Fraud & Risk
Hacking the Human Mind - Social Engineering
PCI compliance is no guarantee against data breaches -- an increasing number of breaches are resulting from stolen credentials, such as weak passwords. A typical attack cycle is detailed, along with different types of fraud in this space, including phishing, spear phishing, business email compromises, vishing, smishing, and malvertising. Finally, strategies businesses can use to mitigate risk from these kinds of compromises are discussed.