Saturday, February 5, 2022

LOOK OUT: Social Engineering Attacks

Most of us know to always be cautious when using the internet to ensure our sensitive information is always safe. The need to use the World Wide Web is only increasing which means we have new internet users all the time, and we aren't always sure of what to look out for. Testout Office Pro LabSim 1.4.8 Internet Safety Facts, provided me with many precaution tips for internet use, specifically:

  • Never implicitly trust information from the Internet. This includes web pages, email messages, social media posts, and downloaded files. Always validate such information against reliable sources.

To dive a little deeper into why we should not trust all information on the internet let's discuss common social engineering attacks seen on the internet and examples of how they are used. Four common engineering attacks are Reconnaissance, Pretexting, Email Attacks, and Browser Attacks.

  • Reconnaissance passively gathers information about a potential victim. The goal is to identify key information needed to further exploit the victim. Forms include shoulder surfing, eavesdropping, and dumpster diving.
  • Pretexting attempts to trick the victim into revealing sensitive information under false pretenses. Some forms of pretexting are Intimidation, social validation, and familiarity.
  • Email attacks attempt to exploit a victim using email messages, which include phishing, spear phishing, Nigerian scams, and email hoaxes.
  • Browser attacks convince the victim that they are performing a legitimate task within their browser window, when in fact they are being tricked into revealing sensitive information or installing malware on their computer. Some examples are pharming and rogue antivirus attacks.
After reading about these engineering attack types and looking up situation scenarios for each I feel more equipped to spot spam and fraudulent attack attempts more efficiently to ensure I'm keeping my sensitive information internet safe.
at

17 comments:

  1. Albert WuFebruary 6, 2022 at 11:37 AM

    Very glad to hear you feel more equipped to spot scams and fraudulent attack attempts more efficiently :-)

    Thank you for giving an excerpt of what you learned from Chapter 1: Online Essentials ^_^

    ReplyDelete
  2. Ivan J.February 7, 2022 at 11:24 AM

    The internet is a wild place, it's key to know how to defend yourself.

    ReplyDelete
  3. Kelsey AndrussFebruary 7, 2022 at 4:08 PM

    WWW doesn't stand for World Wide Web, it stands for Wild Wild West because there's no rules when it comes to the internet.

    ReplyDelete
  4. Jamie WidbyFebruary 7, 2022 at 7:49 PM

    I have trust issues, so I already question everything.

    ReplyDelete
  5. Jamila JonesFebruary 8, 2022 at 10:48 AM

    Same I am the person who accidentally deletes needed emails if I am not completely sure its forreal.

    ReplyDelete
  6. Andrew HenrichsFebruary 8, 2022 at 3:43 PM

    I remember the first time I got one of those "Rogue Virus" pop-ups. It really freaked me out, because I'd never seen one before, and it comes at you so quick, trying to hit you before you can think. You definitely have to be aware, as this section made crystal clear.

    ReplyDelete
  7. Mayra HernandezFebruary 9, 2022 at 9:20 PM

    The internet is a wild place. Its a good thing we learned some tips that we can use to protect ourselves and be vigilant.

    ReplyDelete
  8. Dimas ChangFebruary 11, 2022 at 7:03 PM

    Great information to know, helps if you are trying to get CompTIA Security Plus certified.

    ReplyDelete
  9. Vincent AguanaFebruary 12, 2022 at 9:32 AM

    It's really good to know how to defend against those attacks. It can be incredibly destructive to fall for those tricks.

    ReplyDelete
  10. Kurt BuchananFebruary 12, 2022 at 10:03 AM

    This class has open my eyes to how information gets around. I used to think that if I send a video or picture to someone, It would be shared between me and the receiver. Only to find out that it goes through several stages before it actually gets to the receiver. Very scary. Not to mention attacks and viruses.

    ReplyDelete
  11. Athina KoetterFebruary 12, 2022 at 12:02 PM

    I am glad I have never been a victim to any of these attacks. Definitely an important lesson.

    ReplyDelete
  12. Mariah HardnettFebruary 18, 2022 at 11:49 AM

    I have to admit that I have fallen for social engineering attacks in the past one of the worst ones is when they pretend to be a account or software that you actually have. The Information in Lab Sim helped me look out for these scams and to be more cautious.

    ReplyDelete
  13. Adriana Cano-EspinozaFebruary 19, 2022 at 10:21 AM

    It is so important to be cautious online now a days, the internet is vast and can be crazy at times.

    ReplyDelete
  14. Tracyann FrancisFebruary 19, 2022 at 11:16 AM

    Knowing what I know now about social engineering attacks, makes me more aware of all the possible ways I can be attack. So now I am more vigilant. How I open new emails or messages.

    ReplyDelete
  15. Axel Abad-MartinezFebruary 22, 2022 at 2:09 PM

    Agreed, I remember that I was told about how somebody once hacked MGM and stole a large amounts of money. Everything was done thanks to a simple email that got phished and the person was not aware of the person being suspicious. Luckily for MGM they found the person and were able to get the money back from the hacker, but it's things that you don't remember that people are capable of in order to get money.

    ReplyDelete
  16. Jesica Simon-QuiterioMarch 5, 2022 at 10:45 AM

    If only my grandparents could understand this! Haha

    ReplyDelete

Subscribe to: Post Comments (Atom)