Chapter 10 Social Engineering and Other Foes

Question 1

Social engineering

pg.355

Answer 1

the process by which intruders gain access to your facilities, network and even your employees by exploiting the generally trusting nature of people

Question 2

Impersonation

pg.356

Answer 2

A Particular talent or skill or ability to look like someone else

Question 3

Shoulder Surfing

pg.356

Answer 3

watching over someones shoulder

Question 4

Privacy filters

pg.357

Answer 4

go over the screen and restrict the viewing angle to straight on view

Question 5

Dumpster diving

pg.357

Answer 5

common physical access method, dumpsters may contain information that are highly sensitive in nature

Question 6

Tailgating

pg.357

Answer 6

A favorite method of gaining entry to electronically locked systems is to follow someone through the door they just unlocked

Question 7

Hoaxes

pg.358

Answer 7

Issued phony threats to scare users

Question 8

Whaling

pg.360

Answer 8

phishing or spear phishing but for big users

Question 9

Vishing

pg.360

Answer 9

combining phishing with Voice over IP

Question 10

Malicious Insider threat

pg.362

Answer 10

greed driven virus bribed for given information

Question 11

Authority

pg.362

Answer 11

convincing a person you are attempting to trick that you are in a position of law or higher power

Question 12

Intimidation

pg.362

Answer 12

Threats with shouting or even with guilt

Question 13

Consensus/Social Proof

pg.363

Answer 13

Putting the person being tricked at ease by putting the focus on them- listening intently, validating their thoughts charming them

Question 14

Urgency

pg.363

Answer 14

Not doing something right away

Question 15

Familiar/Liking

pg.363

Answer 15

Pretending to have, same interest as you