Contemplating social engineering studies and attack scenarios: A review study

Yasin, Affan; Fatima, Rubia; Liu, Lin; Yasin, Awaid; Wang, Jianmin

doi:10.1002/spy2.73

Cited by 35 publications

(47 citation statements)

References 36 publications

(144 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…They performed a detailed survey of existing techniques such as Machine Learning (ML) based approaches, Non-machine Learning-based approaches, Neural Network-based approaches, and Behavior-based detection approaches for phishing attack detection. Authors in Yasin et al [ 64 ] consolidated various studies that researchers have used to clarify different exercises of social specialists. Moreover, they proposed that a higher comprehension of the social engineering attack scenarios would be possible utilizing topical and game-based investigation techniques.…”

Section: Literature Surveymentioning

confidence: 99%

A comprehensive survey of AI-enabled phishing attacks detection techniques

et al. 2020

View full text Add to dashboard Cite

In recent times, a phishing attack has become one of the most prominent attacks faced by internet users, governments, and service-providing organizations. In a phishing attack, the attacker(s) collects the client’s sensitive data (i.e., user account login details, credit/debit card numbers, etc.) by using spoofed emails or fake websites. Phishing websites are common entry points of online social engineering attacks, including numerous frauds on the websites. In such types of attacks, the attacker(s) create website pages by copying the behavior of legitimate websites and sends URL(s) to the targeted victims through spam messages, texts, or social networking. To provide a thorough understanding of phishing attack(s), this paper provides a literature review of Artificial Intelligence (AI) techniques: Machine Learning, Deep Learning, Hybrid Learning, and Scenario-based techniques for phishing attack detection. This paper also presents the comparison of different studies detecting the phishing attack for each AI technique and examines the qualities and shortcomings of these methodologies. Furthermore, this paper provides a comprehensive set of current challenges of phishing attacks and future research direction in this domain.

show abstract

Section: Literature Surveymentioning

confidence: 99%

A comprehensive survey of AI-enabled phishing attacks detection techniques

et al. 2020

View full text Add to dashboard Cite

show abstract

“…This type of in person interaction involves the representation and faking others' personalities and identities. In order to gain information, social engineers showcase themselves as some other people and then get access to secured, confidential, and private information [1][2][3][4][5][6][7][8]. A common case of impersonation is at the helpdesk level [9].…”

Section: 1) Impersonationmentioning

confidence: 99%

“…Attackers gain access to information by targeting individuals, but in most cases the intended target is their organizations. Some of the organizations that have witnessed social engineering attacks recently include RSA SecurID, Associated Press, Bit9, Target Network, the United States Department of Labor, Sony Pictures, Yahoo, Ubiquiti Network, Democratic National Convention, and the United States Department of Justice [4].…”

Section: Introductionmentioning

confidence: 99%

An Advanced Taxonomy for Social Engineering Attacks

Aldawood¹,

Skinner²

2020

IJCA

View full text Add to dashboard Cite

Rapid technological advancement has not only resulted in a change in the pace of economic development, but also led to increase in cyber-threats. A social engineering attack is one such threat where an attacker not only accesses critical information about a user through technology, but also through manipulation. Although the types of attacks are different i.e. social, physical, technical or socio-technical, the process is the same. This study creates an advanced taxonomy of social engineering attacks with the aim of facilitating the development and implementation of better prevention measures, stressing the importance of organizational awareness.

show abstract

“…• Spear-Phishing Attack. It is a type of attack that belong to email spoofing, in which the victim is attracted to opening the email that can be used to use the credentials of the particular victim and after that will pretense to gain access for more sensitive information [11,56,57].…”

Section: Threats In Application Layermentioning

confidence: 99%

Internet of things (IoT): a technology review, security issues, threats, and open challenges

Abbood

Shallal

Fadhel

2020

IJEECS

View full text Add to dashboard Cite

<p><span>Internet of Things (IoT) devices are spread in different areas such as e-tracking, e-commerce, e-home, and e-health, etc. Thus, during the last ten years, the internet of things technology (IoT) has been a research focus. Both privacy and security are the key concerns for the applications of IoT, and still face a huge number of challenges. There are many elements used to run the IoT technology which include hardware and software such as sensors, GPS, cameras, applications, and so forth. In this paper, we have analyzed and explain the technology of IoT along with its elements, security features, security issues, and threats that attached to each layer of IoT to guide the consideration of researchers into solve and understand the most serious problems in IoT environment.</span></p>

show abstract

Contemplating social engineering studies and attack scenarios: A review study

Cited by 35 publications

References 36 publications

A comprehensive survey of AI-enabled phishing attacks detection techniques

A comprehensive survey of AI-enabled phishing attacks detection techniques

An Advanced Taxonomy for Social Engineering Attacks

Internet of things (IoT): a technology review, security issues, threats, and open challenges

Contact Info

Product

Resources

About