You're watching...
Alan Wlasuk on how to avoid being a victim of social engineers who sway you to give out information
Also in this playlist...
Auto-advance: ON
Auto-advance
This transcript is automatically generated
It is a security expert and managing partner of 403 web security joining us via Skype now from Indianapolis good to see you -- Good afternoon how are you I -- very good thank you what do what exactly does this -- -- being attacked -- social through social engineering mean.
On socialism here -- -- -- there really clever folks out there.
Whose sole goal in life is to call me walking -- -- companies and gain access to their computer systems through an entirely different needs.
What happened how do they do that.
Song gonna give you two examples of going to be okay my my when my favorite examples is every -- company has an -- help desk.
And almost everybody on or before hasn't I think problem if you call in from outside and say hey by the way -- company.
We've heard you've got.
And I keep up my car to help the consumer here can help you out here to serve somebody's losing that's greater than what your call for for the last three days.
And then -- -- -- every piece of credential repeats information you need to get into their grievances.
So.
And then and then and then -- happens from that point.
-- what once you're into the systems are here into the era.
Princes are counting systems of major IT systems on its -- -- you -- -- -- energy company.
And the into the social engineers that are very clever they don't don't just call people -- had done their homework for days and days.
You know secretary talking to and what systems they can connect to do so they're well versed in just understand where they need to go what you need to do it -- mentioning.
So what's the goal of these so called global -- does is it -- getting information or is it getting -- cash you know they and they trying to rip these companies off.
Financially in and then in the room take money from them or is -- a fact gathering information.
Well one of my favorite quotes used aces -- a digital data is is that oil work overtimes in other words digital data is is work.
And England states you know billions of dollars.
When one is able to get an assistant and experience digital that you're you're you're you're bringing cash out -- -- -- perhaps it could account information -- credit cards PayPal each day and he -- we connect directly or -- extra caps.
Yes of course is in directly if you could expert credit card information that any information.
Then you can often -- selvin and managed to sniper teams -- -- Brinkley and her critics were quick.
So I -- I bet I guess this affects every one of us in the sense that these these of global hackers -- -- to have a better expression.
Talking their -- in tech companies so that targeting the company's.
But they can get the information with our credit -- information of millions of individuals once they're into those companies.
That that that's exactly and it's and we we speak about verbal Packers and and they of course with a soft side of the security hackers -- -- here -- the media for the last many years.
Baby -- that a congress uses -- folks who do little movies in different effects so how does how does a company protect itself from this kind of hacking.
You know they're there to think that -- company needs needs your personal education.
-- you know we we're all kids at some point in stranger danger was all part of the -- has grown up.
You're still getting and they cataracts if -- don't.
The other -- -- did you have education periods you tell people about the stranger danger of the securities.
You tell people if you get a call from somebody and and and you don't notice don't get this -- If somebody walks in the front third term just here to -- account here make sure they infected they are -- come here I am not somebody who wants the backing.
Install.
Few -- and Newton back room.
And then -- the second piece is just.
Often times it even more -- even small environment.
People access to far more information and w.s.
There's a reason for the receptionist to have the access to the entire eight start date about some of the -- over credit card means you'll never mentioned.
And you just know.
But often times people and relatively little responsibility areas have -- -- -- -- -- to receive.
If you limit the information people have and then they can't -- it out.
If when -- to the receptionist.
Or somebody else and all they can get achievements in reference to that did the phone numbers of the president and then there Packard is not going to be England on the person.
All right Allen classic good advice security expert and managing -- for its free web security thanks for being with us down have a great weekend.
We -- combine our.
