“Intro to the Challenge of Cybersecurity – Unit 4 – Lesson 9”

Unit 4 – Lesson 9 – “Data – Humans”

2 Days

The easiest way for an adversary to misuse a system is to deceive and lure people to unwittingly yield their credentials or install malicious software. Targeting people to give access to an adversary without them knowing about it is called social engineering. Social engineering takes advantage of the fact that people do not always know what is the proper security behavior in a situation. Therefore, system designers work to create usable security adaptations to systems to help people intuitively recognize a social engineering attempt or any malicious attempt by an adversary. This lesson will explore the weakest link in cybersecurity – humans – and provide hands-on experience in creating social engineering campaigns.