Your search keyword '"SOCIAL engineering (Fraud)"' showing total 1,233 results

1. Masters of War.

Author

HARTUNG, WILLIAM

Subjects

*WAR, *ARMED Forces, *INTERCONTINENTAL ballistic missiles, *MILITARY budgets, *SOCIAL engineering (Fraud)

Abstract

The article discusses Project 2025's vision for "the common defense" and criticizes its unchecked militarism. The author highlights Christopher Miller's role in the project and his call for expanding the military and increasing funding for nuclear weapons and offensive weapons in space. The article argues that these proposals would divert resources from other important areas such as public health, climate change, and infrastructure. It also criticizes the focus on China as the top priority for defense planning, as it increases the risk of a nuclear confrontation. Additionally, the article criticizes Project 2025's call to eliminate diversity, equity, and inclusion initiatives in the military and its rejection of diplomacy. The author calls for an alternative approach to US foreign policy that prioritizes nonmilitary tools of interaction and advocates for a cease-fire in Gaza, a halt to the new nuclear arms race, and a reduction in Pentagon spending. [Extracted from the article]

Published

2024

2. Beyond Technical Barriers: A Multidimensional Conceptual Framework for Understanding and Countering Cyber Scam Susceptibility.

Author

Darem, Abdulbasit A., Alkhaldi, Tareq M., Alahmari, Muteeb, Alhashmi, Asma A., Alashjaee, Abdullah M., Alanazi, Sultan M., and Ebad, Shouki A.

Subjects

*SOCIAL engineering (Fraud), *BANKING industry, *PSYCHOLOGICAL factors, *EVIDENCE gaps, *SOCIAL factors

Abstract

AbstractCyber-attacks have become a serious global cybersecurity issue, affecting sectors such as petroleum, finance, health, and industry. The financial and banking sectors are particularly vulnerable, experiencing disproportionate harm due to the escalating complexity of digital threats. Recent academic efforts have focused on developing countermeasures, but these have primarily concentrated on technical solutions, which alone are insufficient. The persistent success of cyber-attacks highlights the need for a better understanding of human susceptibility to cyber scams. This research addresses the gap by investigating the psychological and social factors that lead individuals to fall for scam emails and links. It also explores how hackers exploit social engineering tactics to target victims and seeks to reverse these tactics to enhance protection. By understanding why people fall for cyber scams, the research aims to develop more effective cybersecurity measures, contributing significantly to the ongoing battle against cyber-attacks. [ABSTRACT FROM AUTHOR]

Published

2024

3. Uso responsable de Internet y seguridad digital: revisión sistemática de programas educativos.

Author

AZNAR-MARTÍNEZ, BERTA, CASARRAMONA BASANY, AINA, GRANÉ-MORCILLO, JAUME, LORENTE-DE-SANZ, JUDITH, PRATS FERNÁNDEZ, MIQUEL-ÀNGEL, and BALLESTER BRAGE, LLUÍS

Subjects

*SOCIAL engineering (Fraud), *INTERNET pornography, *DATA privacy, *DIGITAL technology, *ONLINE identities

Abstract

The objective of this systematic review was to analyze pre-existing programs that address a responsible use of the Internet with the aim of managing the diverse challenges and risks of the digital space. Five databases were used to obtain studies from 2017 to 2022. The following variables were analyzed: target population, duration, content, and evaluation. Programmes included the following online risks: cyberbullying, sexting, digital privacy, grooming, identity theft, false information, problematic Internet use, phishing and social engineering, digital identity and online reputation, excessive information sharing, spam and and fraud. The need for the design and implementation of programs that involve the entire educational community and address the issues of pornography and online safety has been identified. [ABSTRACT FROM AUTHOR]

Published

2024

4. Security, Privacy, and Surveillance in Cyberspace: Organizational Science Concerns and Contributions.

Author

Dalal, Reeshad S., Bennett, Rebecca, and Posey, Clay

Subjects

*SOCIAL engineering (Fraud), *ARTIFICIAL intelligence, *PROTECTION motivation theory, *INFORMATION technology security, *RATIONAL choice theory, *ORGANIZATIONAL communication

Abstract

The text discusses the importance of cybersecurity and the need for organizational scientists to focus on the "human factor" in cybersecurity research. It highlights recent examples of cyberattacks and data breaches, emphasizing the impact on organizations and individuals. The text also mentions a special issue on cybersecurity in the Journal of Business and Psychology, summarizing three articles accepted for publication. It concludes by discussing patterns in the citing articles and suggesting areas for future research in the intersection of organizational science and cybersecurity. [Extracted from the article]

Published

2024

5. Racialized Railway Mobilities: Repression and Resistance in the Anglophone South African Short Story During the Drum Decade.

Author

Gibson, Sarah

Subjects

SOCIAL engineering (Fraud), PUBLIC spaces, RAILROAD commuter service, PUBLIC transit, SOCIAL engineering (Political science)

Abstract

South Africa has a complex history of racialized (im)mobilities. During the social engineering of apartheid, the city became a racialized white space that was dependent on black migrant workers who were forced to live in the marginal spaces on the edge of the city. This daily commute was enabled through the construction of public transportation systems and commuter railways. This mundane and banal form of mobility became a key site of both repression and resistance during the apartheid era. The present article explores how these racialized railway mobilities were represented during the 'Drum decade' of the 1950s in South Africa. It explores how the short story, as a liminal genre positioned within local and transnational literary cultures, is mobilized to narrate railway mobilities during this transitional decade. Texts analyzed include the news reports and short stories by Can Themba, Es'kia Mphahlele, and Nat Nakasa. This article explores how the mobile public spaces of the railways and the mobile figures of railway passengers were mobilized in the Anglophone South African short story as a form of resistance to the repression of the apartheid era. [ABSTRACT FROM AUTHOR]

Published

2024

6. Procedural fairness in ethnic-cultural decision-making: Benefits, processes and minority and majority group perspectives.

Author

Dierckx, Kim, Van Hiel, Alain, Valcke, Barbara, and van den Bos, Kees

Subjects

SOCIAL engineering (Fraud), SOCIAL engineering (Political science), TRUST, MINORITIES, FAIRNESS

Abstract

As nations worldwide diversify, societal institutions are increasingly faced with the challenging task to resolve issues regarding ethnic, cultural, and linguistic matters. In the present contribution, we review evidence for a theoretical model that highlights the relevance of procedural fairness for dealing with such ethnic-cultural issues. Our collective model of procedural fairness (CPF) explains the reactions to fairness enactment of different stakeholders: Minority groups that receive fair treatment, third-party minority groups, and the majority. For minority groups, ethnic-cultural procedural fairness effects emerge through self-categorisation processes, leading to positive leader evaluations and decision acceptance, as well as increased feelings of societal inclusion, well-being, and social trust. For the majority group, CPF holds that responses to ethnic-cultural procedural fairness are driven by higher-order moral standards of rightful conduct towards disadvantaged group members. Taken together, the present contribution accentuates the usefulness of ethnic-cultural procedural fairness as a social engineering tool in diverse societies. [ABSTRACT FROM AUTHOR]

Published

2024

7. On emergent mobile phone-based social engineering cyberattacks in developing countries: The case of the Zambian ICT sector.

