Impact of Human Vulnerabilities on Cybersecurity

Alsharif, Maher; Mishra, Shailendra; Alshehri, Mohammed

doi:10.32604/csse.2022.019938

Cited by 29 publications

(12 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…With 80-85% of successful cyber-attacks (malware, ransomware, phishing, etc.) occurring due to human error, there is still a lot to do in terms of securing the wide attack surface [33]. Deploying secure, vigilant, and resilient data needs must be established, for providing a digital footprint (real-time insights and visibility of the productions' cyber threat surface) when where intelligent devices are employed in the environment.…”

Section: Data Security It/ot Cybersecurity Standards and Risk Assessmentmentioning

confidence: 99%

“…Deploying secure, vigilant, and resilient data needs must be established, for providing a digital footprint (real-time insights and visibility of the productions' cyber threat surface) when where intelligent devices are employed in the environment. Applying the same level of security for all devices will allow quick detection of malicious nodes/devices [24,25,26,27,28,29,30,31,32,33], however, this strategy may not be workable in scenarios where certain types of devices have higher priority of security than the rest (e.g., maritime facilities, nuclear). Manufacturing sectors are progressively implementing security standards, controls, multi-factor authentication, and Zero Trust (ZT) [34] models for both their IT/OT and cloud domains.…”

Section: Data Security It/ot Cybersecurity Standards and Risk Assessmentmentioning

confidence: 99%

See 1 more Smart Citation

Securing industry 5.0 using 6σ CYBERNETIC framework

Dhirani,

Newe

2024

Mehran Univ. res. j. eng. technol.

View full text Add to dashboard Cite

The data-driven digital economy highly relies on immersive and emerging technologies, mass customisation, autonomous systems, and seamless connectivity. Enabling such an Industrial IoT/Industry 5.0 environment requires streamlined and end-to-end transparent methods for insights, visibility, and control. However, it is important to note that its success depends on data security metrics. The recent cyber-attacks in healthcare and industrial infrastructures have led service providers to high-risk scenarios. From supply chain to service delivery, remote functionality variables, enabling a fully connected factory is a major cybersecurity concern as emerging technologies employ different security requirements. To mitigate these risks, strategic, operational, technical, and cybersecurity alignment is a must, where the gaps between the production and process environments must be bridged to achieve the prime goal of a sustainable, secure, and technologically innovative factory. This research provides a systematic approach to bridging Industry 5.0’s QoS metrics and security gaps by implementing a Six Sigma (6σ) approach in a manufacturing environment. The approach further maps IT/OT, cloud, and cybersecurity standards, thereby enabling insights, visibility, and control. A healthcare 5.0 use-case is demonstrated to show how a 6σ implementation can improve the QoS metrics, unifying standards to achieve a secure, sustainable, resilient, and high-performance environment.

show abstract

Section: Data Security It/ot Cybersecurity Standards and Risk Assessmentmentioning

confidence: 99%

Section: Data Security It/ot Cybersecurity Standards and Risk Assessmentmentioning

confidence: 99%

Securing industry 5.0 using 6σ CYBERNETIC framework

Dhirani,

Newe

2024

Mehran Univ. res. j. eng. technol.

View full text Add to dashboard Cite

show abstract

“…Firstly, the lack of awareness is a significant issue; many organizations and individuals still lack adequate cybersecurity awareness, making it easier for attackers to succeed. Information security awareness gives the user more understanding of the importance of the best practices [5] .A study conducted by [6] in Saudi Arabia, involving participants from all regions, showed that the general findings indicate a low level of awareness concerning cybersecurity and information security, with only 61% awareness achieved. The result emphasizes the importance of raising awareness to its maximum potential.…”

Section: Problem Statement and Significancementioning

confidence: 99%

“…These methods within the cybersecurity domain are on the verge of becoming outdated. Sandboxes, antivirus controls, secure email, and other standard technologies were designed to protect networks from direct attackers [6]. To deal with the new phishing assaults that target vulnerable employees, new teaching methods are required [7].…”

Section: Problem Statement and Significancementioning

confidence: 99%

Flagged: Cybersecurity Training and Awareness System Through Virtual Reality

Alhawas,

Althemali,

Alkhaldi

et al. 2024

Networks, Blockchain and Internet of Things

View full text Add to dashboard Cite

With the persistent rapid growth and sophistication of cyberattack attacks, organizations and individuals have a growing need to prioritize cybersecurity measures. The variety of attacks has posed new challenges and made it difficult to defend against all attacks. The existing traditional training methods are inadequate to keep up with the changing nature of cyberattacks. This project will address the essential problems in cybersecurity training, which are lack of awareness, inadequate customization, and the ineffectiveness of traditional methods, and it will offer a streamlined solution to solve these issues. The metaverse is considered the next evolution of the internet and provides significant innovative solutions for various problems. The metaverse has recently entered the education and training sector as an effective tool to enhance immersive learning experiences. With the objective of leveraging metaverse technologies such as virtual reality (VR) for education, training, and awareness. Flagged aims to develop a comprehensive virtual reality (VR) experience for cybersecurity training and awareness, focusing on phishing attacks. The user will work in the security operations center (SOC) and be responsible for monitoring, investigating, and responding to security incidents, focusing on phishing detection. The environment adapts the gamification and peer instruction (PI) learning methods to ensure collaboration and enhance users' practical skills for achieving the best outcomes.

