|
|
The Art of Deception: Controlling the Human Element of Security
|
List Price: $16.95
Our Price: $8.88
Your Save: $8.07 ( 48% )
Availability: Please click buy button for full availability
information.
Average Customer Rating:
 
Manufacturer: Wiley
|
|
|
Binding: Paperback
Dewey Decimal Number: 005.8
EAN: 9780764542800
ISBN: 076454280X
Label: Wiley
Manufacturer: Wiley
Number Of Items: 1
Number Of Pages: 368
Publication Date: 2003-10-17
Publisher: Wiley
Studio: Wiley
|
|
|
|
|
|
Spotlight customer reviews:
|
Customer Rating:
Summary: Social Engineering 101 - Read It or Become a Victim
Comment: "The Art of Deception" was recommended to me by an instructor teaching a CISSP prep class. It is both an enjoyable and informative read. Mitnik is the "real deal" in exploiting social engineering techniques and his books should be required reading by corporate security policy makers (and I am sure it is for many already).
This book illustrates various techniques for bypassing established corporate physical and information security security policies. I have actually inadvertently used some of these techniques when troubleshooting network issues or having forgotten my passcard to gain access to systems and rooms. It is often easier to bypass the rules than to go through the steps needed to obtain proper access and people are surprisingly willing to cooperate "just this one time".
This book will help you sensitize your employees to the risks of bypassing security policy and recognize when this might be occurring. Highly recommended!
Customer Rating:
Summary: Awesome book
Comment: This is a complex read, not that it has good literary qualities, but in that it is packed with information that relates to other information within the book, and gaining an overall "bigger-picture" understanding of the concepts withing this book requires multiple readings.
Customer Rating:
Summary: It's just excellent
Comment: Adequate for noobs and pros to understand how important social engineering in our security is, this applied not only in software; you can relate it with anything in your live.
Highly recommended
Customer Rating:
Summary: This book is quite an eye-opener
Comment: This is a great, but frightening book. The book explains many, many ways how "social engineers" (what the author calls those who manipulate strangers) can take advantage of people. These stories are clearly and convincingly illustrated by examples. Unfortunately, when one realizes all the people who have access to their private information and that it only takes one to fall for the kind of tricks mentioned here, it is clear that safety is all but impossible. That said, this can serve as a wake up call to fix what we can, especially in our own workplaces. My one complaint with the book is that the sample security policies in the last chapter were not available electronically.
Customer Rating:
Summary: A classic and must-read for anybody worried about security
Comment: This is a great starting point for anybody interested in deceit. While the book focuses on "real-world" deceit, many of the principles carry over to online crime. It is very easy to read, and yet, informative and helpful. If you want to find an answer to the question "Just how much will people agree to?" then this is the book for you to read -- whether you are a system administrator, security researcher, policy maker, or simply interested in understanding fraud and psychology better.
Markus Jakobsson
[..]
|
|
|
Editorial Reviews:
|
The world's most infamous hacker offers an insider's view of the low-tech threats to high-tech security
Kevin Mitnick's exploits as a cyber-desperado and fugitive form one of the most exhaustive FBI manhunts in history and have spawned dozens of articles, books, films, and documentaries. Since his release from federal prison, in 1998, Mitnick has turned his life around and established himself as one of the most sought-after computer security experts worldwide. Now, in The Art of Deception, the world's most notorious hacker gives new meaning to the old adage, "It takes a thief to catch a thief."
Focusing on the human factors involved with information security, Mitnick explains why all the firewalls and encryption protocols in the world will never be enough to stop a savvy grifter intent on rifling a corporate database or an irate employee determined to crash a system. With the help of many fascinating true stories of successful attacks on business and government, he illustrates just how susceptible even the most locked-down information systems are to a slick con artist impersonating an IRS agent. Narrating from the points of view of both the attacker and the victims, he explains why each attack was so successful and how it could have been prevented in an engaging and highly readable style reminiscent of a true-crime novel. And, perhaps most importantly, Mitnick offers advice for preventing these types of social engineering hacks through security protocols, training programs, and manuals that address the human element of security.
|
|
|
|
|
|
|
|
