Book description
The world's most infamous hacker offers an insider's view of the low-tech threats to high-tech security
Kevin Mitnick's exploits as a cyber-desperado and fugitive form one of the most exhaustive FBI manhunts in history and have spawned dozens of articles, books, films, and documentaries. Since his release from federal prison, in 1998, Mitnick has turned his life around and established himself as one of the most sought-after computer security experts worldwide. Now, in The Art of Deception, the world's most notorious hacker gives new meaning to the old adage, "It takes a thief to catch a thief."
Focusing on the human factors involved with information security, Mitnick explains why all the firewalls and encryption protocols in the world will never be enough to stop a savvy grifter intent on rifling a corporate database or an irate employee determined to crash a system. With the help of many fascinating true stories of successful attacks on business and government, he illustrates just how susceptible even the most locked-down information systems are to a slick con artist impersonating an IRS agent. Narrating from the points of view of both the attacker and the victims, he explains why each attack was so successful and how it could have been prevented in an engaging and highly readable style reminiscent of a true-crime novel. And, perhaps most importantly, Mitnick offers advice for preventing these types of social engineering hacks through security protocols, training programs, and manuals that address the human element of security.
Table of contents
- Copyright
- Social Engineering
- foreword
- preface
- introduction
- 1. behind the scenes
- 2. the art of the attacker
- 3. intruder alert
-
4. raising the bar
- 15. Information Security Awareness and Training
-
16. Recommended Corporate Information Security Policies
- 16.1. WHAT IS A SECURITY POLICY?
- 16.2. DATA CLASSIFICATION
- 16.3. VERIFICATION AND AUTHORIZATION PROCEDURES
- 16.4. MANAGEMENT POLICIES
- 16.5. INFORMATION TECHNOLOGY POLICIES
- 16.6. POLICIES FOR ALL EMPLOYEES
- 16.7. POLICIES FOR TELECOMMUTERS
- 16.8. POLICIES FOR HUMAN RESOURCES
- 16.9. POLICIES FOR PHYSICAL SECURITY
- 16.10. POLICIES FOR RECEPTIONISTS
- 16.11. POLICIES FOR THE INCIDENT REPORTING GROUP
- Security at a Glance
- sources
- Acknowledgments
Product information
- Title: The Art of Deception: Controlling the Human Element of Security
- Author(s):
- Release date: October 2003
- Publisher(s): Wiley
- ISBN: 9780764542800
You might also like
book
Social Engineering in IT Security: Tools, Tactics, and Techniques
Cutting-edge social engineering testing techniques "Provides all of the core areas and nearly everything [you] need …
book
The Art of Intrusion: The Real Stories Behind the Exploits of Hackers, Intruders and Deceivers
Hacker extraordinaire Kevin Mitnick delivers the explosive encore to his bestselling The Art of Deception Kevin …
book
Social Engineering Penetration Testing
Social engineering attacks target the weakest link in an organization's security human beings. Everyone knows these …
book
Cybersecurity Risk Management
Cybersecurity Risk Management In Cybersecurity Risk Management: Mastering the Fundamentals Using the NIST Cybersecurity Framework, veteran …