|
 In computer security, social engineering is a term that describes a non-technical kind of intrusion. Social Engineering relies heavily on human interaction and often involves misleading employees to bypass security measures. Social engineering is the human element of hacking.
Companies with the best authentication processes, firewalls, VPNs, and network monitoring software are still quite vulnerable to an attack if an employee unknowingly provides key information in an email, by answering questions over the phone, by allowing unauthorized visitors into sensitive areas, or by following instructions by unknown persons over the phone, email, or through the mail.
Phishing, a form of social engineering, is an attempt by a third party to solicit confidential information from an individual, group, or organization, often for illicit financial gain or other fraudulent purposes. Phishing is a serious threat to e-commerce companies, financial institutions, and other organizations that conduct transactions over the Internet. Using spoofed email, malicious web sites, or Trojans delivered surreptitiously through a web browser, phishers often deceive users into disclosing sensitive data, such as username/password, banking information, and other confidential data.
The newest form of phishing is Voice phishing or Vishing. In a vishing attack, an email is sent out asking individuals to contact an actual phone number, and a voice-response system collects personal information.
Covetrix security consultants use many of these techniques to assess your organization's true vulnerabilities pertaining to the human element. Covetrix provides various social engineering exploits to corporations, financial institutions, government agencies, school districts, and hospitals.
For more information on Covetrix Social Engineering Services, please call a member of our sales staff at 1-877-780-1132 or contact us at sales@covetrix.com.
|
 |
|
