Social engineering in cyber security

Social Engineering:

Social engineering is the art of manipulating, influencing, or deceiving you in order to gain control over your computer system. In cybercrime, the human hacking scams entire inspecting users to disclose data spread malware infractions, or restricted systems. Attacks can occur online, in-persion and by other types. Direct communication is used in social engineering attacks that incorporate interpersonal engagement (such as in person or by telephone or by email or by social media and internet). Social engineering is a common form of cybercrime. The act of obtaining unauthorized access to a system or sensitive information, such as passwords, using trust and relationship building with others

Example- One of the most popular Social Engineering attack example, Phishing scam are email and text message campaigns aimed at creating a sense of urgency, curiosity or fear in victims. Baiting is when the fraudster user greed or curiosity to trap the victim with false promises and trick ten into handing their login credentials. Spear phishing and CEO Fraud are also real example.

 

Steps of a Social Engineering Attack:

  Social Engineering attacks typically follow these simple Steps:

1. Research: The attacker identifies victims and choose a method of attack.
2. Engage: The attacker makes and begins the process of establishing trust and helpfulness.
3. Attack: The attack commences and the attacker collects the payload.
4. The Getaway: The Attacker covers their tracks and concludes the attack.

 

Characteristics of Social Engineering Attack:

Social Engineering manipulate  human feeling, such as curiosity or fear, to carry out schemes and draw victims into their traps. Therefore, be warry whenever you feel alarmed by email, attracted to an offer displayed on a website, or when you come across stray digital media lying about. Being alerts can help you protect yourself against most social engineering on attack taking place in the digital realm.

High emotions manipulating gives attackers  the upper hand in any conversation. The feeling are used equally to explain to you.

• Fear
• Excitement
• Curiosity
• Sadness

 

Social Engineering prevention: .

Be careful of what you share. And no, you don't need to be paranoid about these attacks. Preventing them is possible. The following  tips can help improve your vigilance in relation to social engineering hacks. 

 

• Don't open emails and attachments from suspicious source- If you don't know the sender in question you don't need to answer an email. Even if you do know them and are suspicious massage. 
• Never use the same password for different accounts- If the attacker gets hold of one account, they will be able to hack other accounts too. 
• Use multifactor authentication- Most valuable pieces of information attackers seek are user credentials. Using multifactor authentication helps ensure your account's protected otherwise compromise. 
• Keep your antivirus /antimalware software updated- Make a habit to download the latest signatures first thing each day.  make sure thate the updates have been applied, and scan your systems for possible infections.