Naslov
Social Engineering Aspects of email Phishing: an Overview and Taxonomy
(Social Engineering Aspects of email Phishing: an Overview and Taxonomy)

Autori
Tomičić, Igor

Vrsta, podvrsta i kategorija rada
Radovi u zbornicima skupova, cjeloviti rad (in extenso), znanstveni

Izvornik
MIPRO 2023 Proceedings / Skala, Karolj - Opatija : Hrvatska udruga za informacijsku i komunikacijsku tehnologiju, elektroniku i mikroelektroniku - MIPRO, 2023, 1391-1397

Skup
46th ICT and Electronics Convention, MIPRO 2023

Mjesto i datum
Opatija, Hrvatska, 22.05.2023. - 26.05.2023

Vrsta sudjelovanja
Predavanje

Vrsta recenzije
Međunarodna recenzija

Ključne riječi
social engineering ; email ; phishing ; taxonomy

Sažetak
Numerous online resources and reports are pointing to the growing effectiveness of email phishing techniques, with some indicating that 85% of IT breaches involve the human element, and that 96% or social attacks arrive via email. Phishing is a common occurrence, and a significantly successful one. While most of the available research on phishing involves phishing detection, prevention, filtering, anti-phishing tools, techniques and countermeasures, the remaining body of research is tackling phishing and social engineering in (too) generic and broad contexts. This paper will propose a focused effort to identify the specific groups of techniques that attackers are using in email phishing and the principles running "behind the scenes" that make these attacks successful. Thus, the goal of this paper is threefold: (1) to propose a taxonomy of the observed email phishing techniques, (2) to associate the principles and factors of influence with observed techniques and shed light behind their effectiveness, and (3) to raise awareness and lay the groundwork for working on the model of human resilience against these manipulative forms of cyber attacks.

Izvorni jezik
Engleski

Znanstvena područja
Računarstvo, Informacijske i komunikacijske znanosti

POVEZANOST RADA