Đang chuẩn bị nút TẢI XUỐNG, xin hãy chờ
Tải xuống
nhưng không bao giờ loại bỏ chúng, và bởi vì họ không trực tiếp liên quan đến bất kỳ trang nào khác, nhà phát triển nghĩ rằng họ được an toàn. Tôi đã làm điều này và tải về các trang mẫu có chứa các tài khoản hoạt động và các thông tin hữu ích khác. | Higher chance of success Less chance of success but sometimes can be used to gain more information As you can see reverse social engineering is more complicated and therefore not used as much but in certain situations it can be used to gain more information than a social engineering attack can. Now that you have a better understanding of non-technical attacks let s look at what can be done to protect against them. Non-Technical Spoofing Protection The following are some of the key things you can do to protect against these non-technical types of spoofing attacks Educate your users o Help desk o Administrators o Receptionists Post messages on each computer. Include a section in the employee handbook. Have security make presentations at new employee orientations. Have proper policies o Password policy o Security policy Post appropriate warning banners. Require users to authenticate when calling the help desk Help desk should have caller ID and company directory. Use callback feature for all help desk inquiries. Do not punish help desk for following procedures. Limit information distributed to the public. Run periodic tests against help desk and users. The key to remember is that users must be educated so that they understand the threat to the company and know what to do to protect against it. Another requirement to protect against these types of attacks is to make sure the company does not punish users for following the procedures. For example the help desk staff is trained to authenticate all users and to call them back with the information they require. What if one day the CEO of the company calls for help and the help desk says We have to call you back. The CEO gets upset and says No I am the CEO and you must help me now. If the help desk person refuses and gets punished for it the company has just defeated its entire policy. No one wants to get fired Hackers Beware New Riders Publishing 164 and if following the procedures might get them fired your staff will .