Critical Thinking 2 2 Social Engineering Psychological Approaches Several basic principles or reasons make psychological social engineering effective These include authority, intimidation, consensus, scarcity, urgency, familiarity, and trust Table 2 6 uses these principles in a scenario of an attacker pretending to be the chief executive officer (CEO) calling the organization's help desk to have a password reset Create two additional scenarios, such as an attacker impersonating a help desk employee who wants access to an employee's protected information, and create a dialog example for each of the seven principles Table 2 6 Social engineering effectiveness Principle Description Example Authority Directed by someone I'm the CEO calling impersonating an authority figure or falsely citing their authority Intimidation To frighten and coerce by threat If you don't reset my password, I will call your supervisor Consensus Influenced by what others do I called last week and your colleague reset my password Scarcity Something is in short supply I can't waste time here Urgency Immediate action is needed My meeting with the board starts in 5 minutes Familiarity Victim is well known and well I remember reading a good evaluation on received you Trust Confidence You know who I am

The Answer is in the image, click to view ...

Question: Critical Thinking 2-2: Social Engineering Psychological Approaches Several basic principles or reasons make psychological social engineering effective. These include authority, intimidation, consensus, scarcity, urgency, familiarity,

Critical Thinking 2-2: Social Engineering Psychological Approaches

Several basic principles or reasons make psychological social engineering effective. These include authority, intimidation, consensus, scarcity, urgency, familiarity, and trust. Table 2-6 uses these principles in a scenario of an attacker pretending to be the chief executive officer (CEO) calling the organization's help desk to have a password reset. Create two additional scenarios, such as an attacker impersonating a help desk employee who wants access to an employee's protected information, and create a dialog example for each of the seven principles.

Critical Thinking 2-2: Social Engineering

Table 2-6 Social engineering effectiveness Principle Description Example Authority Directed by someone "I'm the CEO calling." impersonating an authority figure or falsely citing their authority Intimidation To frighten and coerce by threat "If you don't reset my password, I will call your supervisor." Consensus Influenced by what others do "I called last week and your colleague reset my password." Scarcity Something is in short supply "I can't waste time here." Urgency Immediate action is needed "My meeting with the board starts in 5 minutes." Familiarity Victim is well-known and well "I remember reading a good evaluation on received you." Trust Confidence "You know who I am

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related General Management Questions!

Case Project 2-2: Social Engineering Psychological Approaches Several basic principles or reasons make psychological social engineering effective. These include authority, intimidation, consensus,...

Several basic principles or reasons make psychological social engineering effective. These includes authority, intimation, consensus, scarcity, urgency, familiarity, and Truest. Following table...

Several basic principles or reasons make psychological social engineering effective. These include authority, intimidation, consensus/social proof, scar- city, urgency, familiarity/liking, and trust....

Several basic principles or reasons make psychological social engineering effective These include authority, intimidation, consensus, scarcity, urgency, familiarity, and trust Table 26 uses these...

Chapter 2 User-Centered Systems Design: A Brief History Abstract The intention of this book is to help you think about design from a user-centered perspective. Our aim is to help you understand what...

Contents The Team..3 Group Contact Information.3 Mission Statement3 Foundation and Group Communications Plan.3 Group Communications Methods.4 Group Goals.5 Group Development and Norms.6 Developing...

This paper should include 3-5 pages of content with an additional cover and reference page. This is a total of 5-7 pages. Please be aware that a properly formatted page will include approximately 350...

Managerial Decision Making Six Decision Stages in Chapter 5 I. Identify and Diagnose the Problem Consider the following questions when identifying and diagnosing the problem: Is there a difference...

Please read and First, choose Five terms or concepts from the chapter that you are going to "Identify" 1. Define the term (using your own words or the book's definition). 2. Provide and example or...

Classic 2.0 Brittany Marshall Sunday, February 14, 2016 This report is provided by: Laureate Education, Inc. 650 S. Exeter St. Baltimore, MD 21202 Telephone (U.S. calls): 1.800.925.3368 Telephone...

1. Will dowell get right on it and let you know when theyll be starting. 2. We need your involvement to effectively hire peoplelets discuss how HRM will partner with you to get this done most...

Edward practices the Kemetic religion based on the ancient Egyptian faith and is affiliated with a tribe of less than ten members. He states that he believes in various deities and follows the...

The value stream income statement provides the following information not usually contained in the contribution income statement: Multiple Choice A separate accounting for the effect of productivity...

atch the compensation objectives with their meanings. Efficiency Efficiency drop zone empty. Fairness Fairness drop zone empty. Compliance Compliance drop zone empty. Improving performance and...