Two steps that you can take to avoid targeted attacks by social engineers are:
- Limit the information you share on social media sites. Information shared on these sites can be used to target you, your place of employment, or people that you know. For example, a targeted phishing attempt, a/k/a spear phishing, may be designed to target you or someone that you know, as a result of information gleaned from social media.
- Use your phishing detection skills and knowledge to examine e-mail received and avoid phishing scams. To view a NYU Knowledge Base resource on detecting phishing messages, please click here.
Social engineering schemes may occur via:
- Phishing attempts
- Telephone calls (a/k/a “vishing”)
- In-person visits
For more information on targeted attacks, please view the following SANS video of the month which will be available for viewing throughout the month of October.
For more information on social engineering and how you can protect yourself, please click here. Please report suspected social engineering scams to security@nyu.edu.