social engineeringsocial engineering
- social engineer
- (sociology) Use of numerical data to inform social programs.
- Using social engineering, the new cardinal has efficiently re-arranged the Church's outreach.
- (political science) Use of propaganda by a government to sway perceptions and attitudes of its own citizenry.
- "This is Your Brain on Drugs" was a humorous failure at social engineering.
- (computer security) The practice of tricking a user into giving, or giving access to, sensitive information, thereby bypassing most or all protection.
- After our hacking attempts failed, we tried social engineering, walking into the building and claiming we had to do some urgent work in the server room.
social engineering - Computer Definition
A deceptive process in which crackers “engineer” or design a social situation to trick others into allowing them access to an otherwise closed network, or into believing a reality that does not exist. To crack computer systems, crackers often employ their well-honed social engineering skills. A robust sample of social-engineering case studies can be found in Kevin Mitnick’s book The Art of Deception.
Social engineering can also be used in noncyber-related crimes. A 2005 case involved a 39-year-old U.S. woman by the name of Anna Ayala, who filed a complaint to police in March saying that a human finger was in the chili bowl she purchased from a San Jose Wendy’s fast-food outlet. The police, believing that the complaint was a hoax after they investigated the claim, eventually discovered that the finger belonged to a man who lost his finger in an industrial accident in December 2004. He gave his finger to Anna’s husband, who gave it to Anna. Anna apparently “social engineered” a fake reality and was convicted of filing a false claim and of grand theft and sentenced to nine years in prison. The Wendy’s company offered a $100,000 reward for information regarding the claim, for it said that the crime cost it millions of dollars in sales. Apparently, the company had to lay off dozens of employees at the San Jose worksite because business there was harmed.
Associated Press. Police Identify Source of Finger Found in Chili. The Globe and Mail, May 14, 2005, p. A2; Schell, B.H. and Martin, C. Contemporary World Issues Series: Cybercrime: A Reference Handbook. Santa Barbara, CA: ABC-CLIO, 2004.
Using deception to obtain confidential information from someone by phone or in person. For example, the "social engineer" may persuade someone to reveal an ID or password for a supposed benign purpose (my computer is down, can I use yours in the meantime). Sometimes, a combination of social engineering and hacker skills are used to steal information. However, no matter how secure a network may be, the "con" played by the social engineer is often the most effective way to break in. Outside of the computer world, social engineering means to influence attitudes and behaviors. See pretexting and shoulder surfing.