Author

Zimba, Aaron, Mukupa, George, and Chama, Victoria

Subjects

*SOCIAL engineering (Fraud), *SIM cards, *LOGISTIC regression analysis, *CELL phones, *INFORMATION & communication technologies

Abstract

The number of registered SIM cards and active mobile phone subscribers in Zambia in 2020 surpassed the population of the country. This development and the integration of mobile phone systems with financial payment systems has not come without a cost. Cyberattackers, using various social engineering techniques have jumped onto the bandwagon to defraud unsuspecting users. Considering the aforesaid, this paper presents a high-order analytical approach towards mobile phone-based social engineering cyberattacks (phishing, SMishing, and vishing) in Zambia which seek to defraud benign victims. This paper presents a baseline study to reiterate the problem at hand. The research used a mixed-methods approach, combining quantitative and qualitative data, and adopted a hybrid descriptive research design. Furthermore, an attack model and an evaluation framework were devised to ascertain the most prevalent types of mobile phone-based cyberattacks. Based on logistic regression analysis, the findings indicate that the most prevalent type of mobile phone-based social engineering cyberattack in Zambia is SMishing. Based on the results and observed insights, recommendations to mitigate these emergent social engineering cyberattacks were suggested. This research serves as a valuable baseline for understanding and addressing the growing challenges posed by mobile phone-based cyberattacks in Zambia's evolving technological landscape. [ABSTRACT FROM AUTHOR]

Published

2024

8. التشكيلات الحديثةللمقاومة في الضفةالغربية: بين الكتيبة والعرين.

Author

إياد أحمد أبو زن&#1610 and سليمان بشارات

Subjects

*SOCIAL engineering (Fraud), *BANK failures, *SOCIAL engineering (Political science)

Abstract

This study aims to identify the patterns of change in contemporary resistance formation in the West Bank, focusing on «Jenin Brigade» and the «Lion's Den». The study suggests that there are signs of transformation in Palestinian activism that have produced new patterns of resistance, influenced by the Palestinian environment, Israeli policies, and the success of such contemporary patterns influencing Palestinian activism. The study hypothesizes that Palestinian activism is undergoing a maturation phase, which inturn led to the maturation of Palestinian resistance that is strongly tied to ideological transcendence thought. The study concludes that there is a growth in resistance in the West Bank and an Israeli failure to subdue the new Palestinian identity [ABSTRACT FROM AUTHOR]

Published

2024

9. DeepEPhishNet: a deep learning framework for email phishing detection using word embedding algorithms.

Author

Somesha, M and Pais, Alwyn Roshan

Subjects

*DEEP learning, *PHISHING, *SOCIAL engineering (Fraud), *ARTIFICIAL neural networks, *EMAIL, *ALGORITHMS, *MACHINE learning

Abstract

Email phishing is a social engineering scheme that uses spoofed emails intended to trick the user into disclosing legitimate business and personal credentials. Many phishing email detection techniques exist based on machine learning, deep learning, and word embedding. In this paper, we propose a new technique for the detection of phishing emails using word embedding (Word2Vec, FastText, and TF-IDF) and deep learning techniques (DNN and BiLSTM network). Our proposed technique makes use of only four header based (From, Returnpath, Subject, Message-ID) features of the emails for the email classification. We applied several word embeddings for the evaluation of our models. From the experimental evaluation, we observed that the DNN model with FastText-SkipGram achieved an accuracy of 99.52% and BiLSTM model with FastText-SkipGram achieved an accuracy of 99.42%. Among these two techniques, DNN outperformed BiLSTM using the same word embedding (FastText-SkipGram) techniques with an accuracy of 99.52%. [ABSTRACT FROM AUTHOR]

Published

2024

10. Social Engineering Awareness in ODLS: A Survey on Human Vulnerabilities in Cybersecurity.

Author

Farida Shehu, Garki and Nonyelum Ogwueleka, Francisca

Subjects

SOCIAL engineering (Fraud), SOCIAL systems, COMPUTER crimes, SECURITY systems, DISTANCE education

Abstract

The paper examines social engineering, a technique that capitalizes on human vulnerabilities to launch cybercrimes in open and distance learning (ODL) systems. A survey has been done, examining how individuals and corporations can become the most vulnerable point in a security system, enabling unauthorized access to sensitive data or services. The paper analyzes the level of awareness and susceptibility of ODL users to social engineering attacks. The goal is to raise individual and corporate awareness. A questionnaire was designed and administered to 1,000 participants from the National Open University of Nigeria (NOUN). It was found that 95.50% were technologically proficient and 75.10% used email for communication. The findings revealed that most participants had 0-5 years level of experience in the system; social engineering attacks were known by 47.70% of participants, and 67.10% admitted to suspicious behavior. Despite the fact that 51.0% were unfamiliar with social engineering assaults, only 39.80% of the participants had ever attended a cybersecurity training, while 94.80% were willing to participate in security awareness events. These results underline the need for comprehensive awareness initiatives to decrease ODL security concerns. [ABSTRACT FROM AUTHOR]

Published

2024

11. A holistic qualitative exploration on the perception of scams, scam techniques and effectiveness of anti-scam campaigns in Malaysia.

Author

Wilson, Sharon, Hassan, Nor Azlili, Khor, Kheng Kia, Sinnappan, Santhidran, Abu Bakar, Afi Roshezry, and Tan, Soon Aun

Subjects

SOCIAL engineering (Fraud), INTERNET fraud, CRIME prevention laws, POLICE, MULTIMEDIA communications

Abstract

Purpose: Scams are indeed malicious attempts to influence people and can take many forms, including online scams. With the increasing availability of technology, scammers have more tools at their disposal to create convincing and sophisticated communications that appear to come from legitimate sources, such as emails, text messages or social media posts. These scams can be designed to trick individuals into clicking on malicious links, downloading malware or ransomware or providing sensitive information such as login information, financial information or personal details. Scammers often use social engineering techniques to persuade their targets to take specific actions, such as creating a sense of urgency, offering a reward or prize or posing as a trusted authority. These tactics can be highly effective, particularly if the target is unaware of the warning signs of a scam or is unfamiliar with how to protect themselves from online fraud. This paper aims to explore the extent and nature of this problem and evokes the concern that the general public is vulnerable and susceptible to scams if they are not resilient and aware. This paper also explores why victims fall for online scams and uncovers preventive measures to enable a direction in tacitly strategizing ways to create more impactful and effective awareness campaigns. Design/methodology/approach: This study explores these aspects through a holistic qualitative approach. Using in-depth interview techniques with six victims, six non-victims, four law enforcement officers, four scammers and seven stakeholders from various agencies such as banks, telecommunication agencies and the Malaysian Communications and Multimedia Commission involved in combating the issue of scams. Findings: The findings generally revealed that participants who were victims of scams felt Malaysians were susceptible to scams, easily fooled and had a nonchalant attitude. Most participants also highlighted that public safety is important for ensuring a high quality of life for citizens that should work closely between the government and non-government agencies, including effective law enforcement and crime prevention strategies. Originality/value: The uniqueness of this study is the feedback from scammers themselves and their input towards authority and victims. Overall, the respondents provide their views drawing strength from the ever-changing technological background as well as the susceptibility of security features and vulnerability of human engagement. [ABSTRACT FROM AUTHOR]

Published

2024

12. The power of data: Transforming compliance with anti-money laundering measures in domestic and cross-border payments.

