Scribd Logo
Upload

Welcome to Scribd!

  • Security Awareness

    Uploaded by

    aktp78901
    4 views19 pages
    Social engineering relies on deception to manipulate individuals into revealing confidential information. Common social engineering attacks include phishing, spear phishing, vishing, and whaling through malicious emails or phone calls. Nearly half of employees have been targeted, and social engineering costs companies an average of $130,000 per attack. Individuals and companies can help mitigate risks by practicing safe email and password habits, verifying senders, using multi-factor authentication, and reporting any suspicious messages.

    Original Description:

    Original Title

    SecurityAwareness

    Copyright

    © © All Rights Reserved

    Available Formats

    PPTX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Social engineering relies on deception to manipulate individuals into revealing confidential information. Common social engineering attacks include phishing, spear phishing, vishing, and whaling through malicious emails or phone calls. Nearly half of employees have been targeted, and social engineering costs companies an average of $130,000 per attack. Individuals and companies can help mitigate risks by practicing safe email and password habits, verifying senders, using multi-factor authentication, and reporting any suspicious messages.

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pptx, pdf, or txt
    4 views19 pages

    Security Awareness

    Uploaded by

    aktp78901
    Social engineering relies on deception to manipulate individuals into revealing confidential information. Common social engineering attacks include phishing, spear phishing, vishing, and whaling through malicious emails or phone calls. Nearly half of employees have been targeted, and social engineering costs companies an average of $130,000 per attack. Individuals and companies can help mitigate risks by practicing safe email and password habits, verifying senders, using multi-factor authentication, and reporting any suspicious messages.

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pptx, pdf, or txt
    of 19

    Social Engineering

    Security Awareness

    1
    Facts about Social Engineering

    1 in every 99 emails is a phishing attack. In other words, 4.8 emails per employee in a typical
    five-day work week are phishing emails.

    98% of cyberattacks rely on social engineering

    43% of IT Professionals say they have been targeted by social engineering in the last year.

    45% of employees click emails the consider to be suspicious “just in case it’s important”

    On average, social engineering attacks cost $130,000

    45% of employees don’t report suspicious messages out of fear of getting in trouble

    2
    Social Engineering

    What is social engineering?

    The use of deception to manipulate individuals into divulging confidential or personal


    information that may be used for fraudulent purposes

    What are common social engineering attacks a company will be subject to?

    Phishing
    Spear Phishing
    Vishing
    Whaling

    Scareware

    Quid Pro Quo

    3
    How to know if you are being socially engineered

    4
    Phishing

    5
    Email (Phishing/Whaling)

    6
    Quiz Time

    7
    Quiz Time – Answer

    8
    Phone Call (vishing)

    Scam calls or calls pretending to be someone from your financial institution for example:

    9
    Scareware

    10
    Scareware attempt

    11
    Quid Pro Quo

    12
    Scratch my back, I’ll scratch yours

    13
    How do we protect ourselves?

    14
    How to mitigate a successful attempt

    Utilize safe practices when giving out your email address

    Verify the sending and receiving domain of the email address

    CALL the user from a known number if you suspect a phishing attempt.

    15
    Current Safeguards

    Outlook Tool Tips

    IP Block Lists

    Safe Sender List

    Blocked Domains

    Anti-impersonation list

    Anti-Virus software

    Multi-Factor Authentication (MFA)

    16
    What to do with your social engineering attempt

    Save the entire email and put it in a ticket to notify your IT Department

    Immediately change your account passwords

    Report the email to Microsoft

    17
    Action to take if you are phished

    Immediately report it to your IT Department and Security Compliance

    Close out of ALL windows

    Immediately change your account passwords

    Document what you did in detail

    Do not pay any money to untrusted parties.

    18
    You are the first line of defense with social engineering attempts.

    19

    You might also like