SilvioHayashi
 
Architecture types and enterprise applications.pdf
ChristopherTHyatt
 
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
Hybrid horned lizard optimization algorithm-aquila optimizer for DC motor
IAESIJAI
 
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
A review of recent deep learning applications in wood surface defect identifi...
IAESIJAI
 
Transform Your ITIL® 4 & ITSM Strategy with AI in 2025.pdf
PDCA Consulting
 
Unlock new opportunities with location data.pdf
Precisely
 
Microsoft Solutions Partner Drive Digital Transformation with D365.pdf
Microsoft Dynamics
 
Getting Started with Data Integration: FME Form 101
Safe Software
 
Web Crawler for Trend Tracking Gen Z Insights.pptx
Actowiz Solustions
 
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
August Patch Tuesday
Ivanti
 
NewMind AI Weekly Chronicles – August ’25 Week III
NewMind AI
 
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
What is a Computer? Input Devices /output devices
GulJan8
 
DASA ADMISSION 2024_FirstRound_FirstRank_LastRank.pdf
rameswartudu05
 

Introduction to Social engineering | Techniques of Social engineering

  • 1. Social Engineering BY PREM LAMSAL BSC.CSIT 7TH SEMESTER 31
  • 2. What is Social Engineering? • In a security context, Social Engineering can be defined as: • A combination of social, psychological and information gathering techniques that are used to manipulate people for nefarious purposes. • It target humans rather then technology to exploit weakness in an organizations security.
  • 3. • Is the art of manipulating people so they give up confidential information • Attacker uses human interaction to obtain or compromises information • Tricking people to get information • Most common type of SE happens over the phone Social Engineering
  • 4. Kevin Mitnick - Famous Social Engineer “People are generally helpful, especially to someone who is nice, knowledgeable or insister.”
  • 5. Social Engineering Cycle Gather Information Plan Attack Acquire toolsAttack Use acquired knowledge
  • 6. Techniques of Social Engineering • Pretexting • Phishing • Vishing • Baiting • Quid pro quo • Diversion Theft
  • 7. Pretexting • Creating fake or invented scenario
  • 8. Phishing • Obtaining information through email, websites • Websites like http://shadowave.co Sending fake mail to victim
  • 9. Spear Phishing • More specific to the victim • Target individual Vishing • Phone Phishing
  • 10. Baiting • Using Trojan Horse that uses physical media and relies on the greed of the victim Web Click Baiting • Something on Internet makes you to click
  • 11. Quid pro quo • Something for something • Call random numbers at a company, claiming to be from technical support. • Eventually, you will reach someone with a legitimate problem • Grateful you called them back, they will follow your instructions • The attacker will "help" the user, but will really have the victim type commands that will allow the attacker to install malware
  • 12. Diversion Theft • Divert actual delivery location to some other place and theft information.
  • 13. Weakest Link? • No matter how strong your: 1. Firewalls 2. Intrusion Detection System 3. Cryptography 4. Antivirus software • We are the weakest link in computer security ! • People are more vulnerable than computers
  • 14. General Safety / Prevention • Before transmitting personal information over the internet, check the connection is secure and check the URL is correct • If unsure email message is legitimate, contact the person or company by another means to verify • Be aware of excited content on the Internet. • Making policies to verify different source rather than single source.
  • 15. Thank you For more please visit : http://premlamsal.com.np

Editor's Notes

  • #12: Randomly call garni company ma like for technical support and reach someone with legitamite problem, they will be grateful that you called them back, they will follow your instruction. The attacker will help the user but will really have the victim type command that will alow the attacker to install malware.