Author

Rozman, Alexander G.

Subjects

SOCIAL engineering (Fraud), COMMERCIAL crimes, ARTIFICIAL intelligence, MACHINE learning, DROWNPROOFING

Abstract

Financial crime is on the rise. The interconnectedness of global payments is making illicit cross-border transactions increasingly frictionless, while digitisation has not only increased the attack surface but also enabled criminals to employ increasingly sophisticated methods to evade detection, such as social engineering. Compounding the threat is the ever-growing mountain of data being generated, which is threatening to drown detection and prevention efforts. It is clear that a new level of defence is required in the fight against financial crime. This paper argues that the implementation of data-driven technologies, with a focus on artificial intelligence (AI), is a near-term imperative for effective risk-based anti-money laundering (AML) compliance programmes in the payments industry, where legacy AML programmes over-rely on a rule-based approach with a checklist of predetermined rules and indicators to flag potentially suspicious activity. To support the development and implementation of such data-driven enhancements, this paper hones in on the current hurdles, and explains the benefits and technical aspects of AI integration, emphasising the foundational importance of ISO/IEC AI-related standards. Finally, the paper discusses future opportunities for broader collaboration to build stronger collective defences. [ABSTRACT FROM AUTHOR]

Published

2024

13. Developing and implementing social engineering-prevention policies: a qualitative study.

Author

Steinmetz, Kevin F., Holt, Thomas J., and Brewer, Christopher G.

Subjects

SOCIAL engineering (Fraud), INFORMATION technology security, SECURITY systems, INFORMATION policy, SOCIAL policy

Abstract

Social engineering, or the use of deception to circumvent information security measures, has become a significant concern for organizations. Many organizations have implemented information security policies to mitigate the risks posed by social engineering attacks. This study uses a grounded theory-based approach to examine qualitative interviews with security auditors, IT security professionals, and social engineers (n = 54) to thematically catalog their insights on developing and supporting security policies. Results indicate that effective IT security policies are (1) properly communicated, (2) tested to find gaps in policy directives and their implementation, (3) buttressed by tools to facilitate good security decision-making among members, (4) written simply and concisely while being kept up-to-date, (5) supported through adequate staffing and expertise, (6) supported by organizational leadership, and (7) accompanied by an organizational structure which allows for policy to be overseen and implemented consistently. [ABSTRACT FROM AUTHOR]

Published

2024

14. Analysis of generation Z characters in using social media applications on the internet.

Author

Sakban, Abdul, Maemunah, M., Hafsah, H., Andini, Meli, and Murtini, M.

Subjects

*SOCIAL engineering (Fraud), *GENERATION Z, *MORAL attitudes, *SOCIAL engineering (Political science), *QUALITATIVE research, *SOCIAL media

Abstract

The character of generation Z in implementing social media has changed, especially the lack of morals, morals and attitudes that started as the millennial generation. This study aims to explain the results of the analysis of generation z characters using social media applications on the internet. This research method uses qualitative research. Then the approach used is descriptive analysis and survey approach. Data collection techniques and procedures were carried out systematically through observation and document analysis stages. The method for collecting research data requires initial observation related to the need for research data in the form of primary and secondary data. Data analysis used interactive model analysis in the form of data collection, data identification, data reduction, and conclusion. The results of the study show that the characteristics of generation Z in using social media applications on the internet are driven by various behaviors and attitudes that are very high in seeking popularity and creating exciting content to produce or social engineering with technology, especially in utilizing Smartphone, social media platforms, so that they can make someone primarily the Z generation elaborates their personality according to their abilities in facing the challenges of life in this industrial 4.0 era to become famous and helpful people. [ABSTRACT FROM AUTHOR]

Published

2024

15. Preface: Cyber Defence Iraq 2024.

Subjects

*INFORMATION technology, *SOCIAL engineering (Fraud), *INFORMATION technology security, *DATA privacy, *COLLEGE teachers, *DEEP learning

Published

2024

16. Tom Clancy's Splinter Cell: Blacklist.

Author

PECHALIN, ANDREI

Subjects

SOCIAL engineering (Fraud), XBOX video game consoles, WINDOW blinds, DRONE warfare, PERSONALITY development

Abstract

The article discusses the video game "Tom Clancy's Splinter Cell: Blacklist" and its narrative and gameplay elements. The game follows protagonist Sam Fisher as he leads a team of intelligence operatives to stop a series of terrorist attacks on the United States. The article explores the game's narrative, which some interpret as a satire on US interventionism, while others see it as a straightforward action story. The gameplay combines stealth and action elements, offering players a variety of options and playstyles. However, the game's servers have been shut down, making some of its multiplayer features inaccessible. [Extracted from the article]

Published

2024

17. SPOOFIING UNMASKED: Cheating criminals shatter trust.

Author

Geldenhuys, Kotie

Subjects

*PHISHING, *TRUST, *SOCIAL engineering (Fraud), *INTERNET fraud, *DIGITAL technology, *BREACH of trust

Abstract

In the fast-paced world of business, trust is the cornerstone upon which all relationships are built - or supposed to be built. Yet, in the shadows of the digital realm, this trust is often exploited by cybercriminals who manipulate it to serve their own ends. One of their most dangerous tactics is breaching the invisible trust that binds service providers, clients and business partners. This exploitation forms the heart of many social engineering schemes. Through clever manipulation, cybercriminals devise ways to defraud users of digital services, preying on their inherent trust in the platforms they rely on daily. When people think about online fraud, their minds usually jump to phishing or smishing attacks sent through e-mails or text messages. Fortunately, advancements in technology have introduced barriers such as e-mail scanners and SMS filters that block at least some of these threats. But criminals are constantly adapting. Aware of these defences, they now spread their malicious links through more subtle channels including paid search ads, social media posts, messaging apps such as Signal and Telegram and even QR codes in public spaces. Their goal is simple: they want to lure unsuspecting users to a fake website that looks identical to the real thing, through a tactic called "spoofing". As a user clicks on what they believe to be a trusted link, they are led straight into the heart of the trap which is a cloned website controlled by the criminals. Everything looks familiar: the logo, the layout and the branding. But beneath this deceptive surface lies the true danger where on this fake site, the unsuspecting user might download malicious software or unknowingly hand over sensitive information, from login credentials to payment details (Arad, 2023). [ABSTRACT FROM AUTHOR]

Published

2024

18. Strengthening Cyber Defense: It's time to resurrect information system security in the Marine Corps.

Author

Stokes, Paul L. and White, Robert C.

Subjects

CAREER development, SYSTEM administrators, SOCIAL engineering (Fraud), CYBERSPACE operations (Military science), MARINES, FORENSIC psychiatry, DATA security

Published

2024

19. 10 tips to help avoid wire fraud scams.

