Security Through Education

A free learning resource from Social-Engineer, Inc

  • Newsletter
  • Contact Us
  • Social-Engineer, LLC
  • The Human Hacking Conference
  • The Human Hacking Book
Home
  • Home
  • Blog
  • Podcast
  • Framework
  • More
    • Social Engineer Village (SEVillage) at DEF CON
    • SEVillage at DerbyCon
    • The Human Hacking Conference
    • What is Social Engineering?
    • Newsletter
  • Home
  • About
  • Blog
  • Podcast
  • Framework
  • EVENTS
    • Social Engineer Village (SEVillage) at DEF CON
    • SEVillage at DerbyCon
    • The Human Hacking Conference
  • Resources
  • YouTube
  • Linked In
  • Twitter
  • Facebook

The Social Engineering Framework

The Social Engineering Framework is a searchable information resource for people wishing to learn more about the psychological, physical and historical aspects of social engineering. Please use the index below to find a topic that interests you.

  • General Discussion
  • Information Gathering
  • Psychological Principles
  • Influencing Others
  • Attack Vectors
  • Social Engineering Tools

Framework Sections

Section Articles

General Discussion

Select a topic from the index below

  • Social Engineering Code of Ethics
  • Social Engineering Defined
  • Categories of Social Engineers
    • Hackers
    • Penetration Testers
    • Spies and Espionage
    • Identity Thieves
    • Disgruntled Employees
    • Information Brokers
    • Scam Artists
    • Executive Recruiters
    • Sales People
    • Governments
    • Everyday People
  • Why Attackers Might Use Social Engineering
  • Typical Goals
  • Common Attacks
    • Customer Service
    • Delivery Person
    • Phone
    • Tech Support
  • Real World Examples
    • Con Man
    • Crime Victim
    • Phishing
    • Politicians

Politicians

Politicians are an interesting class of people when discussed in the context of social engineering. The public nature of their career not only requires them to use social engineering on a daily basis but it also opens them up to becoming targets of social engineering as well.

How Politicians Use Social Engineering

Many of the tasks politicians perform naturally lend themselves to social engineering. It would seem that, in the United States at least, a person that is an expert in social engineering techniques would have a better opportunity at becoming a successful politician than someone who is not. In fact, during a politicians career, he/she will implement many of the basic social engineering principles.

The principles of reciprocation, obligations, concessions, authority, consensus, commitment and consistency and liking are the very essence of what a politician must strive for in order to be elected in the first place. This is what gets most politicians their jobs at first, and what sometimes leads to their demise as well.


How Social Engineers’ Use Politicians

Just like any other celebrity, the life of a politician is open to the public. This vast amount of public knowledge makes them targets for a malicious social engineer. The potential to harm a politician’s public image is enough for them to be very wary of who they trust.

Mike Pence

politicians

During the 2016 United States Presidential Elections, Mike Pence, was the victim of a malicious social engineering attack. As reported in the IndyStar, June 1, 2016, a scammer hacked into Mr. Pence’s personal email account.  The scammer, now posing as the Pences, said they were victims of an attack.  Although not hurt, the email said that attackers stole their money, bank cards and mobile phones. Impostor scams, such as this one, were the third most-common complaint reported last year to the Federal Trade Commission.

The DNC

As reported by SecureWorks in March 2016, CTU researchers identified a phishing  campaign using Bitly accounts to shorten malicious URLs. The targets included email accounts linked to the November 2016 United States presidential election. Specific targets included staff working for or associated with Hillary Clinton’s presidential campaign and the Democratic National Committee (DNC). The shortened links in the phishing emails redirected victims to a URL that spoofed a legitimate Google domain. High profile victims of this phishing campaign were John Podesta and Colin Powell.

John Podesta

politicians

As reported on Motherboard, on March 19, 2016, Hillary Clinton’s campaign chairman John Podesta, received an alarming email that appeared to come from Google informing him that someone had used his password to try to access his Google account. The phishing email included a link to a spoofed Google webpage informing him to change his password because his current password had been stolen. Mr. Podesta clicked the link and changed his password, or so he thought. Instead, he gave his Google password to Fancy Bear and the rest as they say is history.

Back To Top Copyright © 2021 Social Engineer, Inc • All Rights Reserved • Site design by Emily White Designs