Phishing Attacks Survey: Types, Vectors, and Technical Approaches

Alabdan, Rana

doi:10.3390/fi12100168

Cited by 97 publications

(37 citation statements)

References 49 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This led the authors in [167] to manage the use of such attack in order to test it on social robots to prove how insecure they are, as well as to highlight their lack of authentication. • Phishing attacks are still ongoing with a variety of phishing attack types [168,169] targeting robotic employees and firms with different privileges and access level. This can lead to the exposure of their robotic devices inuse and lead to their compromising and loss of control.…”

Section: • Malicious Code Injection (Mci) Attacks or Remote Codementioning

confidence: 99%

Robotics cyber security: vulnerabilities, attacks, countermeasures, and recommendations

Yaacoub

Noura

Salman

et al. 2021

Int. J. Inf. Secur.

View full text Add to dashboard Cite

The recent digital revolution led robots to become integrated more than ever into different domains such as agricultural, medical, industrial, military, police (law enforcement), and logistics. Robots are devoted to serve, facilitate, and enhance the human life. However, many incidents have been occurring, leading to serious injuries and devastating impacts such as the unnecessary loss of human lives. Unintended accidents will always take place, but the ones caused by malicious attacks represent a very challenging issue. This includes maliciously hijacking and controlling robots and causing serious economic and financial losses. This paper reviews the main security vulnerabilities, threats, risks, and their impacts, and the main security attacks within the robotics domain. In this context, different approaches and recommendations are presented in order to enhance and improve the security level of robotic systems such as multi-factor device/user authentication schemes, in addition to multi-factor cryptographic algorithms. We also review the recently presented security solutions for robotic systems.

show abstract

Section: • Malicious Code Injection (Mci) Attacks or Remote Codementioning

confidence: 99%

Robotics cyber security: vulnerabilities, attacks, countermeasures, and recommendations

Yaacoub

Noura

Salman

et al. 2021

Int. J. Inf. Secur.

View full text Add to dashboard Cite

show abstract

“…As mentioned above, we suggest that companies or solution developers use the dataset of users' responses to real and simulated phishing attacks to train the supervised machine learning model. They can provide the machine learning model with training data from phishing simulation results and/or logs of users' responses to real phishing emails (for example, by integrating the Risk Score module with phishing detection and prevention solutions [35,36]) that contains user's response to phishing emails (e.g. a label that identifies whether the user clicked on a phishing link) and the user's behaviour/emotion score (e.g.…”

Section: Risk Scorementioning

confidence: 99%

A phishing Mitigation Solution using Human Behaviour and Emotions that Influence the Success of Phishing Attacks

Abroshan

Devos

Poels

et al. 2021

Adjunct Proceedings of the 29th ACM Conference on User Modeling, Adaptation and Personalization

View full text Add to dashboard Cite

Phishing is a social engineering scam that can cause financial and reputational damage to people and organisations. Studies have demonstrated the effects of human behaviour and emotions on people's security behaviour, such as falling into a phishing scam. Moreover, several studies show the effects of the COVID-19 outbreak on human emotions, impacting phishing attempts' success. In this study, we have developed a solution using previous studies' results to identify vulnerable users (i.e., those at risk of clicking on phishing links) in organisations. The solution assigns proper mitigation actions to those high-risk users. The system contains behaviour measurement, risk scoring, and mitigation modules that can mature and develop accuracy over time. Furthermore, situations similar to a pandemic are considered in the solution. The proposed solution will help organisations focus more on protecting high-risk users and reducing successful phishing attacks. This solution should be used in combination with technical anti-phishing and cybersecurity awareness training campaigns to achieve better results. CCS CONCEPTS• Security and privacy; • Human and societal aspects of security and privacy; • Intrusion/anomaly detection and malware mitigation; • Social engineering attacks; • Phishing; • Spoofing attacks;

show abstract

“…Moreover, in [10], the authors presented a review of SQL injection attacks. The next paper introduces a survey of phishing attacks [11]. The research article in [12] investigates brute force attacks which aim to find the configurations of an IoT network.…”

Section: Related Workmentioning

confidence: 99%

Intrusion Detection in Critical Infrastructures: A Literature Review

et al. 2021

View full text Add to dashboard Cite

Over the years, the digitization of all aspects of life in modern societies is considered an acquired advantage. However, like the terrestrial world, the digital world is not perfect and many dangers and threats are present. In the present work, we conduct a systematic review on the methods of network detection and cyber attacks that can take place in a critical infrastructure. As is shown, the implementation of a system that learns from the system behavior (machine learning), on multiple levels and spots any diversity, is one of the most effective solutions.

show abstract

Phishing Attacks Survey: Types, Vectors, and Technical Approaches

Cited by 97 publications

References 49 publications

Robotics cyber security: vulnerabilities, attacks, countermeasures, and recommendations

Robotics cyber security: vulnerabilities, attacks, countermeasures, and recommendations

A phishing Mitigation Solution using Human Behaviour and Emotions that Influence the Success of Phishing Attacks

Intrusion Detection in Critical Infrastructures: A Literature Review

Contact Info

Product

Resources

About