Talk to a Security Expert Now: (800) 721-9177

The Weakest Links

I remember back in the day when I was reading ‘The Art of Deception’ by Kevin Mitnick in which he said “ …the social engineer is able to take advantage of people to obtain information with or without the use of technology”. We all know the reasons as to why someone would want to social engineer their way into a company-cause its easier than breaking into a firewall or VPN to gain access into the company’s internal network.

Cisco 7 Deadly Weaknesses

Many of my clients often ask me how a social engineer can do this? Well, Cisco recently came out with a security report with the above chart explaining the human weaknesses that social engineers are most likely to take advantage of. I especially liked this slide considering I myself used many of these weaknesses in many of my security assessment engagements as a social engineer. I also think that considering its an easy way to get into a company we are going to have to deal with it for a long time.

This Post Has One Comment

  1. Social Engineering come down to the fact that we trust other humans. Our society wouldn’t work if this trust didn’t exist. However there are always those that misuse this trust and therein the need for security. Most specifically a security control in the form of awareness and education for employees; what Cisco coined as the “human firewall” … i.e. the user, your last line of defence … train them well! What do you train them? The best answer will come out of a risk assessment.

Leave a Reply

Your email address will not be published. Required fields are marked *