.

How to prepare the "Human OS" for a malware scan???

<<

johnnekar

Newbie
Newbie

Posts: 11

Joined: Fri Feb 12, 2010 2:25 am

Post Fri Apr 02, 2010 1:37 am

How to prepare the "Human OS" for a malware scan???

Well there are loads of AVs that not only alert you of some threats but also provide online security. Securing your computer/OS to some extent(No machine is completely secure, never) is easy but what about the OS that is installed on our brain? The biggest vulnerability of the Human OS (HOS) is "trust". So we can define Social Engg as "The clever manipulation of the natural human tendency to trust".

Well the biggest questions over here are:
1) Though AVs, firewalls and IDSs keep the networks perimetere secure, how can we train the HOS to identify any mischief?

2) People who are naive to the internet will never know that they are becoming a victim of a phishing attack. Even after warning the population to check the URL, the SSL favicon, the padlock symbol to ensure the authencity of a websit, how many bother to check that?

3) Techniques like email spoofing add to the nuisance. Who bothers to check the headers of an email to verify the origin if the message?

4) Can there never be a security solution to Social Engg?

I as a script-kiddie had launched quite a few phishing attacks. But being a White Hat I only grabbed email a/cs, no bank accs. Though I never misused them, but merely accessing those accounts gave enormous information about that person including bank & credit card details.

Will we ever have a solution??

j0hnn3k4r
http://techkranti.blogspot.com
Your tomorrow should be better than your today.. j0hnn3k4r
<<

pizza1337

Full Member
Full Member

Posts: 156

Joined: Mon Mar 08, 2010 5:29 pm

Post Fri Apr 02, 2010 8:57 am

Re: How to prepare the "Human OS" for a malware scan???

Knowledge Resource is Power.
<<

j0rDy

User avatar

Hero Member
Hero Member

Posts: 591

Joined: Tue Feb 23, 2010 4:55 am

Location: Netherlands

Post Tue Apr 06, 2010 3:29 am

Re: How to prepare the "Human OS" for a malware scan???

security awareness trainings should be standard within every organization atleast once a year. there are many do's and dont's for giving these trainings, but the fact should be that people think before they act. If the budget doesnt let you perform a simple phising scam (with authorization from your manager) and calculate the results to a simple chart showing how many people "clicked the wrong button". even this is effective in educating people for such attacks.
CISSP, CEH, ECSA, OSCP, OSWP

earning my stripes appears to be a road i must travel alone...with a little help of EH.net
<<

pizza1337

Full Member
Full Member

Posts: 156

Joined: Mon Mar 08, 2010 5:29 pm

Post Tue Apr 06, 2010 4:45 am

Re: How to prepare the "Human OS" for a malware scan???

Knowledge Resource is Power.

Return to Social Engineering

Who is online

Users browsing this forum: No registered users and 0 guests

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software