Social Engineering vs. Reverse Social Engineering

p0etp0et Member Posts: 48 ■■□□□□□□□□
What's the difference between Social Engineering vs. Reverse Social Engineering? There's 1 or 2 questions where Reverse is the answer on Transcender.

Thanks.

Comments

  • Megadeth4168Megadeth4168 Member Posts: 2,157
    Reverse Social Engineering
    Users ask attacker for help and information (Thinking the Attacker is a person in a position to help)

    An example could be that the attacker takes information down from the user while appearing to fix the problem for the user

    Social Engineering is where the attacker is acting like the user and pretending that they lost their password ect...

    So the difference would be that in one role (the Reverse) The attacker would act like the help support or technician while in the other role the attacker would act as the user who needs help.

    That is my basic understanding of the 2... Hope that is helpful
  • agustinchernitskyagustinchernitsky Member Posts: 299
    IMO reverse S.E. and S.E. are the same. reverse S.E. is still S.E.... the victim is manipulated by the atacker, making him feel he needs him.

    I recommend, if you are interested the book from Kevin Mitnik. Its really interesting!!
  • WebmasterWebmaster Admin Posts: 10,292 Admin
    reverse S.E. is still S.E....
    True, reverse social engineering is a form of social engineering. But that doesn't mean they are logically the same. Simply put, all reverse social engineering is social engineering, but all social engineering is not reverse social engineering.
  • agustinchernitskyagustinchernitsky Member Posts: 299
    "Webmaster wrote:
    Simply put, all reverse social engineering is social engineering, but all social engineering is not reverse social engineering.

    I couldn't agree more...
  • WebmasterWebmaster Admin Posts: 10,292 Admin
    I forgot to add:
    I recommend, if you are interested the book from Kevin Mitnik. Its really interesting!!
    Good recommendation, interesting indeed and certainly beats 'merely' reading a chapter about social engineering in a Security+ guide.
  • supertechCETmasupertechCETma Member Posts: 377
    According to Methods of Hacking: Social Engineering, a paper by Rick Nelson, the three parts of reverse social engineering attacks are sabotage, advertising, and assisting. The hacker sabotages a network, causing a problem arise. That hacker then advertises that he is the appropriate contact to fix the problem, and then, when he comes to fix the network problem, he requests certain bits of information from the employees and gets what he really came for. They never know it was a hacker, because their network problem goes away and everyone is happy.
    Electronic Technicians Association-International www.eta-i.org
    The Fiber Optic Association www.thefoa.org
    Home Acoustics Alliance® http://www.homeacoustics.net/
    Imaging Science Foundation http://www.imagingscience.com/
  • agustinchernitskyagustinchernitsky Member Posts: 299
    Webmaster wrote:
    Good recommendation, interesting indeed and certainly beats 'merely' reading a chapter about social engineering in a Security+ guide.

    Believe me, its a lot of fun too...
  • mrhaun03mrhaun03 Member Posts: 359
    Reverse SE is putting yourself in a position where the victim thinks you are helping him/her and willingly provides you with everything. SE is pretty much blatantly asking for passwords, usernames, etc
    Working on Linux+
  • p0etp0et Member Posts: 48 ■■□□□□□□□□
    Thanks guys.. i'm all good with Reverse SE vs SE. Just trying to get up the nerves to go write this thing now.
Sign In or Register to comment.