Information Security Officer Question:
Do you know what is social engineering?
Answer:
“Social engineering” refers to the use of humans as an attack vector to compromise a system. It involves fooling or otherwise manipulating human personnel into revealing information or performing actions on the attacker’s behalf. Social engineering is known to be a very effective attack strategy, since even the strongest security system can be compromised by a single poor decision. In some cases, highly secure systems that cannot be penetrated by computer or cryptographic means, can be compromised by simply calling a member of the target organization on the phone and impersonating a colleague or IT professional.
Previous Question | Next Question |
Do you know what is the CIA triangle? | Tell me is there any difference between Information Security and IT Security? If yes, please explain the difference? |