Slashdot Mirror

← Back to Stories (view on slashdot.org)

Impressing Security Upon End-Users Visually?

Posted by Soulskill on from the shake-your-fist-and-glare dept.

get quad writes "I continually have to remind our end-users to be vigilant about the usual web security hazards, such as not clicking links in the occasional spam email that passes through our filters, avoiding suspicious websites, why some websites aren't entirely safe or appropriate for the work environment (Facebook apps, MySpace, remote access apps, proxies, etc), and the myriad other things an end-user can do to get into trouble. What I'm hoping to find are video or flash examples (mind you, in layman's terms) of what Web-based exploits/zero-day threats are capable of, how they can happen, and the harm they can ultimately cause — rather than posting links to technical docs the users will never bother to read. Getting the point across in a purely visual and less technical manner seems much more effective. Does anyone have any suggestions or experience with this type of training?"

6 of 157 comments (clear)

  1. www.IdentityTheft.info video by Cyko_01 · · Score: 4, Informative

    here is a great video that shows how to detect a phishing scam using examples http://www.youtube.com/watch?v=bzfPUmQcfDs

  2. Backdoor.Ghostnet by adnd74 · · Score: 3, Informative

    Symantec Security Response has an excellent video about Backdoor.Ghostnet on their youtube channel.

    I think the message here is that if you don't practice safe computing, the tools exist that empower just about anyone to pwn you

  3. Re:Dont you mean "oppresing"... by 1s44c · · Score: 3, Informative

    I did find this:

    http://arstechnica.com/security/news/2008/09/study-confirms-users-are-idiots.ars

    I'm not sure if it's the study I was thinking of though.

  4. Phishing article on SciAm by Unequivocal · · Score: 3, Informative

    http://www.scientificamerican.com/article.cfm?id=how-to-foil-phishing-scams

    This is a good start and I'd recommend investigating the author's other published material.

  5. Re:Change their perspective to be self gratifying by buchner.johannes · · Score: 2, Informative

    https://bugzilla.mozilla.org/show_bug.cgi?id=267888
    I guess patches are welcome...

    --
    NB: The message above might reflect my opinion right now, but not necessarily tomorrow or next year.
  6. Look for vids of the WMF bug by BLKMGK · · Score: 2, Informative

    Sunbelt Security had a video posted of what occurs when you got hit by the old WMF bug awhile back. You could see software being installed, icons appearing on the desktop, and the desktop background being modified as this thing went to town and began popping fake AV warnings. It was one of THE most extreme and informative examples I can think of for this.

    Here's a copy of it I found on Youtube. A search for "WMF exploit" on YouTube will get you plenty of hits :-)

    http://www.youtube.com/watch?v=WTBcDJ9kJH4

    IMO, I think this answers your question!

    --
    Build it, Drive it, Improve it! Hybridz.org