Author

Ference, Sarah Beckett

Subjects

SOCIAL engineering (Fraud), REMOTE access networks, FRAUDULENT conveyances, VIRTUAL private networks, COMPUTER crimes, MALPRACTICE insurance

Abstract

Wire transfer fraud, particularly through business email compromise, poses a risk to CPA firms. In this type of fraud, a fraudster impersonates a trusted individual and sends a fake email to someone at the firm, requesting a wire transfer. The email may reference a legitimate debt or invoice but provide altered account information. The recipient may not notice the subtle clues and unknowingly send the money to the fraudster's account. To protect themselves, CPA firms should implement data security protocols, educate personnel about data security risks, test their ability to identify cybercrimes, use secure methods to communicate with clients, agree on payment protocols in advance, require clients to implement their own security measures, mandate dual authentication for all payments, involve more than one person in payment transactions, be cautious of sudden or emergency payment requests, and take immediate action if a fraud occurs. [Extracted from the article]

Published

2024

20. BEWARE: Growing Cyberthreats.

Author

HARRIS, ANDREW and HEADINGTON, ERIC

Subjects

SOCIAL engineering (Fraud), CAREER development, INFORMATION technology management, TELECOMMUTING, MALWARE

Abstract

The article "BEWARE: Growing Cyberthreats" highlights the increasing cybersecurity risks faced by industrial facilities due to the integration of technology in building management. Cybercriminals exploit vulnerabilities in facility defenses, such as interconnected networks and human vulnerabilities, to launch attacks. The article emphasizes the importance of conducting cybersecurity risk assessments, implementing immediate cybersecurity measures, and involving stakeholders to enhance facility defenses against cyberthreats. It also underscores the need for ongoing maintenance and cybersecurity drills to safeguard against evolving cyber risks in complex building environments. [Extracted from the article]

Published

2024

21. TOWARD A MORE FANTASTIC PLASTIC.

Author

Thompson, Clive

Subjects

SINGLE-use plastics, CHEMICAL recycling, SOCIAL engineering (Fraud), FOOD containers, EXECUTIVES, BEVERAGE container recycling, PLASTIC scrap

Abstract

The article explores the issue of single-use plastics and presents potential solutions. It discusses the use of compostable materials, reusable containers, and improved plastic recycling as alternatives to single-use plastics. The article also introduces the concept of using seaweed to create bioplastics, which have a lower environmental impact. It highlights the efforts of companies like Sway and Infinitum, who are working on developing sustainable alternatives and implementing recycling systems. The article emphasizes the importance of policy support and regulation in achieving widespread adoption of these solutions. [Extracted from the article]

Published

2024

22. HACKING HUMANS.

Author

JESSUP, TOBY

Subjects

*SOCIAL engineering (Fraud), *RESEARCH personnel, *DATA security, *COMPUTER crimes, *COMPUTER hacking

Abstract

The article "Quantum-Proof Secrets" discusses the race among researchers to develop strategies to protect against the potential threat of quantum computers breaking essential forms of cryptography. The author suggests that while attacking encryption systems is challenging for criminals, social engineering exploits, such as tricking employees or artificial intelligence agents, remain the preferred method for cybercrimes. The article emphasizes the importance of considering future data-security risks and thinking like a criminal to enhance data protection. [Extracted from the article]

Published

2024

23. XAI-PhD: Fortifying Trust of Phishing URL Detection Empowered by Shapley Additive Explanations.

Author

Al-Fayoumi, Mustafa, Alhijawi, Bushra, Al-Haija, Qasem Abu, and Armoush, Rakan

Subjects

SOCIAL engineering (Fraud), PHISHING, ARTIFICIAL intelligence, CYBERTERRORISM, MACHINE learning

Abstract

The rapid growth of the Internet has led to an increased demand for online services. However, this surge in online activity has also brought about a new threat: phishing attacks. Phishing is a type of cyberattack that utilizes social engineering techniques and technological manipulations to steal crucial information from unsuspecting individuals. Consequently, there is a rising necessity to create dependable phishing URL detection models that can effectively identify phishing URLs with enhanced accuracy and reduced prediction overhead. This study introduces XAI-PhD, an innovative phishing detection method that utilizes machine learning (ML) and Shapley additive explanation (SHAP) capabilities. Specifically, XAI-PhD utilizes SHAP to thoroughly analyze the significance of each feature in influencing the decision-making process of the classifier. By selectively incorporating input characteristics based on their SHAP values, only the most crucial attributes are assessed, enabling the development of a highly adaptable and generalized model. XAI-PhD utilizes a lightweight gradient boosting machine as its classifier, and a series of rigorous tests are conducted to assess its performance compared to established baseline methods. The empirical findings unequivocally demonstrate the exceptional effectiveness of XAI-PhD, as evidenced by its remarkable accuracy and F1-score of 99.8% and 99%, respectively. Moreover, XAI-PhD exhibits high computational efficiency, requiring only 1.47 milliseconds and 18.5 microseconds per record to generate accurate predictions. [ABSTRACT FROM AUTHOR]

Published

2024

24. Evidence-based social science: why, what, and future implications.

Author

Yang, Wendeng

Subjects

SOCIAL engineering (Fraud), SCIENTIFIC knowledge, SOCIAL engineering (Political science), PHRONESIS, WISDOM, FREE will & determinism, POSSIBILITY, AUTONOMY (Psychology)

Abstract

Mankind has always relied on "practical wisdom" in the sense of Aristotle to change people and society. However, practical wisdom is difficult to accumulate and pass on from generation to generation. Therefore, although "natural engineering" that is consistent with "natural technology" can be used effectively to transform the natural world, using "practical wisdom" to change people and society remains difficult. Solving this dilemma requires an effective means to separate "social science", "social technology", and "social engineering" to accumulate and inherit "knowledge of changing people and society" similar to other types of scientific knowledge. Today, the prevailing evidence-based social science is the opposition and unity of laws of nature and free will, truth-seeking and goodness-pursuing, individual wisdom and collective wisdom, autonomy and supervision, the universal and the special in practice. The emergence of this concept allows for the possibility to enhance the effectiveness of social science practice. [ABSTRACT FROM AUTHOR]

Published

2024

25. Jijiji, Jajaja, Sabotaje y Campaña Sucia: WhatsApp en las Elecciones Presidenciales Chilenas de 2021.

Author

SANTOS, Marcelo, VALDEBENITO ALLENDES, Jorge, and ORTIZ FUENTES, Jorge Luis

Subjects

*SOCIAL engineering (Fraud), *SOCIAL engineering (Political science), *DISINFORMATION, *PRESIDENTIAL elections, *POLITICAL communication

Abstract

This research examines the ‘dirty politics’ between opposing and antagonistic poles during Chile’s 2021 presidential election. It analyses data from public messaging groups on WhatsApp, using computational methods, qualitative analysis, and an interview with a key informant from one of the candidates’ campaigns. The results point to ‘dirty’ tactics, such as disinformation and social engineering, but also to technical sabotage, with deliberate obstruction of campaign groups, mainly from the right against the left. [ABSTRACT FROM AUTHOR]

Published

2024

26. A novel deep learning model-based optimization algorithm for text message spam detection.

Author

Das, Lipsa, Ahuja, Laxmi, and Pandey, Adesh

Subjects

*SPAM email, *OPTIMIZATION algorithms, *DEEP learning, *TEXT messages, *SOCIAL engineering (Fraud), *CONVOLUTIONAL neural networks, *WORD frequency, *PHISHING

