Social Engineering - Manipulation of Employees through IT systems


The advent of Social Networks has made both companies and public bodies tremendously exposed to the new and dangerous type of cyber-attack called Social Engineering.

Latest insights into security breaches reveal that about 90% of the security incidents include the human element as a major component of their attacks, thus belonging to the area of Social Engineering. Even large companies which have heavily invested in security and often operate worldwide have experienced attacks that exploit the human element of (in)security.

However, there is currently no solution available on the market that allows neither the comprehensive Social Vulnerability Assessment, nor the management and reduction of the associated risk.  A number of leading security researchers and organizations have just completed a business-oriented research in Social Engineering. The research has led to the thought-provoking results presented at an international conference on 29 February.

Based on this new research, the conference will expose the magnitude of the vulnerability of the still rising social engineering, and thus increase the awareness of international businesses and public authorities. In conclusion, the conference will provide important recommendations on how to protect business and public authorities against the threat of social engineering.

Programme

09:30–10:00

 

Registration / Networking
10:00–10:30   IT Security in Critical Infrastructure
Mathias Lysholm Faaborg, Senior Director, Head of Strategy, TDC
10:30–11:15   Social Engineering 2.0: Attacking Critical Infrastructure
Dennis Hansen, Consultant & Researcher, DBI Corporate Investigation
11:15–11:45   Social Engineering and SE 2.0
Enrico Frumento, Senior Analyst, CEFRIEL Digital Innovation
11:45–12:30   Sandwich / Networking
12:30–13:10   Why Arcade and Retro Gaming Can Help Prevent Phishing by “Priming People for Phishing”
Marc Busch, Scientist, Austrian Institute of Technology
13:10–13:45   Social Engineering 2.0 versus IT Security
Christian Damsgaard Jensen, Associate Professor, DTU Compute
13:45–14:00   Coffee Break / Networking
14:00–14:30   The Industrial Aspects of Social Engineering
Philippe Roy, Group IT Security Specialist, Danske Bank
14:30–15:00   Social Engineering 2.0: Using Public Information for Targeted Deception
Christian W. Probst, Associate Professor, DTU Compute
15:00–15:30   Panel Discussion / Open Discussion
Conference Speakers / Project Management Staff /Audience

 
Download programme (pdf)

Registration

Githa Grum-Schwensen, CenSec: githa@censec.dk,+45 5213 1542

 



Tid og sted

Dato:  29. februar 2016
Tid:  10.00-15.30
Sted:  The Danish Institute of Fire & Security Technology, Jernholmen 12, 2650 Hvidovre, Copenhagen
Pris:  Participation is free. No-show fee DKK 500.
Kontakt navn:  Karen Westergaard Nielsen, DBI, +45 2964 4385
Kontakt e-mail

Se alle Infinit arrangementer


InfinIT er finansieret af en bevilling fra Styrelsen for Forskning og Uddannelse og drives af et konsortium bestående af:
Alexandra Instituttet . BrainsBusiness . CISS . Datalogisk Institut, Københavns Universitet . DELTA . DTU Compute, Danmarks Tekniske Universitet . Institut for Datalogi, Aarhus Universitet . IT-Universitetet . Knowledge Lab, Syddansk Universitet . Væksthus Hovedstadsregionen . Aalborg Universitet