show abstract

“…Para prevenir los ciberataques o, al menos, protegerse ante ellos, las grandes corporaciones están invirtiendo incontables cantidades de dinero en la mejora de los departamentos de ciberseguridad haciéndolos cada vez más grandes con la contratación de profesionales especializados en dicho ámbito [3,99]. El objetivo que se persigue es el de evitar la pérdida y exfiltración de datos, mantener la reputación y, probablemente, su mayor preocupación, minimizar en todo lo posible el impacto en la continuidad del negocio [9,171].…”

Section: Introductionunclassified

Threat Hunting basado en técnicas de Inteligencia Artificial

Aragonés Lozano

View full text Add to dashboard Cite

Me gustaría empezar estas líneas de agradecimientos con dos frases las cuáles considero que es importante recordar día a día, que son, en primer lugar, "Nada que valga la pena en la vida se consigue de forma fácil" y, en segundo lugar, "Como no estás experimentado en las cosas del mundo, todas las cosas que tienen dificultad te parecen imposibles; confía en el tiempo, que suele dar dulces salidas a muchas amargas dificultades", esta última de Miguel de Cervantes Saavedra en su libro Don Quijote de la Mancha.Las primeras personas a las que me gustaría dirigir estos agradecimientos son mis directores de tesis, el catedrático Dr. Manuel Esteve Domingo y el Dr. Israel Pérez Llopis. No tengo forma de agradecer todo lo que habéis hecho por mi desde que os conozco, empezando por lo profesional, por marcarme un objetivo acerca de lo que me gustaría llegar a ser algún día y, en cuanto a lo personal, por el bienestar que generáis en la gente que tenéis a vuestro alrededor. Sin duda alguna, ha sido todo un privilegio el haber coincidido con vosotros y haber podido contar con vosotros durante la realización de este trabajo.Las segundas personas a las que me gustaría dirigir estos agradecimientos son mis padres, Manuel Aragonés García y Angelina Lozano Fuentes, a los cuáles está dedicado este trabajo. Puedo asegurar, sin miedo a equivocarme, que vosotros sois el motivo por el que este trabajo y, en general, cualquier aspecto de mi vida es como es. Siempre habéis estado en los momentos de alegría, pero más importante, en los momentos difíciles y, sin duda alguna, nunca tendré forma suficiente de agradeceros todo lo que hacéis por mi. IIIAquestos ciberespecialistes han d'analitzar grans quantitats de dades (majoritàriament benignes, repetitives i amb patrons predictibles) en curts períodes de temps per a detectar els ciberatacs, amb la sobrecàrrega cognitiva associada. L'ús de AI, específicament ML i DL, pot impactar de manera notable en l'anàlisi en temps real d'aquestes dades. A més, si els ciberespecialistes són capaços de visualitzar les dades de manera correcta, aquestos poden ser capaços d'obtindre una major consciència situacional del problema al qual s'enfronten.Aquest treball busca definir una arquitectura que contemple des de l'adquisició de dades fins a la visualització d'aquestes, passant pel processament de la informació recol•lectada i la generació d'hipòtesis sobre el que està succeint en la infraestructura monitoritzada. A més, en la definició de la mateixa s'haurà de tindre en consideració aspectes tan importants com la disponibilitat, integritat i confidencialitat de les dades, així com la HA dels diferents components que conformen aquesta. Una volta s'hatja definit l'arquitectura, aquest treball busca validarla fent ús d'un prototip que la implemente íntegrament. Durant aquesta fase d'avaluació, és important que quede demostrada la versatilitat de l'arquitectura proposada per a treballar en diferents casos d'ús, així com la seua capacitat per a adaptar-se als canvis que es produïxen en les diferents tècniques...

show abstract

Impact of Human Vulnerabilities on Cybersecurity

Cited by 29 publications

References 30 publications

Securing industry 5.0 using 6σ CYBERNETIC framework

Securing industry 5.0 using 6σ CYBERNETIC framework

Flagged: Cybersecurity Training and Awareness System Through Virtual Reality

Threat Hunting basado en técnicas de Inteligencia Artificial

Contact Info

Product

Resources

About