Targeted Human Threats: Social Engineering Deceptions, Exploits and Defences
PDF Add to WishList
Prevent data breaches and better protect your organization from social engineers by understanding their motivations and methods. In this training course, you learn how to secure and mitigate information leaks, implement techniques to verify identity, establish strict verification policies, and create social engineering protection against attacks that threaten organizational security.
You Will Learn How To
- Defend against social engineering deceptions that threaten organisational security
- Plan and evaluate security assessments for human weaknesses
- Promote vigilance and implement procedures to defeat deceptions
- Mitigate personnel vulnerabilities with security awareness
- Measure your organisation’s preparedness for attacks
Course Outline
- Introduction to Social Engineering
Evaluating the organisational risks
- Assessing social engineering threats
- Analysing classic case studies
Thinking like a social engineer
- Considering attack frameworks
- Reviewing the methods of manipulation
- Examining legal issues and social concerns
- Gathering Information and Intelligence
Identifying information sources
- Gathering information passively and actively
- Leveraging social media
- Exploiting Google hacking
Collecting target information
- Ripping information from sites with theHarvester
- Dumpster diving for secrets and intelligence
- Profiling users for weaknesses
Minimising information leaks
- Securing information leaks
- Implementing secure disposal policies
- Pinpointing reconnaissance probes
- Identifying Communication Models
Profiling an information architecture
- Implementing the Berlo communication model
- Source
- Message
- Channel
- Receiver
- Determining communication weaknesses
Addressing communication flaws
- Verifying the source
- Securing the information channel
- Assessing Elicitation Methods
Drawing out information
- Soliciting information
- Interview techniques
- Identifying elicitation tactics and goals
Mitigating information leaks
- Maintaining situational awareness
- Implementing scripted responses
- Gaining Physical Access
Circumventing physical security
- Identifying weak types of locks
- Bypassing electronic access controls
Securing the environment
- Implementing high security locks
- Preventing lock bumping
- Impersonating Authorised Personnel
Gaining access with a disguise
- Identifying spoofing techniques
- Discovering change blindness deception
- Assessing Internet impersonation techniques
Defending against impersonation and forgery
- Implementing techniques to verify identity
- Avoiding skimmers and hidden technology threats
- Employing Psychology for Persuasion
Examining human weaknesses
- Leveraging Cialdini’s motivation factors
- Identifying mindlessness dangers
- Exploring commitment and consistency vulnerability
Compelling behaviour
- Exploiting social proofing
- Taking advantage of implied authority
- Demanding action with "quid pro quo"
Bolstering resistance to persuasion
- Adhering to policy and rules
- Recognising risky situations
- Learning to interpret and then recognise
- Implementing Management Countermeasures
Assessing social engineering vulnerabilities
- Conducting a penetration test
- Creating a scope of work
- Mitigating legal issues and embarrassment
Creating comprehensive policies
- Establishing verification policies
- Regulating the use of social networks
- Delivering effective security awareness training
Convenient Ways to Attend This Instructor-Led Course
Hassle-Free Enrolment: No advance payment required to reserve your seat.
Tuition Fee due 30 days after you attend your course.
In the Classroom
Live, Online
Private Team Training
In the Classroom — OR — Live, Online
Tuition Fee — Standard: £1695
AFTERNOON START: Attend these live courses online via Anyware
30 May - 1 Jun
(3 Days)
2:00 PM - 9:30 PM BST
Online (AnyWare)
Reserve Your Seat
29 - 31 Aug
(3 Days)
2:00 PM - 9:30 PM BST
Rockville, MD / Online (AnyWare)
Reserve Your Seat
28 - 30 Nov
(3 Days)
2:00 PM - 9:30 PM GMT
Alexandria, VA / Online (AnyWare)
Reserve Your Seat
27 Feb - 1 Mar
(3 Days)
2:00 PM - 9:30 PM GMT
Rockville, MD / Online (AnyWare)
Reserve Your Seat
Guaranteed to Run
When you see the "Guaranteed to Run" icon next to a course event, you can rest assured that your course event — date, time, location — will run. Guaranteed.Private Team Training
Enroling at least 3 people in this course? Consider bringing this (or any course that can be custom designed) to your preferred location as a private team training.
For details, call 0800 282 353 or Click here »
Tuition Fee
Course Tuition Fee Includes:
Training Hours
Standard class hours:
9:00 a.m. - 4:30 p.m.
Last day class hours:
9:00 a.m. - 3:30 p.m.
Free Course Exam – Last Day:
3:30 p.m. - 4:30 p.m.
Each class day:
Informal discussion with instructor about your projects or areas of special interest:
4:30 p.m. - 5:30 p.m.
AFTERNOON START class hours:
2:00 p.m. - 9:30 p.m.
Last day class hours:
2:00 p.m. - 8:30 p.m.
Free Course Exam – Last Day:
8:30 p.m. - 9:30 p.m.
Each class day:
Informal discussion with instructor about your projects or areas of special interest
9:30 p.m. - 10:30 p.m.
Enhance Your Credentials with Professional Certification
Learning Tree's comprehensive training and exam preparation guarantees that you will gain the knowledge and confidence to achieve professional certification and advance your career.
This course is approved by CompTIA for continuing education units (CEUs). For additional information and to confirm which courses are eligible towards your CompTIA certification, click here.