Product Description
The world's most infamous hacker offers an insider's view of the low-tech threats to high-tech security
Kevin Mitnick's exploits as a cyber-desperado and fugitive form one of the most exhaustive FBI manhunts in history and have spawned dozens of articles, books, films, and documentaries. Since his release from federal prison, in 1998, Mitnick has turned his life around and established himself as one of the most sought-after computer security experts worldwide. Now, in The Art of Deception, the world's most notorious hacker gives new meaning to the old adage, "It takes a thief to catch a thief."
Focusing on the human factors involved with information security, Mitnick explains why all the firewalls and encryption protocols in the world will never be enough to stop a savvy grifter intent on rifling a corporate database or an irate employee determined to crash a system. With the help of many fascinating true stories of successful attacks on business and government, he illustrates just how susceptible even the most locked-down information systems are to a slick con artist impersonating an IRS agent. Narrating from the points of view of both the attacker and the victims, he explains why each attack was so successful and how it could have been prevented in an engaging and highly readable style reminiscent of a true-crime novel. And, perhaps most importantly, Mitnick offers advice for preventing these types of social engineering hacks through security protocols, training programs, and manuals that address the human element of security.
User Reviews
Page 1 of 27
Next
--
Summary: DECEPTION
Review: WHILE I FOUND THE BOOK WELL WRITTEN AND INFORMATIVE, I FELT THE SUBJECT MATTER WAS NOT AS FULLY
INFORMATIONAL FOR THE MANAGEMENT CANDIDATE THAT WOULD READ THIS....ESSENTIALLY I FOUND THE EARLY PART
OF THE BOOK TO BE ABOUT DECEPTIVE PRACTICES BEING USED 20 YEARS AGO.....MUCH LIKE WATCHING AN OLD
MISSION IMPOSSIBLE TV SHOW....I WOULD CERTAINLY RECOMMEND THIS FOR ANY NEOPHYTE, BUT I PERSONNALLY
WAS LOOKING FOR MORE "CUTTING EDGE" IDEAS AND PRACTICES...I SUPPOSE THE AUTHOR WOULD(AND DOES) RESPOND THAT WITH EVEN THE BEST SECURITY SYSTEMS, THE HUMAN ELEMENT IS ALWAY THE WEAKEST LINK AND FOR THAT FACT, I SEE THE VALUE IN THIS PRODUCT.
HOWEVER, FOR THE SAVVY MANAGEMENT, LOOK ELSEWHERE FOR THE LATEST TECHNOLOGY(DIGITAL RECOGNITION) AND PERSONALITY
RECOGNITION TESTING...
Date: 2010-07-15
Rating: 3
--
Summary: Everyone should read this book...
Review: Simply amazing! I need to read this book again. Not only that I need my entire audit department to read this and realize how open we are to fraud.
The techniques that the author points out on how easy it is to simply ask for information and get it was just too much to pass up. I've tied it within my own audit department to see just how susceptible we are...I still can't believe how open people were to provide me information not knowing who I was.
Everyone should read this book...there are parts that are a little too much for some people but the scenarios that he walks you through are so thorough that you'd swear you've had that conversation before.
'Social Engineering' made simple...maybe that should be the name of this book. I will have to admit that I'm more paranoid than I have ever been before but I guess that is a good trait to have in an auditor.
Date: 2010-06-04
Rating: 5
--
Summary: One big advertisement brochure for Mitnick's security consulting
Review: Mitnick is indeed a great "social engineer" aka "con artist"... And the only reason I give this book ANY stars is for the credit Mitnick deserves for convincing us to pay for and consume his advertisement. This book is filled with lame and repetitive anecdotes of how some employee got duped into disclosing internal company information, followed by "Mitnick Message" which boils down to: your company needs pen-testing and ALL your employees need security training. And who is better suited to provide the training than the guy that himself wrote the book...? I'm guessing his target audience is clueless management, who he hopes will be scared, impressed and buy his services. And if those of us with a clue that pick-up his book and leave a negative review: WHO CARES? WE ALREADY PAID HIM! :-) So kudos to Mr. Mitnick for being a brilliant salesman! Be warned - you won't find anything here about "CONTROLLING the Human Element of Security", you will only be repeatedly told the obvious: "the Human Element of Security" sucks.
Don't get me wrong, everything Mitnick talks about here is mostly true, but extremely dragged-out, self-serving and does not deserve a book. Had this been a dramatically shorter magazine article, I'd rate it 3.5 stars.
Date: 2010-04-25
Rating: 1
--
Summary: Beest price
Review: I had been looking for this book all over the Internet. This was the best deal I found. Thanks!!!!!
Date: 2010-04-09
Rating: 5
--
Summary: Great for Law Enforcement and Private Investigators
Review: Prior to purchasing this book, I had a basic understanding of what social engineering was and how it was used to infiltrate information systems. However, after reading the book my knowledge went from a 3 to a 10 on a scale of 1-10. Art of Deception explained not only what social engineering was in its most rudimentary form but how the art of persuasion or should I say deception attacks the human nature to help people out. This is a must read for any criminal investigator regardless of what they investigate. It really shows you how easy it is to get information. Some of the tactics would even help out in police interviews and interrogations.
Date: 2010-03-20
Rating: 5
