Presentation is loading. Please wait.

Presentation is loading. Please wait.

Presented by: Casey Mullins Social Engineering - Persuasion -

Published byClaude Lambert Modified over 9 years ago

Similar presentations

Presentation on theme: "Presented by: Casey Mullins Social Engineering - Persuasion -"— Presentation transcript:

1 Presented by: Casey Mullins Social Engineering - Persuasion -

2 WHAT IS PERSUASION? The main objective is to convince the person disclosing the information that the social engineer is in fact a person that they can trust with that sensitive information.

3 METHODS OF PERSUASION Impersonation Ingratiation Conformity Diffusion of Responsibility Friendliness

4 IMPERSONATION Creating some sort of character and acting out the role. Hackers strike when the person they are impersonating is out of town and call on the phone using voice recorders. Attackers include: a repairman, IT support, a manager, or a company employee.

5 INGRATIATION To gain favor or favorable acceptance for by deliberate effort. Employees want to impress, so they will provide information to an authority figure.

6 CONFORMITY Group-based behavior, but can be used occasionally in the individual setting by convincing the user that everyone else has been giving the hacker the same information now requested, such as if the hacker is impersonating an IT manager.

7 DIFFUSION OF RESPONSIBILITY Convincing someone to reveal information by tricking them into thinking you’re the manager. Tell the employee that, you the manager, will take care of everything alleviating the stress on the employee thus convincing the employee to give you everything.

8 FRIENDLINESS This is the best way to obtain information using a social engineering attack. Flattery or flirtation will help soften up the potential victim. A experienced hacker must know when to pull back when too much information has been taken, just before they get suspicious.

9 FACTORS THAT INFLUENCE Authority – people are highly likely, in the right situation, to be highly responsive to assertions of authority, even when the person who purports to be in position of authority in not physically present. Scarcity – people are also highly responsive to indications that a particular item they may want in in short supply or available for only a limited period.

10 FACTORS THAT INFLUENCE Liking and Similarity – It is a truly human tendency to like people who are like us. We tend to regard him or her more favorably merely because of similarity. Reciprocation – a well-recognized rule of social interaction requires that if someone gives us something, we feel a strong urge to reciprocate by giving something back in return.

11 FACTORS THAT INFLUENCE Commitment and Consistency – if we promise to do something, and fail to carry out that promise, we are virtually certain to be considered untrustworthy or undesirable. Social Proof – In many social situations, one of the mental shortcuts on which we rely, in determining what course of action is most appropriate, is to look to see what other people in the vicinity are doing or saying. Prompts us to take actions that may be against our self-interest without taking the time to consider them more deeply.

12 REFERENCES Chuvakin, Anton. NLP-powered Social Engineering. 20 March 2001. http://www.securityfocus.com/guest/5044http://www.securityfocus.com/guest/5044 Granger, Sarah. Social Engineering Fundamentals, Part I: Hacker Tactics. 18 Dec. 2001. http://www.securityfocus.com/printable/infocus/1527 http://www.securityfocus.com/printable/infocus/1527 The “Social Engineering” of Internet Fraud. http://www.isoc.org/inet99/proceedings/3g/3g_2.htm

Download ppt "Presented by: Casey Mullins Social Engineering - Persuasion -"

Similar presentations

Ihr Logo Speaking to Persuade Chapter 7. p119~. Your Logo Opinion is ultimately determined by the feelings, not the intellect. (Herbert Spencer)

Ihr Logo Speaking to Persuade Chapter 7. p119~. Your Logo Opinion is ultimately determined by the feelings, not the intellect. (Herbert Spencer)
Influence, Empowerment, & Politics

Influence, Empowerment, & Politics
Influence, Power, and Politics (An Organizational Survival Kit)

Influence, Power, and Politics (An Organizational Survival Kit)
Social Engineering And You Steve Otto. Social Engineering n Social Engineering - Getting people to do things they ordinarily wouldn’t do for a stranger.

Social Engineering And You Steve Otto. Social Engineering n Social Engineering - Getting people to do things they ordinarily wouldn’t do for a stranger.
Kelly Corning Julie Sharp.  Human-based techniques: impersonation  Computer-based techniques: malware and scams.

Kelly Corning Julie Sharp.  Human-based techniques: impersonation  Computer-based techniques: malware and scams.
Chapter 9: Social Influence: Changing Others’ Behavior

Chapter 9: Social Influence: Changing Others’ Behavior
Propaganda and Persuasion Techniques people use to make you believe what they have to say.

Propaganda and Persuasion Techniques people use to make you believe what they have to say.
Social Engineering Networks Reid Chapman Ciaran Hannigan.

Social Engineering Networks Reid Chapman Ciaran Hannigan.
Overview  How do we perceive people?  How do we form and change attitudes?  How are we attracted to others?  How do others influence our behavior?

Overview  How do we perceive people?  How do we form and change attitudes?  How are we attracted to others?  How do others influence our behavior?
Influence Tactics, Empowerment and Politics

Influence Tactics, Empowerment and Politics
The Art of Deception - Controlling Human Element of Security - Shohei Hagiwara November 17th, 2009.

The Art of Deception - Controlling Human Element of Security - Shohei Hagiwara November 17th, 2009.
Power and Politics Chapter 10

Power and Politics Chapter 10
Social Engineering PA Turnpike Commission. “Social Engineering is the practice of obtaining confidential information by manipulation of legitimate users”

Social Engineering PA Turnpike Commission. “Social Engineering is the practice of obtaining confidential information by manipulation of legitimate users”
Desia Dunn Elaboration Likelihood Model (Chapter 5- Persuasion)

Desia Dunn Elaboration Likelihood Model (Chapter 5- Persuasion)
1 The Purpose of Written Communication “Think now; write later”. ● Before one can begin to plan the “How”, he or she has to understand the “Why” of business.

1 The Purpose of Written Communication “Think now; write later”. ● Before one can begin to plan the “How”, he or she has to understand the “Why” of business.
Chapter 9 Self-Presentation and Impression Management.

Chapter 9 Self-Presentation and Impression Management.
Chapter 13 BOH4M Business Leadership

Chapter 13 BOH4M Business Leadership
Session Title: Managing by Influence Presenter Name: Thierry Roullier www.b2bproductmakers.com.

Session Title: Managing by Influence Presenter Name: Thierry Roullier
Chapter 12 Power and Influence in the Workplace

Chapter 12 Power and Influence in the Workplace
Chapter 7 Power and Politics.

Chapter 7 Power and Politics.

Similar presentations

Ads by Google