Book Review - The Art of Deception

-

 Known as the first internet hacker in the history of the world and always shown on the FBI's Most Wanted list, "Kevin D. Mitnick" focused on the term "Social Engineering" in his book called "The Art of Deception". The author proves that using social engineering is a good way to reach things in simple ways that seem very difficult, and also shows solutions for counter-defense.


Before writing the review, I would like to give a background of the author, Kevin Mitnick. He (also known as Condor) was one of the first computer hackers and is most famously known. He was caught by the FBI on February 15, 1995. He was sentenced to 5 years in prison for penetrating the computer networks of companies such as Fujitsu, Motoɾola, Nokia, and Sun Microsystems.




The book called “The Art of Deception”, which consists of 4 parts, focused on the weakest link of the chain, the human. In the next two chapters, he talked about the ways to circumvent a company's security ring, and the mistakes made at the end of it, with real-life examples. It reveals that in addition to accessing the information of businesses or customers by hacking, this information can be obtained with a few phone calls without pressing a key on the keyboard. He underlines that a social engineer needs a few important internal notes in order to achieve what he wants and that he has full confidence in using it, on the other hand, he also says that the other person should always be trusted. Mitnick, who reveals the great security vulnerability of the concept of social engineering created by this and similar methods, gives wide coverage to the fact that the measures to be taken against this are misunderstood by the companies. To give an example, he underlines that although the company takes superior security measures so that information is not leaked and seized, as the human element, which is the weakest chain in this system, is high - this security wall (humans) can be easily broken with a few phone calls. 



Our author, who is currently giving information technology consultancy and speaking at conferences on internal security, has stated many methods of overcoming this problem in the 4th chapter of the book. Here, he emphasizes that all people working in the company, from the highest level to the lowest unit, should be trained in business security as well as information network security. It is his responsibility to train personnel units such as security, cleaning, and guard working in an enterprise, especially about which information should be given and which information should not be given. He already states this and its importance with examples in the previous chapters.



“Kevin D. Mitnick”, emphasizing the need for people to be conscious of our corporate and personal safety both in the past and today, by working on the theme of social engineering, includes information full of life-saving experiences on a very important issue for today's world.



Comments

Post a Comment

Popular posts from this blog

Week 13 - A Practical Example: the Story of Linux (Kali vs Parrot OS)

-
Image
 Linux is the most well-known and widely used open-source operating system. Unlike other operating systems, Linux has an open-source structure. This means that the person using the operating system can be aware of almost everything that goes on in the background of the computer, and can organize and develop the operating system in his own way. Whether you know Linux or not, you've probably used Linux before, albeit unintentionally. Almost a third of websites are run by servers built by Linux. Apart from that, the Linux operating system is generally used by individuals who are familiar with software and many large companies. The reason companies choose Linux when setting up their servers is because it is much more secure than other operating systems. In addition, Linux is a more flexible and comfortable operating system compared to other operating systems. There is also an incredibly large community working to improve Linux. Companies can really get tremendous help from this communi...
Read more

Week 5 - Computers and Laws I: Can Property Be Intellectual?

-
Image
 The main idea behind the book is to alter the idea of copyright legislation. In the first chapter, the writer begins the paragraph by denoting the fact that youngsters can be seen as criminals in the eyes of law because of copyrighted file sharing.  Living in the internet era, it does not seem possible to establish a rule or ban against file transferring between citizens. There is no technology to differentiate the copyrighted material and the private messages without revealing the information.  Another interesting scenario that the writer mention is that if people spend less money on purchasing CDs, they will spend the revenue to buy concert tickets which are more lucrative for artists than buying a CD. Furthermore, people in the past were not fully aware of the power of public libraries. Many people and authors were against public libraries because if people would use the same book without purchasing, the author could not earn money. However, it turned out that public ...
Read more

Week 12 - The Historical Hackerdom

-
Image
 In this forum, I will give my opinion on the book that was written by Pekka Himanen, Manual Castells, and Linus Torvalds. They come together to discuss hackers' working style, organization, work ethic, work urge, etc. To start with I will give some information about the writes. PEKKA HIMANEN: In her twenties, he received his Ph.D. in Philosophy from the University of Helsinki. His in-depth studies of the meaning of technological development put him in contact with academics, artists, government officials, and corporate executives. LINUS TORVALDS: While a student at the University of Helsinki in 1991, he created the Linux operating system, becoming one of the most respected hackers in the computing community. Since then, Linux has been used by thousands of users around the world.  MANUEL CASTELLS: Professor of sociology at the University of California, Berkeley. The critically acclaimed trilogy The Information Age, The City, and author of more than twenty books. I would like t...
Read more