10-D Security | Social Engineering Assessment
Social Engineering, Dumpster Diving, Phishing Email
Our favorite service offering is the Social Engineering Assessment. This is because we are very skilled and successful at it and most everyone involved has fun. Unfortunately, cyber-criminals also love to social engineer, and they are good at it too.
Social Engineering (SE) is the art of hacking people to gain information or access. Since humans are so complex, and we all have good days and bad days, collectively we are the weakest link.
This weak link in a company’s defenses is exactly what the bad actors are targeting. Social
Engineering is one of the highest threats facing today’s businesses.
To combat this growing threat, many companies have instituted a multitude of security controls
including: Policies, Procedures, Monitoring, and Security Awareness Training. These controls are what a good SE Assessment will test and evaluate.
Most of our clients are shocked at how successful we can be on their first test at tricking employees into divulging information. Those same clients seem to enjoy reducing our success rate year after year.
We see companies reduce their risk levels most effectively by engaging a complete SE Assessment annually, supplemented with focused based engagements such as phishing email and phone testing each quarter. Pass or Fail, Win or Draw: there is always something to learn from a good SE Assessment.
, Phishing Email
, Pretext Calling
, Social Engineering
, Social Engineering Assessment
, Social Engineering Test