Abstract

Mobile texting has increased social engineering assaults like phishing. Because spam, or unsolicited text messages, spread phishing attempts that steal personal information. Traditional methods of spam detection, often based on statistical models or human rule-based systems, have difficulties in keeping up with the growing complexity of spamming strategies. Gathering pertinent data from social networks is a challenging task, mostly due to the limits imposed by privacy concerns and time constraints. The inefficiency and time-consuming nature of conventional frequency-based techniques to word encoding are generally recognized. Text classification has shown promising outcomes with the use of word embeddings and deep learning techniques. The proposed approach involves integrating deep learning with the Remora optimization algorithm framework (DL–ROA) to autonomously extract intricate patterns and nuanced information from text messages. The system's capacity to adapt to new spamming strategies enhances the DL–ROA. The proposed technique improves the accuracy of detection while reducing the inefficiency and time required to create contextual word vectors based on word frequency. Spam detection is achieved by using a hybrid deep model that combines long short-term memory (LSTM) and deep convolutional neural networks (DCNN) architectures. Empirical data demonstrate that the DL–ROA technique surpasses existing deep learning models in terms of accuracy, f1-score, and recall. In addition, the DL–ROA achieved an unprecedented accuracy rate of 98.25%. [ABSTRACT FROM AUTHOR]

Published

2024

27. Toward a Hybrid Approach Combining Deep Learning and Case-Based Reasoning for Phishing Email Detection.

Author

Remmide, Mohamed Abdelkarim, Boumahdi, Fatima, and Boustia, Narhimene

Subjects

*ARTIFICIAL intelligence, *SOCIAL engineering (Fraud), *KNOWLEDGE representation (Information theory), *CASE-based reasoning, *PHISHING, *DEEP learning

Abstract

Phishing attacks are increasing every year, both in terms of number and technique. Using only human weaknesses, an attacker can easily obtain the victim's credentials or access their network. The problem persists despite many approaches offered by researchers, due to its dynamic nature, in which new phishing tactics are created every time. We, therefore, need more robust and effective methods to detect phishing emails. In this paper, we aim to detect phishing emails using the body text of the email with the hybrid approach combining case-based reasoning (CBR) and a deep learning model. Our proposed model, called DL-CBR, consists of a Bidirectional Long Short-Term Memory (Bi-LSTM) + Temporal Convolutional Network (TCN) network with an attention mechanism followed by a CBR classifier. The deep learning model is used for email representation, where it is trained using the N -pair loss function. To demonstrate the performance of DL-CBR, evaluation metrics, such as precision, accuracy, recall, and F-measure, were used, where we obtained an accuracy of 98.28%. The results show that our model outperformed other CBRs that utilize classical text representations like TF-IDF and Bag-of-Words. Additionally, while our model's performance is slightly below that of the state-of-the-art models, it offers several advantages inherent to CBR. For instance, it can learn from new cases and update their database accordingly. [ABSTRACT FROM AUTHOR]

Published

2024

28. Telling a Scientific Story and Governing the Population: the Kallikak Story and the Historical Mutations of the Eugenic Discourse.

Author

Axelsson, Thom and Qvarsebo, Jonas

Subjects

*STORYTELLING, *LITERARY characters, *SOCIAL engineering (Fraud), *HISTORY of psychology, *DISCOURSE, *TWENTIETH century

Abstract

In this article, we follow the trails of 20th-century psychologist Henry Herbert Goddard's influential study of the Kallikak family. Goddard's study is treated as a scientific story with two interlocking dimensions: One is the actual story of the Kallikak family, with literary elements such as setting, plot, and characters. The other dimension is the broader eugenic discourse, a powerful scientific narrative that calls for action in relation to society and the population. The purpose of the article is twofold. Firstly, to analyze the forming and articulations of this story and to explore some of the consequences for governing the population that it has made possible. Secondly, to explore some aspects of what a Foucauldian analytics of government can contribute with in relation to Goddard's work and the eugenic discourse from the early 20th century to today. [ABSTRACT FROM AUTHOR]

Published

2024

29. A Survey: Security Vulnerabilities and Protective Strategies for Graphical Passwords.

Author

Saadi, Zena Mohammad, Sadiq, Ahmed T., Akif, Omar Z., and Farhan, Alaa K.

Subjects

SOCIAL engineering (Fraud), LITERATURE reviews, COMPUTER vision, CYBERTERRORISM, REVERSE engineering, COMPUTER passwords

Abstract

As technology advances and develops, the need for strong and simple authentication mechanisms that can help protect data intensifies. The contemporary approach to giving access control is through graphical passwords comprising images, patterns, or graphical items. The objective of this review was to determine the documented security risks that are related to the use of graphical passwords, together with the measures that have been taken to prevent them. The review was intended to present an extensive literature review of the subject matter on graphical password protection and to point toward potential future research directions. Many attacks, such as shoulder surfing attacks, SQL injection attacks, and spyware attacks, can easily exploit the graphical password scheme, which is one of the most widely used. To counter these security threats, several measures have been suggested, but none of the security attacks can be completely overcome. Each of the proposed measures has its pros and cons. This study begins by elucidating some of the graphical password schemes studied between 2012 and 2023, delving into potential threats and defense mechanisms associated with these schemes. Following a thorough identification and selection process, five of the reviewed papers explain the threat of shoulder surfing and spyware attacks on graphical password schemes, while two explain the threat of brute force attacks. One paper focuses on dictionary attacks, while four other papers address social engineering, SQL injection attacks, and guessing attacks as potential threats to graphical password schemes. In addition, the papers recognize other forms of attacks, such as video recording attacks, filtering attacks, reverse engineering attacks, multiple observation attacks, key/mouse logger attacks, insider attacks, computer vision attacks, image gallery attacks, sonar attacks, reply attacks, data interception attacks, and histogram manipulation attacks. These attacks are examined in three, three, eight, one, four, one, one, one, one, one, one, and one papers, respectively. Moreover, out of all such countermeasures, most of them are based on three categories—randomization, obfuscation, and password space complexity—which are the most commonly employed strategies for improving graphical password schemes. [ABSTRACT FROM AUTHOR]

Published

2024

30. Leveraging history to invoke nationalism: from the annals of history to social engineering of present and future in Hindi cinema.

Author

Iyer, Jyotsna B. and Das, Saurabh

Subjects

*SOCIAL engineering (Fraud), *SOCIAL history, *SOCIAL engineering (Political science), *HINDI films, *CRITICAL discourse analysis, *NATIONALISM, *NARRATIVE discourse analysis

Abstract

Nationalism calls for one’s loyalty and affiliation towards their chosen nation. Various versions of nationalism emphasise that one must prioritise said nation above themselves and their personal ethics, hence, allowing the nation to overpower the nationalist’s individuality. In this article, we use Critical Discourse Analysis to deconstruct the narratives of nationalism as portrayed in two popular films, viz. The Kashmir Files and Uri: The Surgical Strike, which are based on real historical events – the exodus of Kashmiri Hindus and the surgical strike by the Indian Army in retaliation to the Uri attack. Both films use narrative strategies to frame key historical events into certain ideological contexts, and hence they serve the populist purpose of swaying viewers’ opinion in favour of the dominant socio-political class. [ABSTRACT FROM AUTHOR]

