Podcast: Play in new window | Download (42.5MB) | Embed
Subscribe: Apple Podcasts | Spotify | Email | RSS | More
Social engineering is defined as the use of psychological tactics to manipulate individuals into divulging confidential information or performing actions that may compromise their organization’s security. Social engineering attacks often target the weakest link in an organization, which is the employees. They are looking for easy access into a system.
It is important to have a firm grasp of social engineering as software developers since we are in a unique position to create security systems and protocols that are resistant to social engineering attacks. By understanding these attacks, developers can build systems that better protect against them.
Social engineering is a serious threat to software developers, as we are often targeted because of our access to sensitive information and technical knowledge. It is important to be aware of the different types of social engineering attacks, such as phishing, impersonation, baiting, pretexting,. This is not an exhaustive list as social engineers are always coming up with new ways to access things they shouldn’t. Use the best practices discussed to reduce the risk of falling victim to a social engineering attack.