Security Basics mailing list archives

Re: Legendary Hacker Kevin Mitnick on malware and social engineering

From: "Jon Barrett" <jon () b69ca com>
Date: Tue, 18 Jul 2006 14:18:23 -0400

Hi Christian,

You can get the Mitnick paper from www.appsense.com/mitnick - you don't needto register if you use this link. Scroll down to the bottom of the page andthere is a download link for the PDF version.


Enjoy.

Jon

----- Original Message -----From: <Christian.Assfalg () bc boehringer-ingelheim com>

To: <security-basics () securityfocus com>
Sent: Monday, July 17, 2006 1:07 AM

Subject: AW: Legendary Hacker Kevin Mitnick on malware and socialengineering

Just wondering if someone could give me a more direct link to this paper,because I can't access it. All I get is a 404 at this page:


http://www.appsense.com/content/miscellaneous/file_not_found_de.asp?file=URL=http://www.appsense.com/content/miscellaneous/404_de.asp?404;http://www.appsense.com/content/miscellaneous/mitnick/Mitnick_Hacking_White_Paper_de.asp?code=mitnick&cID=7012000000054SNAAY&&bhcp=1&email=

Looks like some sort of automatic language-selection to me, cause I amGerman and there is this "de" in the link (theMitnick_Hacking_White_Paper_de.asp part). I guess the Paper itself is inEnglish?


Regards,
Christian Assfalg

-----Ursprüngliche Nachricht-----
Von: Paul Turner [mailto:paulturner18 () hotmail com]
Gesendet: Freitag, 14. Juli 2006 16:48
An: security-basics () securityfocus com

Betreff: Re: Legendary Hacker Kevin Mitnick on malware and socialengineering




The paper is well written as you would expect from Kevin Mitnick I have read
all of his books and enjoy them.

We are actually evaluating appsense at the moment but with their application
lockdown software which allows me to delete menu items and buttons. This is
a technical example flash video one of their reps sent to me, it's quite
good.

www.appsense.com/lockdown

I have a few companies to test against the malware program but none that do
lockdown, does anyone know of any that do a similar thing to the video?

Paul

---

Dear Group,

Legendary hacker and author Kevin Mitnick has produced a whitepaper in
which he details several scenarios in which social engineering exposed
significant vulnerabilities that lead to corporate attacks.

People who have read Kevin's books and who like his style of writing will
also enjoy the paper.  What I find most valuable about this paper is that
Mitnick remains neutral in his approach when he outlines his "Best
Practices" approach to protection.  He does a thorough analysis of various
techniques and methodologies for mitigating risk and locking down
endpoints, while allowing users enough flexibility to perform their jobs.

People can download the whitepaper in PDF format from
www.appsense.com/mitnick

It's a good read, I would recommend it for anyone security inclined even
if you just download it and save it for a rainy day :o)

I hope this is of use or enjoyment to someone.

Best Regards,
Jon.


_________________________________________________________________
FREE pop-up blocking with the new MSN Toolbar - get it now!
http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/


---------------------------------------------------------------------------
This list is sponsored by: SensePost

Hacking, like any art, will take years of dedicated study and
practice to master. We can't teach you to hack. But we can teach you
what we've learned so far. Our courses are honest, real, technical
and practical. SensePost willl be at Black Hat Vegas in July. To see
what we're about, visit us at:

http://www.sensepost.com/training.html
---------------------------------------------------------------------------




---------------------------------------------------------------------------
This list is sponsored by: SensePost

Hacking, like any art, will take years of dedicated study and
practice to master. We can't teach you to hack. But we can teach you
what we've learned so far. Our courses are honest, real, technical
and practical. SensePost willl be at Black Hat Vegas in July. To see
what we're about, visit us at:

http://www.sensepost.com/training.html
---------------------------------------------------------------------------


---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE

The NSA has designated Norwich University a center of Academic Excellencein Information Security. Our program offers unparalleled Infosec managementeducation and the case study affords you unmatched consulting experience.Using interactive e-Learning technology, you can earn this esteemed degree,without disrupting your career or home life.


http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Current thread:

AW: Legendary Hacker Kevin Mitnick on malware and social engineering Christian . Assfalg (Jul 17)
- Re: AW: Legendary Hacker Kevin Mitnick on malware and social engineering Anthony Irwin (Jul 18)
- RE: AW: Legendary Hacker Kevin Mitnick on malware and social engineering Leonard Mano (Jul 18)
- Re: Legendary Hacker Kevin Mitnick on malware and social engineering Jon Barrett (Jul 19)