Published

2024

31. Engineering concepts by engineering social norms: solving the implementation challenge.

Author

Nimtz, Christian

Subjects

*SOCIAL engineering (Fraud), *SOCIAL engineering (Political science), *SOCIAL norms, *MORAL norms, *ENGINEERING

Abstract

The classic programme of conceptual engineering (Cappelen, Herman. 2018. Fixing Language: An Essay on Conceptual Engineering. Oxford: Oxford University Press; Eklund, Matti. 2021. "Conceptual Engineering." In The Routledge Handbook of Social and Political Philosophy of Language, edited by Justin Khoo, and Rachel Sterken, 15–30. London: Routledge) envisages a two-stage ameliorating process. First, we assess 'F' and determine what the term should express. Second, we bring it about that 'F' expresses what it should express. The second stage gives rise to a practical challenge: the implementation challenge. Engineering advocates need to explain by what means they can implement specific conceptual changes in the natural language shared by a community – a feat Herman Cappelen (2018. Fixing Language: An Essay on Conceptual Engineering. Oxford: Oxford University Press, 2020; "Conceptual Engineering: The Master Argument." In Conceptual Engineering and Conceptual Ethics, edited by Alexis Burgess, Herman Cappelen, and David Plunkett, 132–151. Oxford: Oxford University Press) argues to be beyond our understanding and control both on an externalist and on an internalist meta-semantics. I devise a new answer to the implementation challenge. Enlisting the influential theory of social norms by Cristina Bicchieri, I argue that engineering social norms in Bicchieri's technical sense amounts to an effective, specific, and feasible means to implement specific conceptual change, at least on internalist premises. I also argue that Bicchieri's social norms are an essential addition to the more familiar conventions and moral norms when it comes to conceptual engineering. [ABSTRACT FROM AUTHOR]

Published

2024

32. Aspek Pelindungan Hukum Atas Data Pribadi Nasabah pada Penyelenggaraan Layanan Mobile Banking pada PT. Bank Rakyat Indonesia Cabang Stabat.

Author

Tanjung, Riza Diandra and Nurhilmiyah

Subjects

DATA protection, BANKING industry, INFORMATION technology, SOCIAL engineering (Fraud), INFORMATION technology security

Abstract

Copyright of Jurnal Ilmu Hukum, Humaniora dan Politik (JIHHP) is the property of Dinasti Publisher and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)

Published

2024

33. A BIZTONSÁG MEGJELENÉSE A HUMÁN TUDOMÁNYOKBAN (2. RÉSZ).

Author

Csaba, KOLLÁR

Subjects

SOCIAL engineering (Fraud), CONSCIOUSNESS raising, SOCIAL interaction, SOCIAL influence, INTERNATIONAL security

Abstract

Copyright of Safety & Security Sciences Review / Biztonságtudományi Szemle is the property of Obuda University and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)

Published

2024

34. From Humble Beginnings: How the CISO Role Has Evolved.

Author

VASQUEZ, BRIAN

Subjects

INFORMATION resources management, HEALTH Insurance Portability & Accountability Act, SENIOR leadership teams, SOCIAL engineering (Fraud)

Abstract

The text explores the evolution of the Chief Information Security Officer (CISO) role in the cybersecurity field. It emphasizes the expanding responsibilities of CISOs, including technological defense strategies, regulatory compliance, and strategic alignment with business objectives. The text also provides best practices and strategies for modern CISOs, such as aligning cyberrisk management with strategic objectives and embedding it in the organization's governance structure. It concludes by highlighting the ongoing challenges faced by CISOs, including the sophistication of cyberthreat actors and diverse regulatory frameworks. [Extracted from the article]

Published

2024

35. Phishing Attacks Detection Using Ensemble Machine Learning Algorithms.

Author

Innab, Nisreen, Osman, Ahmed Abdelgader Fadol, Ataelfadiel, Mohammed Awad Mohammed, Abu-Zanona, Marwan, Elzaghmouri, Bassam Mohammad, Zawaideh, Farah H., and Alawneh, Mouiad Fadeil

Subjects

SOCIAL engineering (Fraud), INTERNET fraud, ARTIFICIAL intelligence, PHISHING, RANDOM forest algorithms

Abstract

Phishing, an Internet fraud where individuals are deceived into revealing critical personal and account information, poses a significant risk to both consumers and web-based institutions. Data indicates a persistent rise in phishing attacks. Moreover, these fraudulent schemes are progressively becoming more intricate, thereby rendering them more challenging to identify. Hence, it is imperative to utilize sophisticated algorithms to address this issue. Machine learning is a highly effective approach for identifying and uncovering these harmful behaviors. Machine learning (ML) approaches can identify common characteristics in most phishing assaults. In this paper, we propose an ensemble approach and compare it with six machine learning techniques to determine the type of website and whether it is normal or not based on two phishing datasets. After that, we used the normalization technique on the dataset to transform the range of all the features into the same range. The findings of this paper for all algorithms are as follows in the first dataset based on accuracy, precision, recall, and F1-score, respectively: Decision Tree (DT) (0.964, 0.961, 0.976, 0.968), Random Forest (RF) (0.970, 0.964, 0.984, 0.974), Gradient Boosting (GB) (0.960, 0.959, 0.971, 0.965), XGBoost (XGB) (0.973, 0.976, 0.976, 0.976), AdaBoost (0.934, 0.934, 0.950, 0.942), Multi Layer Perceptron (MLP) (0.970, 0.971, 0.976, 0.974) and Voting (0.978, 0.975, 0.987, 0.981). So, the Voting classifier gave the best results. While in the second dataset, all the algorithms gave the same results in four evaluation metrics, which indicates that each of them can effectively accomplish the prediction process. Also, this approach outperformed the previous work in detecting phishing websites with high accuracy, a lower false negative rate, a shorter prediction time, and a lower false positive rate. [ABSTRACT FROM AUTHOR]

Published

2024

36. Exploiting vulnerabilities.

Author

Breen, Megan

Subjects

SOCIAL engineering (Fraud), CONTRACTS, INFORMATION technology, MULTI-factor authentication, COMPUTER security vulnerabilities, ENTERPRISE resource planning

Abstract

The article discusses the cyber attack tactics of a hacker group called Muddled Libra, which targets IT help desks and uses social engineering techniques to gain access to organizations' systems and data. The group has been linked to high-profile attacks on companies such as MGM Resorts and Caesars Entertainment. The article emphasizes the importance of vigilance, educating employees on cybersecurity, and implementing strong password policies and multifactor authentication. It also highlights the need for organizations to take proactive measures to protect their networks and integrate social engineering awareness training into employee security education programs. [Extracted from the article]

Published

2024

37. Fintech Fraud Detection and Prevention.

Author

Antony, Alphy

Subjects

SOCIAL engineering (Fraud), ELECTRONIC funds transfers, CREDIT card fraud, FINANCIAL inclusion, INFORMATION technology, CRYPTOCURRENCIES

Published

2024

38. WHO INVENTED THE SO-CALLED "MOLDAVIAN LANGUAGE"? THE OBJECTIVES AND THE PERPETRATORS BEHIND THE INVENTION AND WEAPONIZATION OF THE SO-CALLED "MOLDAVIAN" AND "VLACH" LANGUAGES.

