Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails 1st Edition by Christopher Hadnagy (PDF)

24

 

Ebook Info

  • Published: 2015
  • Number of pages: 224 pages
  • Format: PDF
  • File Size: 11.58 MB
  • Authors: Christopher Hadnagy

Description

An essential anti-phishing desk reference for anyone with an email addressPhishing Dark Waters addresses the growing and continuing scourge of phishing emails, and provides actionable defensive techniques and tools to help you steer clear of malicious emails. Phishing is analyzed from the viewpoint of human decision-making and the impact of deliberate influence and manipulation on the recipient. With expert guidance, this book provides insight into the financial, corporate espionage, nation state, and identity theft goals of the attackers, and teaches you how to spot a spoofed e-mail or cloned website. Included are detailed examples of high profile breaches at Target, RSA, Coca Cola, and the AP, as well as an examination of sample scams including the Nigerian 419, financial themes, and post high-profile event attacks. Learn how to protect yourself and your organization using anti-phishing tools, and how to create your own phish to use as part of a security awareness program.Phishing is a social engineering technique through email that deceives users into taking an action that is not in their best interest, but usually with the goal of disclosing information or installing malware on the victim’s computer. Phishing Dark Waters explains the phishing process and techniques, and the defenses available to keep scammers at bay.Learn what a phish is, and the deceptive ways they’ve been usedUnderstand decision-making, and the sneaky ways phishers reel you inRecognize different types of phish, and know what to do when you catch oneUse phishing as part of your security awareness program for heightened protectionAttempts to deal with the growing number of phishing incidents include legislation, user training, public awareness, and technical security, but phishing still exploits the natural way humans respond to certain situations. Phishing Dark Waters is an indispensible guide to recognizing and blocking the phish, keeping you, your organization, and your finances safe.

User’s Reviews

Editorial Reviews: From the Inside Flap Learn to catch a phish without becoming live bait.Phishing e-mails create daily havoc for both individuals and organizations. A social engineering technique that preys on our human nature, phishing remains remarkably successful for scammers and malicious social engineers despite increasingly sophisticated security programs and awareness campaigns. Christopher Hadnagy and Michele Fincher, practitioners and consultants in human-based security, have spent years working to understand how and why phishing works. In this book, they dissect what a phish is, why it succeeds, and the principles behind it, fully exposing all of its flaws and detailing innovative ways to defend against it. Focusing on the basics of the phish, the underlying psychology, the skillful use of influence, and a creative program to use the phisher’s weapons against him, this highly readable guide provides tools for both individuals and corporations. Hadnagy and Fincher examine some of the most current and effective phish, show you how to spot a spoofed e-mail or cloned website, explore phishing education platforms that work, and demonstrate how to create your own phish to use in your security awareness program. Despite legislation, user training, public awareness, and technical security, phishing persists because it exploits our natural responses to e-mail requests. Phishing Dark Waters, The Offensive and Defensive Sides of Malicious E-mails arms you with a greater understanding of: The psychological principles that make phishing effectiveHigh-profile breaches, including Target, RSA, and Coca-Cola, that began with a phishCommon scams, including those following natural disasters and other highly publicized events Different goals of attackers: financial, corporate espionage, national security, and identity theft threatsHow to protect your enterprise with a corporate phishing program and integrate it into company policiesWays to catch a phishWhy most security awareness programs don’t work From the Back Cover Learn to catch a phish without becoming live bait.Phishing e-mails create daily havoc for both individuals and organizations. A social engineering technique that preys on our human nature, phishing remains remarkably successful for scammers and malicious social engineers despite increasingly sophisticated security programs and awareness campaigns. Christopher Hadnagy and Michele Fincher, practitioners and consultants in human-based security, have spent years working to understand how and why phishing works. In this book, they dissect what a phish is, why it succeeds, and the principles behind it, fully exposing all of its flaws and detailing innovative ways to defend against it. Focusing on the basics of the phish, the underlying psychology, the skillful use of influence, and a creative program to use the phisher’s weapons against him, this highly readable guide provides tools for both individuals and corporations. Hadnagy and Fincher examine some of the most current and effective phish, show you how to spot a spoofed e-mail or cloned website, explore phishing education platforms that work, and demonstrate how to create your own phish to use in your security awareness program. Despite legislation, user training, public awareness, and technical security, phishing persists because it exploits our natural responses to e-mail requests. Phishing Dark Waters, The Offensive and Defensive Sides of Malicious E-mails arms you with a greater understanding of: The psychological principles that make phishing effectiveHigh-profile breaches, including Target, RSA, and Coca-Cola, that began with a phishCommon scams, including those following natural disasters and other highly publicized events Different goals of attackers: financial, corporate espionage, national security, and identity theft threatsHow to protect your enterprise with a corporate phishing program and integrate it into company policiesWays to catch a phishWhy most security awareness programs don’t work About the Author CHRISTOPHER HADNAGY, author of Social Engineering: The Art of Human Hacking, specializes in the human aspects of technology. With more than 14 years of experience in technology, he is CEO of Social-Engineer, Inc. and a frequent speaker at major security conferences. MICHELE FINCHER possesses more than 20 years experience as a behavioral scientist, researcher, and information security professional. She is a senior penetration tester and Chief Influencing Officer at Social-Engineer, Inc. Read more

