Cyber Security Awareness Poster
What is a Social Engineering Attack?
The attacker uses human interaction to obtain information about an organization or its computer systems.
The attacker may seem unassuming and/or respectable, possibly claiming to be a new employee or a repair person, and may offer credentials to support that identity. They will often do this multiple times with multiple people until they gain enough information to infiltrate an organization’s network.
Socail engineering in an organization/business is slightly different than social engineering on an individual which usually plays on a person’s emotions to gain access to sensitive information.
What is a Phishing Attack?
Phishing attacks use emails or malicious websites to solicit personal information by posting as a trustworthy organization, such as a credit card company, financial information, or your boss.
These emails and sites suggest there is a problem, promting the user to respond with sensitive information that the attacker can use to access an account or financial compensation.
Phishing inside an organization is pretty much the same as phishing attacks targets to individuals.
Be suscious! Never give personal information to an unverified requester. If you have doubt, verify the request by other means. Write a new email or call the organization or requester via a verified phone number. Never reply to a suspicious email to gain more information.
CourseVector grants permission to use this artwork for any non-commercial purpose as long as the CourseVector contact information remains, as is, on any reproduction or use.
