Internet-based Social Engineering Attacks, Defenses and Psychology: A Survey

March 15, 2022 Β· The Cartographer Β· + Add venue

πŸ“š THE CARTOGRAPHER: The Cartographer
Survey/review paper β€” maps the landscape rather than implementing a method.

"No code URL or promise found in abstract"
"Title-pattern auto-detect: Internet-based Social Engineering Attacks, Defenses and Psychology: A Survey"

Evidence collected by the PWNC Scanner

Authors Theodore Longtchi, Rosana MontaΓ±ez Rodriguez, Laith Al-Shawaf, Adham Atyabi, Shouhuai Xu arXiv ID 2203.08302 Category cs.CR: Cryptography & Security Cross-listed cs.HC Citations 4 Last Checked 3 days ago
Abstract
Social engineering attacks are a major cyber threat because they often serve as a first step for an attacker to break into an otherwise well-defended network, steal victims' credentials, and cause financial losses. The problem has received due amount of attention with many publications proposing defenses against them. Despite this, the situation has not improved. In this paper, we aim to understand and explain this phenomenon by looking into the root cause of the problem. To this end, we examine the literature on attacks and defenses through a unique lens we propose -- {\em psychological factors (PFs) and techniques (PTs)}. We find that there is a big discrepancy between attacks and defenses: Attacks have deliberately exploited PFs by leveraging PTs, but defenses rarely take either of these into consideration, preferring technical solutions. This explains why existing defenses have achieved limited success. This prompts us to propose a roadmap for a more systematic approach towards designing effective defenses against social engineering attacks.
Community shame:
Not yet rated
πŸ“„ View on arXiv 🌐 View on ar5iv πŸ“‘ PDF πŸŽ‰ Report Code Found
Community Contributions

Found the code? Know the venue? Think something is wrong? Let us know!

πŸ“œ Similar Papers

In the same crypt β€” Cryptography & Security