Acc290
- Social engineering is a major part of a business, and is a relevant
issue that needs to be explained to new employee’s upon employment.
Employees should be taught that information can come in any form through
the computer, and through physical security.
Acc 290
- As well as that all information can be found through telephone, fax
machines, computers, or printers. All things that the employee uses must
be kept confidential at all times. All important documents on paper
must be shredded before being thrown away, and all types of hardware
such as compact disc or hard disk should be broken and destroyed before
being thrown away. This is called preventative maintenance.
Bsa385 -
Employees should be informed of some of the social engineering
techniques; this will help them to realize what types of harms to look
for. Let’s start with Pharming; this technique is a type of web-site
that will look just like another web-site for the purpose of stealing
information. Phising, this technique is used to get a consumer, or
employee to put in information for verification reasons from a bank,
credit card, ect… This type of technique is used to steal information as
well. Finally we come to Baiting; this type of technique is used in a
type of device to put a Trojan horse or malware into the system to
steal information. The attacker will implement the virus in the device
and wait for the person to use it; this will then infect the system.
Bsa 385 -
So in the end the best thing to make sure that all employees know is
that there are threats out there all the time and it is important to
look for such threats. This will help to make sure the system stays
clean, and keeps the business up and running in good standards at all
times.
Bsa 385