The Art of Deception and over one million other books are available for Amazon Kindle . Learn more


or
Sign in to turn on 1-Click ordering.
or
Amazon Prime free trial required. Sign up when you check out. Learn more
More Buying Choices
Have one to sell? Sell yours here
or
Get a £0.25 Amazon.co.uk Gift Card
The Art of Deception: Controlling the Human Element of Security
 
 

See 1 customer image
Share your own customer images
Search inside this book
Start reading The Art of Deception on your Kindle in under a minute.

Don't have a Kindle? Get your Kindle here, or download a FREE Kindle Reading App.

The Art of Deception: Controlling the Human Element of Security [Paperback]

Steve Wozniak (Foreword), William L. Simon (Author), Kevin D. Mitnick (Author)
3.5 out of 5 stars  See all reviews (26 customer reviews)
RRP: £9.99
Price: £6.99 & this item Delivered FREE in the UK with Super Saver Delivery. See details and conditions
You Save: £3.00 (30%)
o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o
In stock.
Dispatched from and sold by Amazon.co.uk. Gift-wrap available.
Want guaranteed delivery by Monday, May 28? Choose Express delivery at checkout. See Details

Formats

 Amazon Price New from Used from
Kindle Edition £6.64   -- --
Hardcover £17.54   -- --
Paperback £6.99   -- --
Audio Download, Unabridged £13.94 or Free with Audible.co.uk 30-day free trial
Trade In this Item for up to £0.25
Trade in The Art of Deception: Controlling the Human Element of Security for an Amazon.co.uk gift card of up to £0.25, which you can then spend on millions of items across the site. Trade-in values may vary (terms apply). Find more products eligible for trade-in.

Frequently Bought Together

The Art of Deception: Controlling the Human Element of Security + Social Engineering: The Art of Human Hacking + Ghost In The Wires: My Adventures as the World's Most Wanted Hacker
Price For All Three: £35.57

Show availability and delivery details

Buy the selected items together

Product details

More About the Authors

Discover books, learn about writers, and more.
William L. Simon
William L. Simon
Kevin D. Mitnick
Kevin D. Mitnick

Product Description

Amazon.co.uk Review

The Art of Deception is about gaining someone's trust by lying to them and then abusing that trust for fun and profit. Hackers use the euphemism "social engineering" and hacker-guru Kevin Mitnick examines many example scenarios.

After Mitnick's first dozen examples anyone responsible for organisational security is going to lose the will to live. It's been said before but people and security are antithetical. Organisations exist to provide a good or service and want helpful friendly employees to promote the good or service. People are social animals who want to be liked. Controlling the human aspects of security means denying someone something. This circle can't be squared.

Considering Mitnick's reputation as a hacker guru the least and last point of attack for hackers using social engineering are computers. Most of the scenarios in The Art of Deception work just as well against computer-free organisations and were probably known to the Pheonicians. Technology simply makes it all easier. Phones are faster than letters after all and large organisations mean dealing with lots of strangers.

Much of Mitnick's security advice sounds practical until you think about implementation, when you realise more effective security means reducing organisational efficiency: an impossible trade in competitive business. And anyway, who wants to work in an organisation where the rule is "Trust no one"? Mitnick shows how easily security is breached by trust, but without trust people can't live and work together. In the real world effective organisations have to acknowledge total security is a chimera--and carry more insurance. --Steve Patient --This text refers to the Hardcover edition.

Computer Weekly, 23 January 2003

"..should be required reading for every IT director and chief information officer.." --This text refers to the Hardcover edition.
See all Product Description
Inside This Book (Learn More)
First Sentence
a company may have purchased the best security technologies that money can buy, trained their people so well that they lock up all their secrets before going home at night, and hired building guards from the best security firm in the business. Read the first page
Explore More
Concordance
Browse Sample Pages
Front Cover | Copyright | Table of Contents | Excerpt | Index | Back Cover
Search inside this book:

Tags Customers Associate with This Product

 (What's this?)
Click on a tag to find related items, discussions, and people.
 
(1)
(1)
(1)
(1)
(1)
(1)
Agree with these tags?
See all 11 tags...

Your tags: Add your first tag
 
See most popular tags

Customer Reviews

Most Helpful Customer Reviews
16 of 16 people found the following review helpful
Format:Paperback
Story by story, Mitnick (once described as the FBI's "most wanted hacker") reveals some tricks-of-the-trade. Fair enough. But if you are expecting technical details about defeating system login controls or busting through firewalls, you will be disappointed. Mitnick's favorite hacking tools are the telephone, plus the experience and nerve to deceive unsuspecting members of the organizations he is attacking into defeating the controls from the inside.

Reading this book, you will quickly come to realize that Mitnick's toolbox is every bit as effective as the hacking and cracking technology ... and as you read further, it may dawn on you just how hard it is to counter the social engineering attack. After all, much as you might like to, you can't simply plug in a new program to security-patch your employees!

Mitnick's suggested countermeasures in section 4 of the book are fairly straightforward (a wide-ranging security awareness program and a decent set of policies) but implementing them effectively and persuading employees to pay attention requires those very social engineering skills described in sections 1-3.

