Systematic Review on Social Engineering: Hacking by Manipulating Humans
Open Access
- 1 January 2021
- journal article
- review article
- Published by Scientific Research Publishing, Inc. in Journal of Information Security
- Vol. 12 (01), 104-114
- https://doi.org/10.4236/jis.2021.121005
Abstract
Despite the availability of advanced security software and hardware mechanisms available, still, there has been a breach in the defence system of an organization or individual. Social engineering mostly targets the weakest link in the security system i.e. “Humans” for gaining access to sensitive information by manipulating human psychology. Social engineering attacks are arduous to defend as such attacks are not easily detected by available security software or hardware. This article surveys recent studies on social engineering attacks with discussion on the social engineering phases and categorizing the various attacks into two groups. The main aim of this survey is to examine the various social engineering attacks on individuals and countermeasures against social engineering attacks are also discussed.Keywords
This publication has 16 references indexed in Scilit:
- Social Engineering Threat and Defense: A Literature SurveyJournal of Information Security, 2018
- Panning for gold: Automatically analysing online social engineering attack surfacesComputers & Security, 2017
- Benchmarking a mobile implementation of the social engineering prevention training toolPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2017
- SOCIAL ENGINEERING AND CYBER SECURITYINTED Proceedings, 2017
- Mitigating social engineering for improved cybersecurityPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2015
- Advanced social engineering attacksJournal of Information Security and Applications, 2015
- Social engineering attack frameworkPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2014
- A Comprehensive Study of Social Engineering Based Attacks in India to Develop a Conceptual ModelInternational Journal of Information and Network Security (IJINS), 2012
- Social EngineeringInformation Resources Management Journal, 2011
- Helping the Hacker? Library Information, Security, and Social EngineeringInformation Technology and Libraries, 2006