Brushwood refers to it as the 'liking' fixed action pattern. The social engineer knows this all too well and uses it to gain information, get past a gatekeeper, or even just to get out of trouble.
People generally enjoy the company of those who have a good sense of humor. Depending on how big the stakes are, an experienced criminal may even spend weeks laying the ground work to form a reciprocal relationship with staff that can result in access to sensitive or secure areas. Takeaway: Advise employees to be skeptical of anyone who tries to give them something. "Chances are they will let you by as reciprocation for how you treated them earlier," said Brushwood. Instead, a skilled con artist might give something to a gatekeeping employee early in the day and then come back later, claiming to need access due to a mix up, such as an item left behind after a meeting. If they perceive as a bribe, they react uncomfortably." "If you give a gift and then immediately ask for a favor, the odds are that somebody might perceive it as a bribe. (Read how another social engineer breached building security with a box of cookies in Anatomy of a Hack.) However, Brushwood noted that the time delay between giving the gift and asking for a favor is also important. This tactic, like the confident attitude, would be useful for a social engineer trying to gain illegal entry into a secure facility or office building. "Even if they hate M&Ms, they are so moved by the thoughtfulness of the gesture," he noted. With a few bags of M&Ms in hand, he boards each flight and hands them to flight attendants on his way in and tells him he wanted to give them something for their hard work.
#BRIAN BRUSHWOOD BOOK WORD ROUTINE UPGRADE#
Oh, by the way, would you like to make a donation?' You may be thinking 'I didn't want this flower,' but it's still difficult to turn around and say 'No, go away.'"īrushwood himself uses this tactic during his many cross-country flights when he is hoping for a free upgrade or perhaps a free drink or two. "They give out a flower or a copy of the Bhagavad Gita and say 'This is a gift for you. "When people are given something, such as a favor or a gift, even if they actively dislike the person who did it, they feel the need to reciprocate," said Brushwood, who referred to the Hare Krishnas as one of the more well-known employers of this tactic. Reciprocation is another fixed action pattern, said Brushwood. Visitors (and service providers) should have credentials checked thoroughly - even if they are familiar faces. Takeaway: Advise employees not to become too comfortable with allowing outsiders into the building. You feel a social pressure to give a correct or appropriate response."īrushwood refers to these types of reactions as fixed action patterns and credits the book Influence: The Psychology of Persuasionby Robert Cialdini as a major inspiration for his current work. "When someone asks you a question, it immediately puts you on defense. "The person who asks the questions controls the conversation," he said. They can always tell who is a fan trying to sneak back and catch a glimpse of the star and who is working the event because they seem like they belong there." (See how this tactic played into another scammer's attempt to get into the Super Bowl for a massive prank.)Īnother way to gain the upper hand is to seem in charge through conversation, said Brushwood. "People running concert security often aren't even looking for badges," said Brushwood. "In other words, it's getting people to do what you want by using certain sociological principles." Social engineering just basically means the application of social science to the solution of social problems," he said. "When I use the phrase, I am actually talking about an older version of it. Brushwood said his understanding and use of the term social engineering goes beyond the security industry perception. He first became interested in social engineering years ago as a means to enhance his performance and pull off secret moves successfully. In addition to his passion for teaching people about social engineering cons, Brushwood is also a touring magician who frequently performs on college campuses and has appeared on the Tonight Show.
#BRIAN BRUSHWOOD BOOK WORD ROUTINE SERIES#
Brushwood is the host of the Internet video series Scam School, a show he describes as dedicated to social engineering in the bar and on the street. Social engineering and mind games expert Brian Brushwood has not come by his knowledge in the traditional manner of school or business training.
0 kommentar(er)
