A Literature Survey and Analysis on Social Engineering Defense Mechanisms and Infosec Policies

Alharthi, Dalal; Regan, Amelia

doi:10.5121/ijnsa.2021.13204

Cited by 3 publications

(1 citation statement)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Under such conditions, as employees adapt to unfamiliar work environments away from the office, new coronavirus-themed phishing scams are leveraging fear, hooking vulnerable people, and taking advantage of workplace disruption. Employers must ensure that their staff are aware of the dangers of social engineering and how to prevent them from being a victim, and to emphasize the need to adopt measures and tools, including policies and training programs, to mitigate the risk of social engineering attacks [20] [21].…”

Section: Social Engineeringmentioning

confidence: 99%

The Role of Social Engineering in Cybersecurity and Its Impact

Almutairi¹,

Alghamdi²

2022

JIS

View full text Add to dashboard Cite

An attacker has several options for breaking through an organization's information security protections. Human factors are determined to be the source of some of the worst cyber-attacks every day in every business. The human method, often known as "social engineering", is the hardest to cope with. This paper examines many types of social engineering. The aim of this study was to ascertain the level of awareness of social engineering, provide appropriate solutions to problems to reduce those engineering risks, and avoid obstacles that could prevent increasing awareness of the dangers of social engineering-Shaqra University (Kingdom of Saudi Arabia). A questionnaire was developed and surveyed 508 employees working at different organizations. The overall Cronbach's alpha was 0.756, which very good value, the correlation coefficient between each of the items is statistically significant at 0.01 level. The study showed that 63.4% of the surveyed sample had no idea about social engineering. 67.3% of the total samples had no idea about social engineering threats. 42.1% have a weak knowledge of social engineering and only 7.5% of the sample had a good knowledge of social engineering. 64.7% of the male did not know what social engineering is. 68.0% of the administrators did not know what social engineering is. Employees who did not take courses showed statistically significant differences.

show abstract

Section: Social Engineeringmentioning

confidence: 99%

The Role of Social Engineering in Cybersecurity and Its Impact

Almutairi¹,

Alghamdi²

2022

JIS

View full text Add to dashboard Cite

show abstract

Deep Neural Networks for Detecting Insider Threats and Social Engineering Attacks

Zewdie,

Girma,

Sitote

2024

2024 International Conference on Electrical, Computer and Energy Technologies (ICECET

View full text Add to dashboard Cite

An Effective Blockchain-Based Defense Model for Organizations against Vishing Attacks

Fakieh

Akremi²

2022

Applied Sciences

View full text Add to dashboard Cite

Social engineering (SE) attacks (also called social hacking) refer to various methods used by cybercriminals to exploit the weak nature of human beings rather than the logical and physical security measures used by organizations. This research paper studies the various methods of SE used by criminals to exploit the psychological vulnerabilities of human beings. On this basis, the paper proposes a new defense categorization of SE attacks based on two security principles: dual control (i.e., more than one entity to complete the task) and split knowledge (i.e., dual controlling of the knowledge to complete the task). We describe how those measures could stop SE attacks and avoid human weaknesses. Then, we propose an original new SE defense model that implements the security principles using blockchain technology to both dual control the transactions and record them safely for organizations. The proposed model’s first aim is to avoid the dependence on the cognitive or psychological status of the victim and enable more verification steps to be taken in a fast and flexible manner. The paper demonstrates the quick and easy adoption of the existing private blockchain platform to implement the proposed SE defense model.

show abstract

A Literature Survey and Analysis on Social Engineering Defense Mechanisms and Infosec Policies

Cited by 3 publications

References 0 publications

The Role of Social Engineering in Cybersecurity and Its Impact

The Role of Social Engineering in Cybersecurity and Its Impact

Deep Neural Networks for Detecting Insider Threats and Social Engineering Attacks

An Effective Blockchain-Based Defense Model for Organizations against Vishing Attacks

Contact Info

Product

Resources

About