How social engineers use persuasion principles during vishing attacks

Jones, Keith S.; Armstrong, Miriam; Tornblad, McKenna K.; Namin, Akbar Siami

doi:10.1108/ics-07-2020-0113

Cited by 25 publications

(5 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The prevalence of deception, social engineering and other forms of deceptive communication online shows no signs of abating anytime soon (Das et al , 2022; Jones et al , 2021; Van der Walt and Eloff, 2019; Xu and Rajivan, 2023). To reduce the damage that ensues after an individual is victimized, training Internet users to detect and disregard deceptive communication seems to be the only practical solution, at least until automated means of filtering deception are implemented and made widely available (Twitchell and Fuller, 2019; Twyman et al , 2015).…”

Section: Discussionmentioning

confidence: 99%

Detecting deception in computer-mediated communication: the role of popularity information across media types

Mirsadikov,

Vedadi,

Marett

2024

ICS

View full text Add to dashboard Cite

Purpose With the widespread use of online communications, users are extremely vulnerable to a myriad of deception attempts. This study aims to extend the literature on deception in computer-mediated communication by investigating whether the manner in which popularity information (PI) is presented and media richness affects users’ judgments. Design/methodology/approach This study developed a randomized, within and 2 × 3 between-subject experimental design. This study analyzed the main effects of PI and media richness on the imitation magnitude of veracity judges and the effect of the interaction between PI and media richness on the imitation magnitude of veracity judges. Findings The manner in which PI is presented to people affects their tendency to imitate others. Media richness also has a main effect; text-only messages resulted in greater imitation magnitude than those viewed in full audiovisual format. The findings showed an interaction effect between PI and media richness. Originality/value The findings of this study contribute to the information systems literature by introducing the notion of herd behavior to judgments of truthfulness and deception. Also, the medium over which PI was presented significantly impacted the magnitude of imitation tendency: PI delivered through text-only medium led to a greater extent of imitation than when delivered in full audiovisual format. This suggests that media richness alters the degree of imitating others’ decisions such that the leaner the medium, the greater the expected extent of imitation.

show abstract

Section: Discussionmentioning

confidence: 99%

Detecting deception in computer-mediated communication: the role of popularity information across media types

Mirsadikov,

Vedadi,

Marett

2024

ICS

View full text Add to dashboard Cite

show abstract

“…An orthogonal approach to building an ad-hoc dataset involves the use of well-known existing datasets. For instance, the datasets originally used in [83,85] were also used to train and evaluate the systems recently proposed in [82,84]. Similarly, other scholars used data published in well-known scientific repositories such as Mendeley, Kaggle and the UCI collection of machine learning datasets.…”

Section: Datasetsmentioning

confidence: 99%

The COVID‐19 scamdemic: A survey of phishing attacks and their countermeasures during COVID‐19

Al‐Qahtani

Cresci

2022

IET Information Security

View full text Add to dashboard Cite

The COVID-19 pandemic coincided with an equally-threatening scamdemic: a global epidemic of scams and frauds. The unprecedented cybersecurity concerns emerged during the pandemic sparked a torrent of research to investigate cyber-attacks and to propose solutions and countermeasures. Within the scamdemic, phishing was by far the most frequent type of attack. This survey paper reviews, summarises, compares and critically discusses 54 scientific studies and many reports by governmental bodies, security firms and the grey literature that investigated phishing attacks during COVID-19, or that proposed countermeasures against them. Our analysis identifies the main characteristics of the attacks and the main scientific trends for defending against them, thus highlighting current scientific challenges and promising avenues for future research and experimentation.

show abstract

“…Approximately, Jonathan [74] believes that the successful implementation of SE attacks stems from the application of psychological and discusses social psychology in SE attacks. Keith et al [75] further analyzed 86 instances of phishing attacks and social psychology in the attacks [74,76]. They defined five "deception guidelines" which can guide SE hackers to deceive users, as shown in Table 3.…”

Section: Users' Psychology Exploited By Hackersmentioning

confidence: 99%

How to respond to emerging threats of cyberspace security via social engineering? A novel paradigm to solve cyberspace security issues

Lin¹

2022

Preprint

View full text Add to dashboard Cite

Cybersecurity researchers always ignore the “people” behind the issues when dealing with cyberspace security issues. The human and technological aspects of cyberspace security must be simultaneously addressed to enable a secure cyber environment. Social engineering is a discipline whose research object is people, and the combination of social engineering and cyberspace security can provide new solution ideas for lots of cyberspace security issues. This paper attempts to answer the question —— “How to solve cyberspace security issues via social engineering?” We briefly review existing frameworks for social engineering attacks and pro?pose a novel, recursive, and iterative framework for social engineering attacks in cyberspace. The existing research achievements of combination of social engineering and cyberspace security were reviewed in the order of cyber personality, hacker psychology, human flesh search, and social engineering defense. To answer this question, we summarized four “guidelines” for using social engineering. Finally, we look ahead, give our thoughts, and discuss answers of the question and future research. It is aimed at getting more researchers of cyberspace security and social science to pay attention to this field.

show abstract

How social engineers use persuasion principles during vishing attacks

Cited by 25 publications

References 15 publications

Detecting deception in computer-mediated communication: the role of popularity information across media types

Detecting deception in computer-mediated communication: the role of popularity information across media types

The COVID‐19 scamdemic: A survey of phishing attacks and their countermeasures during COVID‐19

How to respond to emerging threats of cyberspace security via social engineering? A novel paradigm to solve cyberspace security issues

Contact Info

Product

Resources

About