Social Engineering Attacks: A Survey

被引:163
|
作者
Salahdine, Fatima [1 ]
Kaabouch, Naima [1 ]
机构
[1] Univ North Dakota, Sch Elect Engn & Comp Sci, Grand Forks, ND 58202 USA
来源
FUTURE INTERNET | 2019年 / 11卷 / 04期
关键词
social engineering attacks; cyber security; phishing; vishing; spear phishing; scams; baiting; robocalls; SECURITY;
D O I
10.3390/fi11040089
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The advancements in digital communication technology have made communication between humans more accessible and instant. However, personal and sensitive information may be available online through social networks and online services that lack the security measures to protect this information. Communication systems are vulnerable and can easily be penetrated by malicious users through social engineering attacks. These attacks aim at tricking individuals or enterprises into accomplishing actions that benefit attackers or providing them with sensitive data such as social security number, health records, and passwords. Social engineering is one of the biggest challenges facing network security because it exploits the natural human tendency to trust. This paper provides an in-depth survey about the social engineering attacks, their classifications, detection strategies, and prevention procedures.
引用
收藏
页数:17
相关论文
共 50 条
  • [31] Factors that Motivate Defense Against Social Engineering Attacks Across Organizations
    Tawalbeh, Lo'ai A.
    Muheidat, Fadi
    18TH INTERNATIONAL CONFERENCE ON FUTURE NETWORKS AND COMMUNICATIONS, FNC 2023/20TH INTERNATIONAL CONFERENCE ON MOBILE SYSTEMS AND PERVASIVE COMPUTING, MOBISPC 2023/13TH INTERNATIONAL CONFERENCE ON SUSTAINABLE ENERGY INFORMATION TECHNOLOGY, SEIT 2023, 2023, 224 : 75 - 82
  • [32] Social Engineering as the Art of Deception in Cyber-Attacks: A Mapping Review
    Guana-Moya, Javier
    Avila-Pesantez, Diego
    INFORMATION SYSTEMS AND TECHNOLOGIES, VOL 1, WORLDCIST 2023, 2024, 799 : 155 - 163
  • [33] Role of Attention and Design Cues for Influencing Cyber-Sextortion Using Social Engineering and Phishing Attacks
    Pethers, Brent
    Bello, Abubakar
    FUTURE INTERNET, 2023, 15 (01)
  • [34] DDoS attacks in Industrial IoT: A survey
    Chaudhary, Shubhankar
    Mishra, Pramod Kumar
    COMPUTER NETWORKS, 2023, 236
  • [35] Classification of various attacks and their defence mechanism in online social networks: a survey
    Sahoo, Somya Ranjan
    Gupta, Brij Bhooshan
    ENTERPRISE INFORMATION SYSTEMS, 2019, 13 (06) : 832 - 864
  • [36] A Survey on the Principles of Persuasion as a Social Engineering Strategy in Phishing
    Khadka, Kalam
    Ullah, Abu Barkat
    Ma, Wanli
    Marroquin, Elisa Martinez
    Alem, Yibeltal
    2023 IEEE 22ND INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS, TRUSTCOM, BIGDATASE, CSE, EUC, ISCI 2023, 2024, : 1631 - 1638
  • [37] Exploring the Potential Implications of AI-generated Content in Social Engineering Attacks
    Alahmed, Yazan
    Abadla, Reema
    Al Ansari, Mohammed Jassim
    2024 INTERNATIONAL CONFERENCE ON MULTIMEDIA COMPUTING, NETWORKING AND APPLICATIONS, MCNA 2024, 2024, : 64 - 73
  • [38] Randomized General Indices for Evaluating Damage Through Malefactor Social Engineering Attacks
    Azarov, Artur
    Vasileva, Olga
    Tulupyeva, Tatiana
    ARTIFICIAL INTELLIGENCE: (RCAI 2019), 2019, 1093 : 218 - 225
  • [39] MPMPA: A Mitigation and Prevention Model for Social Engineering Based Phishing attacks on Facebook
    Jamil, Abid
    Asif, Kashif
    Ghulam, Zikra
    Nazir, Muhammad Kashif
    Alam, Syed Mudassar
    Ashraf, Rehan
    2018 IEEE INTERNATIONAL CONFERENCE ON BIG DATA (BIG DATA), 2018, : 5040 - 5048
  • [40] An Effective Double-Layer Detection System Against Social Engineering Attacks
    He, Daojing
    Lv, Xin
    Xu, Xueqian
    Yu, Shui
    Li, Dawei
    Chan, Sammy
    Guizani, Mohsen
    IEEE NETWORK, 2022, 36 (06): : 92 - 98
12345