|
The Art of Deception: Controlling the Human Element of Security |  | Authors: Kevin D. Mitnick, William L. Simon
Creator: Steve Wozniak
Publisher: Wiley
List Price: $16.95
Buy Used: $6.59
as of 9/6/2010 10:34 CDT details
You Save: $10.36 (61%)
New (40) Used (39) from $6.59
Seller: firstclassbooks
Rating:  133 reviews
Sales Rank: 21496
Media: Paperback
Edition: 1
Pages: 368
Number Of Items: 1
Shipping Weight (lbs): 1
Dimensions (in): 8.7 x 6 x 1
ISBN: 076454280X
Dewey Decimal Number: 005.8
UPC: 723812622115
EAN: 9780764542800
ASIN: 076454280X
Publication Date: October 17, 2003
Availability: Usually ships in 1-2 business days
| |
| Features:
| • | ISBN13: 9780764542800 | | • | Condition: New | | • | Notes: BUY WITH CONFIDENCE, Over one million books sold! 98% Positive feedback. Compare our books, prices and service to the competition. 100% Satisfaction Guaranteed |
|
| Also Available In:
|
| Similar Items:
| |
| Editorial Reviews:
Amazon.com Review
The Art of Deception is about gaining someone's trust by lying to them and then abusing that trust for fun and profit. Hackers use the euphemism "social engineering" and hacker-guru Kevin Mitnick examines many example scenarios.After Mitnick's first dozen examples anyone responsible for organizational security is going to lose the will to live. It's been said before, but people and security are antithetical. Organizations exist to provide a good or service and want helpful, friendly employees to promote the good or service. People are social animals who want to be liked. Controlling the human aspects of security means denying someone something. This circle can't be squared. Considering Mitnick's reputation as a hacker guru, it's ironic that the last point of attack for hackers using social engineering are computers. Most of the scenarios in The Art of Deception work just as well against computer-free organizations and were probably known to the Phoenicians; technology simply makes it all easier. Phones are faster than letters, after all, and having large organizations means dealing with lots of strangers. Much of Mitnick's security advice sounds practical until you think about implementation, when you realize that more effective security means reducing organizational efficiency--an impossible trade in competitive business. And anyway, who wants to work in an organization where the rule is "Trust no one"? Mitnick shows how easily security is breached by trust, but without trust people can't live and work together. In the real world, effective organizations have to acknowledge that total security is a chimera--and carry more insurance. --Steve Patient, amazon.co.uk
Product Description
The world's most infamous hacker offers an insider's view of the low-tech threats to high-tech security
Kevin Mitnick's exploits as a cyber-desperado and fugitive form one of the most exhaustive FBI manhunts in history and have spawned dozens of articles, books, films, and documentaries. Since his release from federal prison, in 1998, Mitnick has turned his life around and established himself as one of the most sought-after computer security experts worldwide. Now, in The Art of Deception, the world's most notorious hacker gives new meaning to the old adage, "It takes a thief to catch a thief."
Focusing on the human factors involved with information security, Mitnick explains why all the firewalls and encryption protocols in the world will never be enough to stop a savvy grifter intent on rifling a corporate database or an irate employee determined to crash a system. With the help of many fascinating true stories of successful attacks on business and government, he illustrates just how susceptible even the most locked-down information systems are to a slick con artist impersonating an IRS agent. Narrating from the points of view of both the attacker and the victims, he explains why each attack was so successful and how it could have been prevented in an engaging and highly readable style reminiscent of a true-crime novel. And, perhaps most importantly, Mitnick offers advice for preventing these types of social engineering hacks through security protocols, training programs, and manuals that address the human element of security.
