Confidence 2010: Well known vulnerabilities in human brain and behavior – common admin mistakes
Wojciech started his talk by explaining the basic principles of social engineering.
The his talk highlights three bugs in human behaviour
Bug #1: We want to trust the world
We are not open to information that contradicts our own view. Information that contradicts our own believes costs us effort.
Bug #2: People are lazy
The best securit specialist are not crafts, they are artists. They don’t want to work for factories, or not work for factories to the best of their abilities.
Factories will need crafts and artists, only together they can produce secure products
Bug #3: We want to be right
How do we react if somebody says the we are wrong? How long are we willing to fight for our theories before we even could admit they are wrong.
Bug #4: Memory is not a perfect storage
It’s not a bug its a feature 
Memory could not survive without forgetting stuff or do some basic compression.
Studies by E. Loftus in 2002 have shown that: “it is virtually impossible to tell the difference between a real memory and on the is the product of another process”
There are seven sis of the memory:
Bug #5: Mistakes
- Mistakes are common
- Often go unnoticed
- We don’t admin mistakes
- We try to forget our own mistakes
- We don’t learn from them
- We don’t like people who point out our mistakes
Solution #1: Peer review
- Tell our friends /coworkers to watch us
- Listen to the alerts
Why not our boss. He will fire us
Solution #2: Watch Yourself
It may be the hardest things to do. Check how you react.
Solutions #3: Learn and train
Training helps avoid mistakes.