Traditional Countermeasures to Unwanted Email

Siadati, Hossein; Jafarikhah, Sima; Jakobsson, Markus

doi:10.1007/978-1-4939-6457-4_5

Cited by 7 publications

(3 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Software, such as blacklists and whitelists, may also protect businesses from BEC fraud. A blacklist enables an email account holder to restrict communication from undesirable sources (Siadati et al , 2016). More specifically, “[…] if the sender’s IP address, email address or other attribute are on the blacklist, the connection will be terminated before the email is received” (Kruck and Kruck, 2006, p. 98).…”

Section: Technical Solutionsmentioning

confidence: 99%

“…For example, the use of filtering emails, to remove suspicious emails from one’s inbox is a popular measure used across both individual and organisational email systems. Filtering relies on the combination of words in emails to differentiate between legitimate communications and phishing attacks (Siadati et al , 2016). Although this may be useful to prevent conventional phishing attacks, which typically involve offenders sending identical emails en masse , highly customised BEC fraud emails that target specific businesses are unlikely to be detected by spam and phishing filters.…”

Section: Challenges To Both Technical and Non-technical Prevention Measuresmentioning

confidence: 99%

See 1 more Smart Citation

Exploiting trust for financial gain: an overview of business email compromise (BEC) fraud

Cross

Gillett

2020

JFC

View full text Add to dashboard Cite

Purpose This paper aims to explore current knowledge of business email compromise (BEC) fraud, or approaches that specifically target organisations for financial gain, through the exploitation of trusted relationships. BEC fraud affects organisations globally and is estimated to have netted offenders over US$26bn since 2016. Despite the sheer magnitude of these losses, there is a dearth of academic research seeking to better understand this crime type, and prevent it from occurring. Design/methodology/approach This review summarises the known literature on BEC fraud. It uses a variety of academic and industry sources to ascertain the current state of knowledge, including how it is perpetrated, its impact (on businesses and individuals), how law enforcement have responded and its prevention. Findings This review highlights many gaps in knowledge surrounding BEC fraud. There has been a large focus on the technical aspects of BEC fraud, to the detriment of the human elements. Often, BEC fraud is successful through targeted and effective use of social engineering techniques and is able to overcome any technical solutions through the manipulation of personal relationships. Further, while the financial impacts of BEC fraud are obvious, there is no known research which has explored the non-financial harms of BEC fraud (across organisational and individual perspectives). With companies starting to (unsuccessfully) take legal action against those who have responded, there is a clear need to understand how organisations can better respond to incidents when they occur. Finally, there are gaps in knowledge on what is the best combination of both technical and human measures to prevent BEC fraud. Research limitations/implications This review is based on information presently available, and as indicated, there are significant gaps in what is currently known. Practical implications This review highlights the need to undertake research into the current gaps, with a view to improving best practice knowledge on prevention and response. Social implications Currently unknown, BEC fraud is posited to have significant impacts at both personal and collective levels. Increased knowledge of these non-financial impacts will improve how organisations respond to BEC fraud and how employees can be supported before and after an incident occurs. Originality/value Despite the magnitude of the problem, there is limited academic scholarship on BEC fraud. This literature review offers a summary of current knowledge and advocates a strong research agenda moving forward.

show abstract

Section: Technical Solutionsmentioning

confidence: 99%

Section: Challenges To Both Technical and Non-technical Prevention Measuresmentioning

confidence: 99%

Exploiting trust for financial gain: an overview of business email compromise (BEC) fraud

Cross

Gillett

2020

JFC

View full text Add to dashboard Cite

show abstract

“…Adopting single sign-on (SSO) or better Multi-Factor Authentication (MFA) [55] to guarantee that only authorized users have access to ChatGPT is a good enterprise security practice. Besides, to protect against the emerging dangerous class of AI-enabled attacks such as WormGPT or FraudGPT, it is essential to utilize robust email authentication such as DMARC [56] to avoid spoofing [57]. Additionally, keeping ChatGPT and all other software up to date with the newest security patches and upgrades is essential.…”

Section: ) Implementing Authentication Measures and Managing Software...mentioning

confidence: 99%

ChatGPT’s Security Risks and Benefits: Offensive and Defensive Use-Cases, Mitigation Measures, and Future Implications

Charfeddine,

Kammoun,

Hamdaoui

et al. 2024

IEEE Access

View full text Add to dashboard Cite

ChatGPT has been acknowledged as a powerful tool that can radically boost productivity across a wide range of industries. It reveals potential in cybersecurity-related tasks such as social engineering. Nevertheless, this possibility raises important concerns regarding the thin line separating moral use of this technology from its harmful usage. It is imperative to address the challenges of distinguishing between legitimate and malevolent use of ChatGPT. This research paper investigates the many concerns of ChatGPT in cybersecurity, privacy and enterprise settings. It covers harmful attacker uses such as injecting malicious prompts, testing brute force attacks, preparing and developing ransomware attacks, etc. Defenders' proactive activities are also addressed, highlighting ChatGPT's significance in security operations and threat intelligence. These defensive operations are classified based on the National Institute of Standards and Technology cybersecurity framework. They involve analyzing configuration files, inquiring about authoritative server, improving security in various systems, etc. Moreover, secure enterprise practices and mitigations spread through five classes are proposed, with an emphasis on clear usage standards and guidelines establishment, personally identifiable information protection, adversarial attack prevention, watermarking generated content, etc. An integrated discussion digs into the interaction of offensive and defensive applications, covering ethical and practical concerns. Future attacks are also discussed, along with potential solutions such as content filtering and collaboration. Finally, a comparative analysis with recent research on ChatGPT security concerns is directed. The paper provides a thorough framework to comprehend the range of implications associated with ChatGPT, enabling the navigation of cybersecurity and privacy challenges.

show abstract