The Art of Deception: Controlling the Human Element of Security

Front Cover
John Wiley & Sons, Aug 4, 2011 - Computers - 368 pages
The world's most infamous hacker offers an insider's view of the low-tech threats to high-tech security
Kevin Mitnick's exploits as a cyber-desperado and fugitive form one of the most exhaustive FBI manhunts in history and have spawned dozens of articles, books, films, and documentaries. Since his release from federal prison, in 1998, Mitnick has turned his life around and established himself as one of the most sought-after computer security experts worldwide. Now, in The Art of Deception, the world's most notorious hacker gives new meaning to the old adage, "It takes a thief to catch a thief."
Focusing on the human factors involved with information security, Mitnick explains why all the firewalls and encryption protocols in the world will never be enough to stop a savvy grifter intent on rifling a corporate database or an irate employee determined to crash a system. With the help of many fascinating true stories of successful attacks on business and government, he illustrates just how susceptible even the most locked-down information systems are to a slick con artist impersonating an IRS agent. Narrating from the points of view of both the attacker and the victims, he explains why each attack was so successful and how it could have been prevented in an engaging and highly readable style reminiscent of a true-crime novel. And, perhaps most importantly, Mitnick offers advice for preventing these types of social engineering hacks through security protocols, training programs, and manuals that address the human element of security.
 

What people are saying - Write a review

User ratings

5 stars
7
4 stars
3
3 stars
2
2 stars
0
1 star
0

LibraryThing Review

User Review  - DoingDewey - LibraryThing

The Art of Deception is written by a hacker (or, as he calls himself, a “social engineer”) and describes the ways in which hackers can exploit human nature to bypass security measures. The book was ... Read full review

LibraryThing Review

User Review  - mcandre - LibraryThing

Hand a copy to all IT staff, then another copy to all general staff. This book shows that fooling people is far easier than fooling computer systems. Read full review

Contents

Introduction
When Innocuous Information Isnt
The Direct Attack Just Asking for
Building Trust
Let Me Help You
Can You Help Me?
Phony Sites and Dangerous Attachments
Using Sympathy Guilt and Intimidation
Entering the Premises
Combining Technology and Social Engineering
Attacks on the EntryLevel Employee
Clever Cons
Industrial Espionage
Information Security Awareness and Training
Recommended Corporate Information Security Policies
Copyright

The Reverse Sting

Other editions - View all

Common terms and phrases

About the author (2011)

Kevin Mitnick is the founder of Defensive Thinking, an information security firm, and speaks widely on security issues. He has appeared on 60 Minutes and elsewhere in the media, and his exploits have spawned several bestselling books, including The Fugitive Game.

William Simon is the bestselling author of more than twenty books.

Bibliographic information