Author

BLĂNARU, MATEI

Subjects

SOCIAL engineering (Fraud), MASSACRES, NATIONAL character, BIRTH certificates, SOCIAL engineering (Political science), PSEUDOSCIENCE

Abstract

The so-called "Moldavian language", invented by the Soviets in the 1920s, was just another instrument for the Soviet effort trying to assimilate people and to erase national identities, in order to make room for the "Soviet identity". The Gulags, the massacres, the deportations and assassinations were not enough to "convince" people to embrace the new Soviet identity, the Soviet Communists needed pseudo-science as well. But the so-called "Moldavian language" was more than just another Soviet social engineering, it was an integrate part of a geopolitical strategy aimed at dismembering Romania and at conquering more of Central and South-Eastern Europe. This explicit anti-Romanian and geopolitical objective was written down by the Soviets in the very birth certificate of the "Moldavian language" in 1924, and it was copied by Serbian authorities after WW2, trying to invent a "Vlach language" for the Romanian minority in Serbia. Neither Russia, nor Serbia have yet abandoned these efforts. [ABSTRACT FROM AUTHOR]

Published

2024

39. Book Review: A Social Philosophy of Science: An Introduction.

Author

Schmidt, Jan Cornelius

Subjects

*SOCIAL theory, *PHILOSOPHY of science, *NATURALISM, *POWER (Philosophy), *HUMANISTIC psychology, *TRADITION (Philosophy), *SOCIAL engineering (Fraud), *POLITICAL philosophy

Abstract

Ilya Kasavin's book, "A Social Philosophy of Science: An Introduction," explores the role of philosophy in society and its impact on science and technology studies (STS) and social epistemology. Kasavin argues that philosophy should not be confined to academia but should have a broader influence on society. He also identifies conceptual gaps in social epistemology and STS, suggesting that they could benefit from a philosophical approach. The book is divided into three parts, covering topics such as epistemology, the social turn in the history and philosophy of science, and the intersections of science, technology, and policy. Kasavin's work emphasizes the importance of interdisciplinary communication and the need for a political philosophy of science. Overall, the book offers a thought-provoking and timely perspective on the societal and political role of philosophy in the context of science and technology. [Extracted from the article]

Published

2024

40. “The highest in each class was a twilight baby”: scientific motherhood, twilight sleep and the eugenics movement in McClure’s Magazine.

Author

Sanderson, Jerika and Love, Heather A.

Subjects

SCIENTIFIC knowledge, WOMEN'S sexual behavior, SLEEP, SOMNOLOGY, SOCIAL engineering (Fraud), YOUNG women, CRYING, DESIRE

Published

2024

41. Using machine learning algorithms to predict individuals' tendency to be victim of social engineering attacks.

Author

Huseynov, Farid and Ozdenizci Kose, Busra

Subjects

SOCIAL engineering (Fraud), PSYCHOLOGICAL techniques, SOCIAL engineering (Political science), PERSONALITY, SOCIAL action, MACHINE learning

Abstract

In information security context, social engineering is defined as malicious activities caused by cybercriminals by means of human interactions. It is mainly a psychological manipulation technique which gets benefit of human error to reach private information. This study used machine learning algorithms to predict individuals' susceptibility to be tricked by social engineering attacks. Simulated scenarios were presented to study participants, and they were asked to identify whether each scenario was a social engineering attack or not. Different kinds of attacks related to various industries were integrated to social engineering simulations. For each participant, different types of social engineering scores were calculated according to their responses. Besides simulations, questionnaires related to demographics, technology usage, and personality traits were filled out by the participants. All of these collected data were used in building predictive classification and regression machine learning models. Through regression and classification models, it was aimed to proactively predict individuals' social engineering risk levels and classify them into different risk groups in terms of different attack types. This research revealed that it is possible to predetermine the social engineering risk levels of individuals. This important finding means that possible attacks can be prevented by raising awareness before the attack occurs. Within the scope of this study, a social engineering risk detection mobile application has also been developed to give practitioners and policy makers an idea of what kind of systems can be developed in order to determine the risk levels of individuals and then to educate them about various attacks. The ones who need to take action against social engineering attacks will get benefit from findings of this research. [ABSTRACT FROM AUTHOR]

Published

2024

42. A robust approach to authorship verification using siamese deep learning: application in phishing email detection.

Author

Remmide, Mohamed Abdelkarim, Boumahdi, Fatima, Ammar Aouchiche, Imane Rebeh, Guendouz, Amina, and Boustia, Narhimene

Subjects

DEEP learning, PHISHING, EMAIL security, SOCIAL engineering (Fraud), AUTHORSHIP, CYBERCRIMINALS

Abstract

Given the rapid and significant increase in email data, it is crucial for both individuals and organisations to prioritise the implementation of strong cybersecurity measures to combat attacks such as phishing emails. While continuous research has been made to find the most efficient approach to combating phishing emails, cybercriminals on the other hand continue to be determined, and their techniques become more and more sophisticated. In this paper, we present a novel approach for email classification using a Siamese deep learning network in order to verify authorship. We used the writing style and behavioural characteristics of the authors in this approach to identify the true source of emails and classify them as phishing, legitimate, harassment, or suspicious. This model was evaluated on the SeFACED dataset, where it received an accuracy of 90,12%, showcasing its efficacy in classifying emails, which enhanced email security and contributed to a safer online environment. [ABSTRACT FROM AUTHOR]

Published

2024

43. Cybersecurity: Safeguarding the digital landscape.

Author

Kaur, Kiranjeet and Batth, Jaspreet Singh

Subjects

*SOCIAL engineering (Fraud), *DIGITAL technology, *INTERNET security, *RIGHT of privacy, *CYBERTERRORISM, *FIREWALLS (Computer security), *COMPUTER crime prevention

Abstract

This paper examines the crucial subject of cyber security and its relevance in the current digital age. With the accelerated development of technology and interconnection, it is now more important than ever to guard against cyber attacks. The article gives a general overview of cyber security, including its meaning and value in protecting people, businesses, and societyat large. It explores a range of cyber threats, including insider threats, phishing scams, and malware assaults. The study then addresses crucial cyber security elements, such as identity and access management, network security, data protection, and application security. It looks at the techniques and recommendations used to improve cyber security, including encryption, firewalls, secure coding techniques, and incident response strategy. The study also examines recent developments in cyber security, such as IoT security, cloud security, and privacy laws. It addresses social engineering assaults and the significance of user education and awareness while emphasising the human element incyber security. The study also emphasizes the value of public-private partnerships, regulatory frameworks, and international collaboration in enhancing cyber security. Finally, it examines the field's potential future developments, including automation, threat intelligence, and ethical issues. In order to effectively address cyber threats, the study emphasizes the dynamic nature of cyber security and the necessity for continual awareness and agility. [ABSTRACT FROM AUTHOR]

Published

2024

44. The challenges of cyber space with crime-as-a-service (CAAS) to amateur attackers.

Author

Chandhar, Kothakonda, Kandukuri, Shashikanth, Shiva, Jangalapelli, and Sandeep, Achi

Subjects

*SOCIAL engineering (Fraud), *PHISHING, *DEBIT cards, *CREDIT cards, *EMAIL security

