Educating users and implementing tools to prevent email and social engineering attacks.

• Phishing: is an attack in which attackers try to learn personal information, including cc and financial data by
implementing a fake website that very closely resembles a legitimate website.
• Pharming: pollutes the contents of a computers DNS cache so that requests to a legitimate site are routed to an
alternative site.
• Shoulder Surfing: When an attacker watches when a user enters login or other confidential data.
• Identity Theft: When someone obtains personal information, including driver’s license number, bank account number, and SSN, and uses that information to assume an identify of the individual whose information was stolen.
• Dumpster Diving: When attackers examine garbage contents to obtain confidential information.
• DoD/DDoS: A DoS attack occurs when attackers flood a device with enough requests to degrade the performance of a targeted service.
• Buffer Overflow: Buffers are portions of system memory that are used to store information. A buffer overflow occurs when the amount of data that is submitted to the application is larger that the buffer can handle.
• Mobile Code: Any software that is transmitted across a network to be executed on a local system. Malicious mobile code is often used to bypass access control systems.