Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails
- 3h 19m
- Christopher Hadnagy, Michele Fincher
- John Wiley & Sons (US)
- 2015
Phishing Dark Waters addresses the growing and continuing scourge of phishing emails, and provides actionable defensive techniques and tools to help you steer clear of malicious emails. Phishing is analyzed from the viewpoint of human decision-making and the impact of deliberate influence and manipulation on the recipient. With expert guidance, this book provides insight into the financial, corporate espionage, nation state, and identity theft goals of the attackers, and teaches you how to spot a spoofed e-mail or cloned website. Included are detailed examples of high profile breaches at Target, RSA, Coca Cola, and the AP, as well as an examination of sample scams including the Nigerian 419, financial themes, and post high-profile event attacks. Learn how to protect yourself and your organization using anti-phishing tools, and how to create your own phish to use as part of a security awareness program.
Phishing is a social engineering technique through email that deceives users into taking an action that is not in their best interest, but usually with the goal of disclosing information or installing malware on the victim's computer. Phishing Dark Waters explains the phishing process and techniques, and the defenses available to keep scammers at bay.
- Learn what a phish is, and the deceptive ways they've been used
- Understand decision-making, and the sneaky ways phishers reel you in
- Recognize different types of phish, and know what to do when you catch one
- Use phishing as part of your security awareness program for heightened protection
Attempts to deal with the growing number of phishing incidents include legislation, user training, public awareness, and technical security, but phishing still exploits the natural way humans respond to certain situations. Phishing Dark Waters is an indispensable guide to recognizing and blocking the phish, keeping you, your organization, and your finances safe.
About the Authors
CHRISTOPHER HADNAGY, author of Social Engineering: The Art of Human Hacking, specializes in the human aspects of technology. With more than 14 years of experience in technology, he is CEO of Social-Engineer, Inc. and a frequent speaker at major security conferences.
MICHELE FINCHER possesses more than 20 years experience as a behavioral scientist, researcher, and information security professional. She is a senior penetration tester and Chief Influencing Officer at Social-Engineer, Inc.
In this Book
-
Foreword
-
Introduction
-
An Introduction to the Wild World of Phishing
-
The Psychological Principles of Decision-Making
-
Influence and Manipulation
-
Lessons in Protection
-
Plan Your Phishing Trip—Creating the Enterprise Phishing Program
-
The Good, the Bad, and the Ugly—Policies and More
-
The Professional Phisher's Tackle Bag
-
Phish like a Boss