Latest Social Engineering Posts

Perform Background Checks


Perform Background Checks Prior To Employing Anyone.

As opposed to the majority of articles published on this blog, whereby they relate to "you as the social engineer" and what's required to effectively SE any entity on every scale, this post Is from a defense standpoint, namely how to protect your business from SE'ers who purposely seek employment to gather confidential Information from your organization's Internal departments. For example, a commonality with many social engineers Is to look for vacancies where they have access to just about every section of your company, such as a "janitor/cleaner". Once their role Is fulfilled, they'll gather details from waste baskets, printing & photo copying machines, sticky notes (post-It notes) from office desks, dumpsters and so forth- all done whilst they're Innocently (and seemingly) doing their job. 

No doubt you, "as the employer", will first sift through ex-amount of applicants (namely their CV/Resumes) prior to selecting the most suitable person for the job, but how many times have you actually cross-checked "every possible detail" of a potential employee?  I'd say It's safe to assume that your answer Is zero. Sure, you have their Resume at your disposal and after reading Its entire contents, you may be well and truly satisfied, but how do you know for sure that what you've just read Is In fact true and correct? You don't, and never will when taken at face value. Let me tell you that elite social engineers, are very good at manipulating and convincing anyone Into believing their side of the story! As such, "background checks" also known as "pre-employment screening", Is of the utmost Importance during the recruitment process.

A background check Is only as good as "the nature of the details that you're looking to obtain", hence It's vital to expand your search In a very effective, methodical and calculated fashion. Before you begin, do note that there's a fine line between what's considered a background check, and "Invasion of privacy", so check with the applicable law prior to proceeding. To help you along the way, here's a list of my recommendations. Obviously, there's a lot more Involved but I cannot possibly cater for the lot, so be sure to seek assistance from professional services.

  • Drug & Alcohol Screening.
  • Previous Employment History.
  • Credit Rating Check.
  • Criminal Records.
  • The Integrity Of Friends & Family.
  • Educational History.
  • Marital Status.
  • Medical Conditions.
  • Driving Offenses.