Nicht aus der Schweiz? Besuchen Sie lehmanns.de
Phishing for Answers - Terry R. Merz, Lawrence E. Shaw

Phishing for Answers

Risk identification and mitigation strategies
Buch | Hardcover
324 Seiten
2024
Institution of Engineering and Technology (Verlag)
978-1-83953-667-0 (ISBN)
CHF 199,95 inkl. MwSt
  • Lieferbar (Termin unbekannt)
  • Versandkostenfrei
  • Auch auf Rechnung
  • Artikel merken
This book explores the efficacy of cybersecurity and anti-phishing training and awareness programs, as well as internal messaging and discusses mitigation strategies.
In the context of information security, social engineering is the manipulation of people into performing actions or divulging information for the purpose of gathering, defrauding, or gaining unauthorized system access. While some of the most common forms of social engineering involve telephone or social networks where criminals pose as employees of targeted organizations, phishing accounts for 96% of all successful cyber-attacks. Governments and private organizations have responded through various means such as training employees, executing internal vulnerability assessments, and ad campaigns. Despite all these efforts, phishing continues to provide the primary cyber-attack vector for nefarious entities.


Phishing attacks continue to escalate, with over 300,000 reported incidents in the US alone last year. This book provides an in-depth look at the anatomy of modern phishing threats and how they are evolving with AI technologies. Readers will learn about the latest social engineering tactics used by cybercriminals, including deepfakes for audio/video manipulation and AI-generated spear-phishing campaigns, and discover emerging defensive tools that leverage machine learning to detect anomalies and protect against hyper-personalized phishing attempts. With phishing losses averaging millions per breach, this book equips readers with the knowledge to identify risks and implement robust countermeasures as these attacks become increasingly sophisticated and difficult to spot.


Written by two experts in the field, bringing together their wide experience in academic research, security engineering, incident response and cyber forensics, this book offers valuable insights for researchers, engineers, cybersecurity professionals and organizational leaders working in cyber security, information technology, network and infrastructure security, endpoint protection, data governance, risk and compliance, digital forensics, incident response, operational technology and industrial control systems.

Terry Merz is a senior research scientist at the Pacific Northwest National Laboratory (PNNL), USA and adjunct professor at the State University of New York (SUNY) College of Emergency Management, Homeland Security and Cybersecurity (CEHC). Her work in the field of cybersecurity spans two decades and involves security engineering, testing and incident response. Her current area of research involves the integration of AI in asymmetric cyber operations and analytics. Lawrence Shaw is the former lead of the CSSP Cyber Forensic Team at the Missile Defense Agency (MDA), USA. His cybersecurity experience covers the areas of incident response, forensics, and malware analysis and cybersecurity testing (Blue/Red Team testing). Previous roles include senior incident responder with Microsoft Cyber Defense Operations Center, and several years working on law enforcement related cyber forensics with the Florida Department of Law Enforcement.

Chapter 1: The Phish: An Introduction to the Nature of Phishing
Chapter 2: The User and Context
Chapter 3: The Technology Comfort Experience
Chapter 4: Failing to Regulate the Ascriptions of Threats/Vulnerability Knowledge to Technology
Chapter 5: Assessing the Phishing Risk
Chapter 6: The Organisation is at Risk: Start Where you Are
Chapter 7: Training Efficacy Versus Direct Experience and Introspection
Chapter 8: Addressing Social Media Presence
Chapter 9: Technology Solutions
Chapter 10: Some Extras: Case Studies
Chapter 11: Conclusions

Erscheinungsdatum
Reihe/Serie Security
Verlagsort Stevenage
Sprache englisch
Maße 156 x 234 mm
Themenwelt Informatik Netzwerke Sicherheit / Firewall
Informatik Theorie / Studium Kryptologie
ISBN-10 1-83953-667-5 / 1839536675
ISBN-13 978-1-83953-667-0 / 9781839536670
Zustand Neuware
Haben Sie eine Frage zum Produkt?
Mehr entdecken
aus dem Bereich
Das Lehrbuch für Konzepte, Prinzipien, Mechanismen, Architekturen und …

von Norbert Pohlmann

Buch | Softcover (2022)
Springer Vieweg (Verlag)
CHF 48,95
Management der Informationssicherheit und Vorbereitung auf die …

von Michael Brenner; Nils gentschen Felde; Wolfgang Hommel

Buch (2024)
Carl Hanser (Verlag)
CHF 97,95

von Chaos Computer Club

Buch | Softcover (2024)
KATAPULT Verlag
CHF 39,20