dumpster diving
Home > Security Definitions - Dumpster diving
SearchSecurity.com Definitions (Powered by WhatIs.com)
EMAIL THIS
LOOK UP TECH TERMS Powered by: WhatIs.com
Search listings for thousands of IT terms:
Browse tech terms alphabetically:
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #

dumpster diving

Show me everything on Security Awareness Training and Internal Threats

DEFINITION - Dumpster diving is looking for treasure in someone else's trash. (A dumpster is a large trash container.) In the world of information technology, dumpster diving is a technique used to retrieve information that could be used to carry out an attack on a computer network. Dumpster diving isn't limited to searching through the trash for obvious treasures like access codes or passwords written down on sticky notes. Seemingly innocent information like a phone list, calendar, or organizational chart can be used to assist an attacker using social engineering techniques to gain access to the network. To prevent dumpster divers from learning anything valuable from your trash, experts recommend that your company establish a disposal policy where all paper, including print-outs, is shredded in a cross-cut shredder before being recycled, all storage media is erased, and all staff is educated about the danger of untracked trash.

Learn more about Security Awareness Training and Internal Threats
Securing Web apps against authenticated users: Improve Web site security by securing Web applications from authenticated users and avoiding client-side authentication.
Thwarting insider threats: Five simple measures you can take to protect your organization from insider attacks.
Information security book excerpts and reviews: Visit the Information Security Bookshelf for book reviews and free chapter downloads.
Schneier, Ranum debate social networking risks: Should companies be concerned about employees' social networking? Bruce Schenier and Marcus Ranum take opposite sides on this issue.
Quiz: Anatomy of an attack: Take this five-question quiz and test your knowledge of social-engineering and data-mining attacks.
Security Metrics: Replacing Fear, Uncertainty, and Doubt: In this chapter excerpt from "Security Metrics: Replacing Fear, Uncertainty and Doubt," author Andrew Jaquith reveals ways to present security data in a clean and elegant manner.
Threats to physical security: The sixth tip in our series, "How to assess and mitigate information security threats".

LAST UPDATED: 14 Feb 2002

Do you have something to add to this definition? Let us know.
Send your comments to techterms@whatis.com

More resources from around the web:
- This Internet Security Systems Web site lists what dumpster divers look for.
- SearchSecurity provides links to more information about dumpster diving.





FILE EXTENSION AND FILE FORMAT LIST
File Extension and File Format List:
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #


RELATED CONTENT
Creating a HIPAA employee training program
Want to get your employees on board the HIPPA/HITECH compliance train? Learn how to create a HIPAA employee awareness training program.
Successful rogue antivirus hinges on social engineering
Attackers are getting better at social engineering because Internet users are ignoring privacy.
External attacks start with unintentional mistakes, survey finds
More control over user rights and access privileges could help mitigate the risk of employee errors that lead to costly data breaches.

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
Honeynet Project  (SearchSecurity.com)
insider threat  (SearchSecurity.com)
An insider threat is a malicious hacker (also called a cracker or a black hat) who is an employee or officer of a business, institution, or agency....




Get More dumpster diving Answers
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts