The Gentleman Thief - The Art of Social Engineering
Middle East Information Security conference in Cairo is an annual event targeting the Information Security Community of the Middle East and North Africa (MENA Region). IT Professionals and security practitioners from throughout the region were invited to attend. The conference purpose was to gather, in one place, everyone interested in helping to improve and enrich the Information Security field in the MENA region. The goal is to raise the level of information security field in the MENA region, hoping that one day we live in a safe cyber world.
Our very own resident Penetration Testing Consultant - Yehia Mamdouh was one of the invited speakers at the ME InfoSec Conference in Cairo, presenting himself as the "The Gentleman Thief" in the cyber world. There was little surprise on the high level of interest in his topic at the conference given the exponential rise in cyber attacks using the social engineering and human hacking elements.
Social engineering, in the context of information security, refers to psychological manipulation of people into performing actions or divulging confidential information. A type of confidence trick for the purpose of information gathering, fraud, or system access, it differs from a traditional "con" in that it is often one of many steps in a more complex fraud scheme.
The term "social engineering" as an act of psychological manipulation is also associated with the social sciences, but its usage has caught on among computer and information security professionals.