A literature survey on social engineering attacks: Phishing attack

Gupta, Surbhi; Singhal, Abhishek; Kapoor, Akanksha

doi:10.1109/ccaa.2016.7813778

Cited by 111 publications

(41 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Results of the study show that using emoji in social engineering attacks (email, SMS, or text) increases the success rate of social engineering attacks, as using emoji in conversation enhances the victim's trust on the imposter. Similarly in study, 18 Gupta et al, performed a survey on phishing attacks, (which is a type of social engineering attack) so as to develop a counter strategy. Some of the phishing attacks discussed are tab-napping, spoofing emails, Trojan horse, and hacking.…”

Section: F I G U R E 1 Research Protocolmentioning

confidence: 99%

Contemplating social engineering studies and attack scenarios: A review study

Yasin

Fatima

Liu

et al. 2019

Security and Privacy

View full text Add to dashboard Cite

The previous year has seen an enormous increase in the studies related to social engineering. This increase is partly due to increasing number of social engineering attacks and partly due to people's inability to identify the attack. Thus, it is of great importance to find solutions which are helpful for human to understand the social engineering attacks and scenarios. To address this, we have performed a literature review of studies (on social engineering) in top-notch journals and conferences. In this paper, we have enlisted the types of attacks, and the persuasion techniques used by social engineers as listed in the literature. We also combined different theories which researchers tried to use to explain various activities of social engineers. Furthermore, we have mentioned that a better understanding of the social engineering attack scenarios can be done using thematic and game-based analysis techniques.Preliminary empirical evaluation of the proposed game based method shows overall neutral results. Future extension and evaluation is needed for the proposed methods. K E Y W O R D Scybercrime, cyber-security, human factors, human-centered, information security, review, social engineering

show abstract

Section: F I G U R E 1 Research Protocolmentioning

confidence: 99%

Contemplating social engineering studies and attack scenarios: A review study

Yasin

Fatima

Liu

et al. 2019

Security and Privacy

View full text Add to dashboard Cite

show abstract

“…To solve these problems, the Link Guard algorithm [29] is used. Phishing email connection characteristics build an algorithm with a set of policies like discovering hyperlinks with the actual link distance [30].…”

Section:  Using Spoofed Email Detectionmentioning

confidence: 99%

“…Typically, the user shares their personal information in their profile and status. In order to prevent this type of attack, the user should be constantly aware of what they post, what they upload, and the user should be particularly aware of the media they share with others when using links [30].…”

Section:  Using Fake Social Networking Accounts Detectionmentioning

confidence: 99%

Four Most Famous Cyber Attacks for Financial Gains

Altwairqi¹,

AlZain²,

Soh³

et al. 2019

IJEAT

View full text Add to dashboard Cite

Cyber attacks are on the rise every day and pose a major threat to the Internet users. Cyber attackers are constantly capable of gaining hidden exposure at the moment and keeping a low profile. There is a need to carry out analyses on cyber attacks for educational purposes. In this paper we analyze four types of most famous cyber-attacks for financial gains: phishing attack, salami slice attack, ransomware attack, and cryptojacking attack. General Terms: Cyber attacks

show abstract

“…The scope of social engineers starts from message manipulation to disrupt organizational working structure and extends to the exploitation of firms' infrastructure [15]. The scope of physical social engineering attacks encompasses retaining first-hand information from a specific user, whereas, the scope of social-based attacks extends to exploitation of emotional and psychological vulnerabilities of a user [16][17][18][19].…”

Section: Scope Of Social Engineeringmentioning

confidence: 99%

“…Human-based attackers use impersonation, whereas technical attacks are designed to explore online vulnerabilities of the victim. In terms of technical, software-based attacks use various devices including mobile phones and computers to retain information on their targets [15,16,18,19]. Although an attack's first phase of accumulation of information can be through physical methods of gathering intelligence such as shoulder surfing and dumpster dives, this study concentrates only on the online methods of an attack as a part of our new taxonomy.…”

Section: Types Of Attacksmentioning

confidence: 99%

A Taxonomy for Social Engineering Attacks via Personal Devices

Aldawood¹,

Skinner²

2019

IJCA

View full text Add to dashboard Cite

Social engineering attacks are a major threat to organizations and individuals as digitization and connectivity through the internet increase. This study aims to review scholarly research analyzing the topic of social engineering and further chart the evolution of the threat. The review identifies methods of such attacks on various platforms and devices and discusses motivations behind social engineering attacks. Finally, the paper analyzes the nature and impact of social engineering attacks and presents a taxonomy on socially engineered attacks by analyzing their anatomy.

show abstract

A literature survey on social engineering attacks: Phishing attack

Cited by 111 publications

References 8 publications

Contemplating social engineering studies and attack scenarios: A review study

Contemplating social engineering studies and attack scenarios: A review study

Four Most Famous Cyber Attacks for Financial Gains

A Taxonomy for Social Engineering Attacks via Personal Devices

Contact Info

Product

Resources

About