|
| Customer Reviews:
Showing reviews 1-5 of 133
 DECEPTION July 15, 2010
Stephen T. Rushton (Clemson, SC United States)
0 out of 1 found this review helpful
WHILE I FOUND THE BOOK WELL WRITTEN AND INFORMATIVE, I FELT THE SUBJECT MATTER WAS NOT AS FULLY
INFORMATIONAL FOR THE MANAGEMENT CANDIDATE THAT WOULD READ THIS....ESSENTIALLY I FOUND THE EARLY PART
OF THE BOOK TO BE ABOUT DECEPTIVE PRACTICES BEING USED 20 YEARS AGO.....MUCH LIKE WATCHING AN OLD
MISSION IMPOSSIBLE TV SHOW....I WOULD CERTAINLY RECOMMEND THIS FOR ANY NEOPHYTE, BUT I PERSONNALLY
WAS LOOKING FOR MORE "CUTTING EDGE" IDEAS AND PRACTICES...I SUPPOSE THE AUTHOR WOULD(AND DOES) RESPOND THAT WITH EVEN THE BEST SECURITY SYSTEMS, THE HUMAN ELEMENT IS ALWAY THE WEAKEST LINK AND FOR THAT FACT, I SEE THE VALUE IN THIS PRODUCT.
HOWEVER, FOR THE SAVVY MANAGEMENT, LOOK ELSEWHERE FOR THE LATEST TECHNOLOGY(DIGITAL RECOGNITION) AND PERSONALITY
RECOGNITION TESTING...
 Everyone should read this book... June 4, 2010
William H. Folk II (Racine, WI)
Simply amazing! I need to read this book again. Not only that I need my entire audit department to read this and realize how open we are to fraud.
The techniques that the author points out on how easy it is to simply ask for information and get it was just too much to pass up. I've tied it within my own audit department to see just how susceptible we are...I still can't believe how open people were to provide me information not knowing who I was.
Everyone should read this book...there are parts that are a little too much for some people but the scenarios that he walks you through are so thorough that you'd swear you've had that conversation before.
'Social Engineering' made simple...maybe that should be the name of this book. I will have to admit that I'm more paranoid than I have ever been before but I guess that is a good trait to have in an auditor.
 One big advertisement brochure for Mitnick's security consulting April 25, 2010
Siraaj (Brooklyn, NY USA)
1 out of 2 found this review helpful
Mitnick is indeed a great "social engineer" aka "con artist"... And the only reason I give this book ANY stars is for the credit Mitnick deserves for convincing us to pay for and consume his advertisement. This book is filled with lame and repetitive anecdotes of how some employee got duped into disclosing internal company information, followed by "Mitnick Message" which boils down to: your company needs pen-testing and ALL your employees need security training. And who is better suited to provide the training than the guy that himself wrote the book...? I'm guessing his target audience is clueless management, who he hopes will be scared, impressed and buy his services. And if those of us with a clue that pick-up his book and leave a negative review: WHO CARES? WE ALREADY PAID HIM! :-) So kudos to Mr. Mitnick for being a brilliant salesman! Be warned - you won't find anything here about "CONTROLLING the Human Element of Security", you will only be repeatedly told the obvious: "the Human Element of Security" sucks.
Don't get me wrong, everything Mitnick talks about here is mostly true, but extremely dragged-out, self-serving and does not deserve a book. Had this been a dramatically shorter magazine article, I'd rate it 3.5 stars.
Beest price April 9, 2010
Anna Bonds (USA)
I had been looking for this book all over the Internet. This was the best deal I found. Thanks!!!!!
Great for Law Enforcement and Private Investigators March 20, 2010
Edward L Labarge
Prior to purchasing this book, I had a basic understanding of what social engineering was and how it was used to infiltrate information systems. However, after reading the book my knowledge went from a 3 to a 10 on a scale of 1-10. Art of Deception explained not only what social engineering was in its most rudimentary form but how the art of persuasion or should I say deception attacks the human nature to help people out. This is a must read for any criminal investigator regardless of what they investigate. It really shows you how easy it is to get information. Some of the tactics would even help out in police interviews and interrogations.
Showing reviews 1-5 of 133
|
|
|
CERTAIN CONTENT THAT APPEARS ON THIS SITE COMES FROM AMAZON SERVICES LLC. THIS CONTENT IS PROVIDED ‘AS IS’ AND IS SUBJECT TO CHANGE OR REMOVAL AT ANY TIME. Powered by Associate-O-Matic
| |