Reviews from Amazon users which were colected at the time this book was published on the website:

⭐This is more than just a good book – this is an important book, one that everyone who uses the Internet, email, or social media (and that pretty much means just about everyone alive) should read. Chris Hadnagy and Michele Fincher have done a wonderful job of taking a complex topic and explaining it in an enjoyable and understandable way, using personal anecdotes (and sometimes even humor) to get the point across. In a way, this is a psychology textbook — one that deals with the psychologies of phishing and of victimhood, and one that teaches readers that if they learn to stop acting and thinking like victims, they’re much less likely to become victims. In fact, it really should be a textbook, because in this day and age, it ought to be required reading.

⭐From the user who just wants to understand how to better protect yourself online to the team in charge of an enterprise information security awareness program, the book provides useful insights into the dark waters of phishing.I especially enjoyed how the authors shared their knowledge of human behavior to help us understand and improve without making us feel ignorant. With their experience performing white-hat phishing for millions of people, it would have been easy to feel intimidated by the topic. The authors did a great job sharing truly personal anecdotes to illustrate what it feels like to fall for phishing scams. Then, they shared the secrets to help address the problem in a thoughtful manner.

⭐The book is written at a very introductory level giving the basic details of what a phish is, the mental stimulus behind a phishing email in order for it to work, the levels of emails, how to create a program, policy, tools, etc. I believe it did a fine job at being able to explain the inevitable phishing emails for any reader. Executives, analysts, and non-technical people could all learn something from this book.Some of the examples were out there and kind of made the idea obscure. I would suggest the read for anyone who wants to learn the introductory point of phishing and how to educate yourself and your users

⭐This book really cleared up the hows and why’s to phishing. I fouled Chris’s podcast for a few years now they had to read the book. It has really helped me set up a phishing program for my company. I feel much more confident now when it comes to our phishing awareness program its goals and expected outcomes.

⭐Chris Hadnagy is simply the go-to, credible expert on social engineering. This book, like his others, is worth more than the cost. I rarely give reviews, and I’m a harsh critic — so factor that into the 5-star rating.

⭐Phishing Dark Waters is a great book to assist you in starting / improving your Security Awareness Program. I enjoyed how Chris and Michele brought real world examples to lite. I’ve attended both classes and lectures given by Chris and Michele and as I was reading the book I could look back and reference discussions and issues that were discussed.This is a must have for anyone in Cyber Security as well as anyone building a Security Awareness Program.

⭐The first 3 chapters were very good and to the point. The rest of the book contained tips that werepretty obvious. The sections about the tools wasn’t very informative. Reading chapters 4-7 was a waste of time.

⭐Solid read. Wouldn’t be a bad intro book for someone interested in Cyber security.

⭐This is second Mr. Hadnagy’s book I bought. I wasn’t disappointed. Well researched. Writer knows what he is writing about. I’m looking forward to new titles.

⭐Interesting and unbiased assistance for security incidents which can catch you or your staff unaware. Simple explanations and easy to understand

⭐If you like this stuff you will love this book!!

⭐a must read !

⭐Felt there was a lot of filler… Should have talked more about tool/techniques… Referenced open source tools are lacking, but thats my opinion as I’m in the middle of dev an open source alternative ATM…

Keywords

Free Download Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails 1st Edition in PDF format
Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails 1st Edition PDF Free Download
Download Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails 1st Edition 2015 PDF Free
Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails 1st Edition 2015 PDF Free Download
Download Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails 1st Edition PDF
Free Download Ebook Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails 1st Edition

Previous articleLean Enterprise: How High Performance Organizations Innovate at Scale (Lean (O’Reilly)) 1st Edition by Jez Humble (PDF)
Next articleContinuous Delivery: Reliable Software Releases through Build, Test, and Deployment Automation (Addison-Wesley Signature Series (Fowler)) 1st Edition by Jez Humble (PDF)