The Art of Deception
This article has multiple issues. Please help improve it or discuss these issues on the talk page. (Learn how and when to remove these template messages)(Learn how and when to remove this template message)
|Author||Kevin D. Mitnick|
William L. Simon
|Publisher||John Wiley & Sons|
|October 4, 2002|
|LC Class||QA76.9.A25 M585 2002|
|Followed by||The Art of Intrusion|
The Art of Deception is a book by Kevin Mitnick that covers the art of social engineering. Part of the book is composed of real stories and examples of how social engineering can be combined with hacking.
All, or nearly all, of the examples are fictional but quite plausible. They expose the ease with which a skilled social engineer can subvert many rules most people take for granted. A few examples:
- A person gets out of a speeding ticket by fooling the police into revealing a time when the arresting officer will be out of town and then requesting a court date coinciding with that time.
- A person gains access to a company's internal computer system, guarded by a password that changes daily, by waiting for a snowstorm and then calling the network center posing as a snowed-in employee who wants to work from home, tricking the operator into revealing today's password and access through duplicity.
- A person gains much proprietary information about a start-up company by waiting until the CEO is out of town and then showing up at the company headquarters pretending to be a close friend and business associate of the CEO.
- A person gains access to a restricted area by approaching the door carrying a large box of books and relying on people's propensity to hold the door open for others in that situation.
This book also, after giving an example, will tell what tricked/conned the victims of the scam and how to prevent it in real life or business.
The book ends with Mitnick's strategy and business plans to prevent most if not all of the scams in the book.