Abstract

Phishing is a type of attack that is often used to steal user data, including personal login credentials, debit cards, or credit card numbers. For hackers, phishing is an easy way to find and track any person's information or company data. In general, an effective phishing campaign requires a well-prepared cybercriminal with technical expertise and social engineering knowledge. However, with the rise of CaaS (Crime-as a-Service), anyone can become an expert in phishing for a little charge. CaaS vendor offer everything the amateur attacker needs to make their own effective phishing attack, from point-by-point target records to marked email formats. Intruders can even pay amount for access to compromised servers to conceal their tracks all the more without any problem. By eliminating large number of barriers to entry, this type of trend has made it simple to make a compelling phishing attack. And that is a major issue for the associations being targeted. [ABSTRACT FROM AUTHOR]

Published

2024

45. RWANDA.

Subjects

*WETLANDS, *CAPITAL cities, *HOUSING, *CITY dwellers, *QUALITY of life, *SOCIAL engineering (Fraud), *NATURE reserves

Abstract

This article provides an overview of Rwanda's development since the 1994 genocide. It highlights the progress made in reducing poverty, improving healthcare, and increasing primary school enrollment. However, concerns are raised about the government's control over critics and low rankings on the Global Freedom Score Index. The challenges faced by the country include limited land resources, scarcity of affordable housing, and threats to biodiversity due to rapid urbanization. The government aims to transform Rwanda into a middle-income country by 2035 through infrastructure development and a shift to a knowledge-based economy. Efforts are also being made to address overpopulation and gender disparities in land ownership. While progress has been made, the future of Rwanda's development remains uncertain. [Extracted from the article]

Published

2024

46. Conquering the Security Trifecta: Top CISO Concerns and some actionable recommendations.

Author

Ghatak, Aanchal

Subjects

RANSOMWARE, SOCIAL engineering (Fraud), CHIEF information officers, SECURITY management, INFORMATION technology security

Abstract

The article discusses the top concerns of Chief Information Security Officers (CISOs) and provides actionable recommendations to address these concerns. CISOs face a range of threats, from cyber-attacks to the expanding attack surface created by cloud adoption and remote workforces. User awareness and training programs are crucial to combat phishing scams and social engineering tactics. CISOs also need to navigate complex regulatory landscapes and prioritize data governance. Balancing security with operational efficiency is essential, and incident response plans and budget constraints must be considered. The article provides specific recommendations for addressing user awareness, talent shortage, data governance, and specific threats like legacy systems and AI-powered phishing attacks. Implementing solutions such as SIEM and EDR systems can enhance threat detection and response. The article emphasizes the importance of a collaborative approach and continuous adaptation to achieve a secure future. [Extracted from the article]

Published

2024

47. BFSI and Security: Will The Wine Glass Stay?

Author

H., Pratima

Subjects

RANSOMWARE, WINE glasses, EMAIL security, SOCIAL engineering (Fraud), DATA privacy, GENERATIVE artificial intelligence, CYBERTERRORISM

Abstract

This article emphasizes the importance of cybersecurity in the BFSI sector, specifically in banking, financial services, and insurance. It highlights the need for collaboration and collective intelligence to protect sensitive data in the digital age. The article mentions the increase in cyberattacks and ransomware incidents, and the growing spending on cybersecurity in the BFSI industry. It suggests that sharing threat intelligence among industry and government organizations is crucial for effective defense against cyber threats. The article also discusses the role of cyber insurance in reducing the financial impact of data breaches. It addresses the rise of insider attacks and malicious threats driven by financial gain, particularly in the financial services sector in India. The article suggests that organizations can address these risks through employee training programs, security awareness campaigns, and the use of advanced technologies. Prioritizing technology, processes, and people is crucial to reduce the likelihood of data loss and disruption from cyberattacks. [Extracted from the article]

Published

2024

48. HOW DO YOU KNOW IF YOU'VE BEEN.

Author

Rawlinson, Nik

Subjects

COMPUTER passwords, SOCIAL engineering (Fraud), COMPUTER network traffic, COMPUTER security

Abstract

This article from Maximum PC discusses the signs of a cyberattack and provides recommendations for identifying and resolving attacks quickly. It emphasizes that cyberattacks are often discreet and do not come with obvious signs like in movies. The article suggests taking preventive measures such as using strong passwords, enabling two-factor authentication, and keeping devices updated. It also discusses the use of SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation, and Response) systems to detect and respond to intrusions. The article concludes by emphasizing the importance of being prepared and having a plan of response in case of an attack. [Extracted from the article]

Published

2024

49. Opening to the Joy of Work.

Author

DUERR, MAIA

Subjects

JOY, SOCIAL engineering (Fraud), GOLD mining

Abstract

This article from Buddhadharma explores the concept of right livelihood and offers six keys for cultivating qualities and conditions for joyful and sustainable work. The author shares personal experiences of her father's dissatisfaction with his job and the negative impact it had on his well-being. The article discusses the potential for work to be a source of stress and suffering, but also highlights the opportunity for work to be a place for dharma practice and meaningful contribution. It examines the complexities of modern work and suggests that right livelihood should not only avoid harm but also be grounded in nourishment, self-care, and the expression of one's gifts. The article concludes by emphasizing the importance of worker sovereignty and providing examples of cooperative models that prioritize the well-being and participation of workers. [Extracted from the article]

Published

2024

50. DEVELOPMENT OF A MODEL OF THE INFORMATION AND ANALYTICAL SYSTEM FOR MAKING DECISIONS ON DETECTING FAILURES OF INFORMATION TRANSMISSION CHANNELS.

Author

Shmatko, Olexander, Yevseiev, Serhii, Milov, Oleksandr, Sporyshev, Kostyantyn, Opirskyy, Ivan, Glukhov, Sergey, Rudenko, Yevhen, Nalyvaiko, Andrii, Dakov, Serhii, and Sampir, Oleksandr

Subjects

INFORMATION storage & retrieval systems, SOCIAL engineering (Fraud), DECISION making, SOCIAL integration, SOCIAL engineering (Political science)

Abstract

The object of the research is the channels of information transmission during the control of the information-analytical decision-making system. The development of high technologies and computing capabilities ensures the evolutionary development of smart technologies and socio-cyber-physical systems on the one hand. On the other hand, it forms the integration of targeted (mixed) attacks with the possibility of integration with social engineering methods. In addition, mobile technologies significantly increase the possibilities of data transmission speed. However, this only provides the authentication service, which does not provide a full range of security services. Under such conditions, an urgent task at the decision-making stage is the use of auxiliary systems that ensure the adequacy of decisions and the promptness of their adoption. The proposed mathematical model of the information and analytical system allows to calculate the main technical characteristics of information transmission channels and identify their possible failures. The use of an information and analytical system simplifies the decision-making process, allows to increase the reliability of such decisions due to an increase in the level of automation. Increasing the level of automation in the decision-making process removes subjective factors and the decision depends on the availability of information. Therefore, the reliability of the information transmission channels of the information and analytical system significantly affects the quality of the decisions made. The developed model allows to ensure the required level of reliability of information transmission channels. The obtained results are explained by determining the dependence between the parameters of the information and analytical system and their influence on the quality of information transmission through channels. The results of the study can be used in practice when considering systems with a limited number of states during operation. [ABSTRACT FROM AUTHOR]

Published

2024