I'm left with the distinct impression that Mitnick is teasing us by describing a few simple deceptions whilst keeping the best to himself. But think for a moment about the success of the "419" advance fee scams. Otherwise sane, intelligent individuals are evidently being drawn into parting with their hard-earned cash on the basis of these crude deceptions. The implications are truly frightening.

My bottom line: take this book on holiday with you. Once you start, you will not want to put it down and you can reflect on it at the bar. Free drinks anyone?

Comment | 
Was this review helpful to you?
7 of 7 people found the following review helpful
Format:Hardcover
Kevin Mitnick begins The Art of Deception by telling the reader about securities weakest link - people, and throughout the book he continues to labour this point, constantly reminding us that no matter how well computers are protected against potential hackers, it will 99% of the time be the employees who give away passwords, codes and other secret, and important information to people who will quite simply just have to ask for it.

The book is very easy to read, it isn't full of computer jargon, which I personally thought it would be. The stories are told from the point of view of the hacker, an introduction describing each situation is given first, phone conversations are written down, the con is analyzed, and then Mitnick tells us how to avoid situations like that happening by 'preventing the con'.

It is very easy to see when reading this book how the people (note, not the technology) get tricked or persuaded into giving away such vital information, the key is social engineering. These people believe that the hacker is someone within the organisation who should have access to this information anyway so no harm will come from giving it away, but how can they tell simply from one phone call?

All in all, this book is an education in information security, it tells us that having firewalls, anti-virus software and other security equipment installed will help to protect your information system, but this alone will not be enough, the updates are a very important element in securing your information, and without these, your system will be even more vulnerable from attack by outsiders. Employees, without being educated in information security, can let you down, simply by being too trusting and not knowing who they are giving the information away to!

Comment | 
Was this review helpful to you?
4 of 4 people found the following review helpful
Well worth reading 24 Jun 2004
Format:Hardcover
An excellent read giving a great insight into how people can be easily duped. Not a handbook to begin hacking but an overview of techniques so that anybody who is worried about Information Security can be aware of the methods employed by Hackers and put in place procedures to prevent unauthorised access to data. Written by the "definitive" hacker who has now turned his energy and expertise to the benefit of all. Well written and easy to read even if you're not a techi'. Not full of jargon or assumptions. BUY IT NOW
Comment | 
Was this review helpful to you?
Most Recent Customer Reviews
The Grifters' Handbook
Kevin Mitnick, it seems, has a tenuous grasp of morality: he argues (p.xii & p.83) that it's OK to steal someone else's property if you're motivated by curiosity and your... Read more
Published 1 month ago by John Dexter
awful quality
Content must be awesome but quality of printing is below poor; this is seriously a badly printed and designed book; event the paper is below average. Read more
Published 3 months ago by jerome
Powerful information - But more so for the attacker
Some stories may be fictional and you may question how the character in question would handle the same situation if such and such happened. Read more
Published 6 months ago by WelshMikey
Repetitive
( NB The author is Kevin Mitnick, despite Amazon's "all my reviews" showing it to be Steve Wozniak, Steve Jobs' partner in founding Apple. Woz merely wrote the foreword. Read more
Published 6 months ago by Kerry Marshall
fun read but outdated
The stories told by Mitnick in this book are very entertaining to read, but I do think that businesses today (certainly enterprises) have done a lot of work in countering practices... Read more
Published 10 months ago by gamblor
Just what I wanted
I was pleased with the book, at one pence plus postage, it's well worth it!

Mitnic doesn't go into much detail of the technical side of gaining access to systems, but he... Read more
Published 13 months ago by Todd Davies
Very Outdated
Released in 2003, I can only imagine it was already hugely out of date. This book has not aged well, the examples remind me that it is not 1997 and peoples attitudes to sensitive... Read more
Published 15 months ago by M. SMITH
Outdated, unsurprising
Like many other reviewers here I disliked the "tone" of the book. Granted, it is clearly written for the American market, but because a lot of the "examples" are fictional, it's... Read more
Published 16 months ago by Alexander Haynes
Like a novel
Very interesting book. It is divided by story and each one does explain a type of social con.
I finished this book very quickly since I couldn't stop reading. Read more
Published 18 months ago by E. burglin
Excellent
Useful information for both sides of the fence!
When used with common sense and not as a script the information in this book works wonders for getting the information you... Read more
Published 22 months ago by Mr. B. M. Fisher
Search Customer Reviews
Only search this product's reviews

Customer Discussions

This product's forum
Discussion Replies Latest Post
No discussions yet

Ask questions, Share opinions, Gain insight
Start a new discussion
Topic:
First post:
Prompts for sign-in
 

Search Customer Discussions
Search all Amazon discussions
   

Listmania!

Create a Listmania! list

Look for similar items by category

Look for similar items by subject

























i.e., each product must be in subject 1 AND subject 2 AND ...

Feedback


Amazon.co.uk Privacy Statement Amazon.co.uk Delivery Information Amazon.co.uk Returns & Exchanges