10-D Security | Social Engineering Assessment

By: 10-D Security  04/20/2016
Keywords: Social Engineering, Dumpster Diving, Phishing Email

Our favorite service offering is the Social Engineering Assessment. This is because we are very skilled and successful at it and most everyone involved has fun. Unfortunately, cyber-criminals also love to social engineer, and they are good at it too. Social Engineering (SE) is the art of hacking people to gain information or access. Since humans are so complex, and we all have good days and bad days, collectively we are the weakest link. This weak link in a company’s defenses is exactly what the bad actors are targeting. Social Engineering is one of the highest threats facing today’s businesses. To combat this growing threat, many companies have instituted a multitude of security controls including: Policies, Procedures, Monitoring, and Security Awareness Training. These controls are what a good SE Assessment will test and evaluate. Most of our clients are shocked at how successful we can be on their first test at tricking employees into divulging information. Those same clients seem to enjoy reducing our success rate year after year. We see companies reduce their risk levels most effectively by engaging a complete SE Assessment annually, supplemented with focused based engagements such as phishing email and phone testing each quarter. Pass or Fail, Win or Draw: there is always something to learn from a good SE Assessment.

Keywords: Dumpster Diving, Phishing Email, Pretext Calling, Social Engineering, Social Engineering Assessment, Social Engineering Test,

Other products and services from 10-D Security

04/20/2016

10-D Security | Independent IT Audit

Find out if your IT Security Program is affective and complying to best practices or any applicable regulations.


11/22/2011

10-D Security | Penetration Testing

Find out from the good guys how the bad guys would attack you before they attack.