The Art of Deception (book)
The Art of Deception (Engl. Title The Art of Deception ) is an English original 2002 Publisher John Wiley & Sons published book of computer security consultant Kevin Mitnick about social engineering . The German edition was published by mitp in 2003 . The book deals with methods of information stealth and the prevention of such attacks.
author
.jpg)
Kevin Mitnick is a former notorious hacker who now works as an IT security consultant with his own company. He has published four books, three of which are "The Art of Deception" (2002), "The Art of Intrusion" (2005) and "The Art of Invisibility" (2017) educate about IT security problems.
structure
The English edition has 16 chapters, the German edition of the book has 17 chapters, which are divided into four parts:
| German edition | English version | |||
|---|---|---|---|---|
| part | chapter | part | chapter | |
| 1. | Behind the scenes | 1 | Behind the scenes | 1 |
| 2. | The art of the attacker | 2-9 | The Art of the Attacker | 2-9 |
| 3. | Trespassing | 10-14 | Intruder Alert | 10-14 |
| 4th | Protective walls | 15-17 | Raising the bar | 15-16 |
The seventeenth chapter of the German edition is the first chapter of the appendix in the original English edition.
content
Part of the book consists of true stories and examples of how social engineering can go hand in hand with hacking. Almost all of the examples are made up, but credibly depict the approach that hackers or so-called social engineers actually used. The sample cases show how easily, often in the manner of a skilled social engineer impostor can undermine many rules that keep most people take for granted and unumgehbar.
Examples
- Someone escapes the speeding penalty by figuring out when the officer who stopped them and writing the ticket is out of town and then requesting a court date that coincides with the cop's absence time.
- A person gains access to the internal computer system of a company, which is protected by a password that changes every day by waiting for a snowstorm, then pretending to be a snowy employee who wants to work from home and by this lie causes the operator to do it for him Tag a valid password.
- Someone gets a lot of in-house information about a new company by waiting for the CEO to get out of town, then visiting the company's headquarters and posing as a close friend and business partner of the CEO.
- Someone enters a restricted area by walking to the door with a large box full of books and relying on the widespread willingness of people to help hold the door for someone in such a situation.
After each example, the book explains how the victims were deceived or misled and how to address this in real life and in business practice.
At the end of the book, Mitnick explains in a coherent manner how to proceed and how a company should plan its processes in order to prevent most of the fraud maneuvers presented in the book.
Bibliographic data
- Kevin D. Mitnick, William L. Simon: The art of deception, human risk factor (= mitp professional ). mitp, Heidelberg 2013, ISBN 978-3-8266-9606-0 (With a foreword by Steve Wozniak ; English first edition: The Art of Deception. 2002, ISBN 0-471-23712-4 ).
literature
- Mitnick hacks book: The Art of Deception . In: Spiegel Online . July 8, 2002 ( spiegel.de ).
- Jim Krane: The Art of Deception . In: sueddeutsche.de . 2010, ISSN 0174-4917 ( sueddeutsche.de ).
Individual evidence
- ↑ Kevin D. Mitnick, William L. Simon: The Art of Deception: Risk Factor Human . 1st edition. mitp, Bonn 2003, ISBN 3-8266-0999-9 .
- ↑ Jim Krane: The Art of Deception . In: sueddeutsche.de . 2010, ISSN 0174-4917 ( sueddeutsche.de [accessed June 14, 2018]): “And yet Mitnick affirms: This book is not about my cases. 'They are made up stories about the techniques that I and others have used.' After all, he has to be careful not to violate any of his probation requirements. "