LAB 1) Social engineering

For your journal entry discuss social engineering in a business context

  1. Summarize the key information gathered from MyBook?

Phillip is married to a woman on a beach

He has a Dog which is a Pug

Car is broken down

Phone number and DOB

Studied at Oxford University

Previous work experience – HP and Costa

Kingston Thames

Job title

Hobbies- Raves

  1. Consider how the information gathered can be leveraged to attack an organization?

You can request to change the password for Phillips important accounts. This could lead into having access to his emails so attackers can potentially send phishing emails to the Mangers of the company where he works.

  1. What prevention methods could be used to mitigate the risk of an attack?

Limit the mount of personal information that is posted on Social media sites such as facebook.

Have security questions that are not related to family or your pets. That will make it harder for attackers to narrow down on the correct answer.

Have 3rd party Authentication setup so any requests get sent Phillips phone. This would mean that the attackers would not need to have physical access to Phillips phone in order to change the password of any sensitive Accounts.

Leave a comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Design a site like this with WordPress.com
Get started