Any good resources to train helpdesk workers on the basics of avoiding social engineering attacks? [closed]

untagged

Anyone know any good introductions to the concept of social engineering that I can give to helpdesk workers to help them spot suspicious activity? I'm looking for a few examples and a few tips on how to avoid being caught out.


Solution 1:

Here are some listed examples: http://www.symantec.com/connect/articles/social-engineering-fundamentals-part-i-hacker-tactics ... but I think your primary defense is basic education and common sense. Test for a rudimentary ability to detect soceng during the hiring process.

Solution 2:

Kevin Mitnick - "The Art Of Deception". Fantastic read.

Related

Detecting server abuse
Change domain password from non-domain computer (AD)
Why would Windows Server not respond to DHCP DISCOVER?
How do you verify a restore?
Looking for a tool to plan network/vlan topologies [closed]
Can enabling a RAID controller's writeback cache harm overall performance?
Why do web sites in IIS7/7.5 have ASP.NET ISAPI filters enabled by default?
How do I assign a public IP to a machine behind a pfSense box using 1:1 NAT?
pfsense log file retention
Why do I have so many apache2 processes?
Keystone vs. Feed-Thru vs. Punchdown Patch Panels
Using an allowed user list with VSFTPD