Assigment-Week10-BD308CyberSecurity-SultanChairul-25814847

Nama : Sultan Chairul

Nim : 2581484737

1. Define “social engineering” and provide three examples (e.g., pretexting, baiting).

Answer :
Social engineering is a technique used by attackers to manipulate people into revealing sensitive information, granting access to systems, or performing actions that compromise security. Instead of attacking technology directly, social engineering exploits human trust and behavior.

Examples of social engineering include:

  • Pretexting – An attacker pretends to be a trusted person, such as an IT technician or bank employee, to obtain confidential information.
  • Baiting – An attacker offers something attractive, such as a free USB drive or software download, to trick victims into exposing data or installing malware.
  • Phishing – An attacker sends fake emails, messages, or websites that appear legitimate to steal passwords, financial information, or personal data.

2. What are the key components of a good security awareness training program for employees?

Answer :
A good security awareness training program should educate employees about common cyber threats and safe security practices. Key components include phishing awareness, password security, safe internet and email usage, data protection, and incident reporting procedures. The program should also include regular updates, interactive exercises, and simulated attacks to help employees recognize and respond to real-world threats. Continuous training reduces human error and strengthens overall organizational security.

3. How can a simple “clean desk” policy contribute to the overall security of a business?

Answer :
A clean desk policy helps protect sensitive information by ensuring that documents, devices, and confidential materials are not left unattended or visible in the workplace. Employees are encouraged to lock their computers, store documents securely, and clear their desks when leaving. This reduces the risk of unauthorized access, information theft, and accidental data exposure, helping improve the overall security of the business.

Keterangan : 100 %

Bukti : Sudah mengerjakan tugas dengan baik dan benar.

Previous Post Previous Post
Newer Post Newer Post

Leave a comment