A look at Bad Social Engineering, and how we can do better

Presented at DerbyCon 2.0 Reunion (2012), Sept. 30, 2012, 11 a.m. (50 minutes)

The manner in which many social engineers currently approach social engineering perpetuates a poor mentality. The focus recently among many subsets of the community is that social engineering is just telling a good lie or making a good counterfeit. The reason this is bad is because it relies on the victim consciously and critically interpreting external stimuli. The goal needs to be to cause an internal reaction in line with the nature of the target. Don’t tell someone to jump in the river, take them to the river then set them on fire.

During this talk we will cover issues with how social engineers are practicing their craft, as well as steps and methods to rectify the identified deficiencies.

Presenters:

• Noah “Cpl” Beddome (Tanks4u)
  Noah Beddome is a penetration tester and lead social engineer for Coalfire Labs, at Coalfire Systems. As a former Marine, and current InfoSec professional Noah has a passion for “breaking the systems” in order to make it better.

Similar Presentations:

• DEF CON 21 (2013) / Social Engineering The Gentleman Thief
• PancakesCon 1 (2020) Virtual / Social Engineering and Beekeeping
• DeepSec 2013 „Secrets, Failures, and Visions“ / Social Engineering Awareness Training - One Day Training Course