Saturday, May 15, 2021

Security awareness training notes

The following is the terminologies related to security risk from social engineering.

  • Social engineering: the art of manipulating, influencing, or deceiving you into taking some action or divulging confidential information.
  • Phishing: Acquire sensitive information such as usernames and passwords
  • Spear phishing: specific phishing target using soical media, personalized message
  • Vishing: voice phishing, using scam recorded message
  • Smishing: phish you using text messages
  • Pretexting: the practice of presenting oneself as someone else in order to obtain private information
  • Tailgating: trying to gain unauthorized access to physical locations
  • Ransomware: malicious software that will allow a hacker to deny access to all of files or network until a ransom is paid.
  • Spyware: installed software to spy and collect data
    Bot: act as malicious software, running in background, usually causing system slow or crash
  • Malicious app: link/attachment to install bad app on mobile phones

Three things to remember

  • Stop, look, and think before take proper actions
  • Don't open links or attachment in suspicious emails
  • Don't use public wifi

No comments:

Post a Comment