"Social Engineering"

This involves using unsuspecting and gullible users to provide information. The hacker uses his verbal skills to deceive victims into disclosing information they ought not to divulge, or convinces victims to commit acts that facilitate the hacker's scheme. Often posing as an employee or someone hired by the organisation, the hacker easily deceives real employees into revealing information. In order to research his scheme, he may avail himself of documents in the company bins or site rubbish receptacles, such as internal telephone directories and correspondence.

The hacker may assume a number of different guises to accomplish this deception. He may pose as a new or temporary worker and ask information systems employees for a password so that he can begin work. He may also pose as someone in a position of authority and intimidate employees into revealing confidential information.

Sometimes overt deception is not required. In large corporations, hackers can take advantage of anonymity among employees. By donning office attire, they can blend into the crowd and thus peruse the premises, perhaps gaining a password written down at an employee's desk in the process.

A Guide To Computer Crime
"Social Engineering" This involves using unsuspecting and gullible users to provide information. The hacker uses his verbal skills to deceive victims into disclosing information they ought not to divulge, or convinces victims to commit acts that facilitate the hacker's scheme. Often posing as an employee or someone hired by the organisation, the hacker easily deceives real employees into revealing information. In order to research his scheme, he may avail himself of documents in the company bins or site rubbish receptacles, such as internal telephone directories and correspondence. The hacker may assume a number of different guises to accomplish this deception. He may pose as a new or temporary worker and ask information systems employees for a password so that he can begin work. He may also pose as someone in a position of authority and intimidate employees into revealing confidential information. Sometimes overt deception is not required. In large corporations, hackers can take advantage of anonymity among employees. By donning office attire, they can blend into the crowd and thus peruse the premises, perhaps gaining a password written down at an employee's desk in the process.	Practitioner.Com: An Introduction to Computer Crime
Return To An Introduction to Computer Crime