Forum for Science, Industry and Business

Sponsored by:     3M 
Search our Site:

 

How we are tricked into into giving away our personal information

15.01.2009
We human beings don’t always do as we have been taught, and organizations are poorly prepared for IT security attacks that target human weaknesses.

Since it is difficult to change people’s behavior, it doesn’t help to provide training about how to behave securely. This is shown by Marcus Nohlberg in his dissertation at Stockholm University in Sweden in which he studied attacks that are called social engineering in IT contexts.

The concept of social engineering refers to the art of using social codes and knowledge of human behavior to get us to provide information or do things we should not do. A topical example happened very recently in Sweden, where people received calls from a person who purported to represent the IT office at their bank and asked them to identify themselves using their personal bank encoders. The attacker then used these codes to steal money from the victims’ accounts.

“I predicted a couple of years ago that this kind of attack would become common, especially account fraud,” says Marcus Nohlberg.

Despite the serious consequences, with many successful fraud attempts, this technique has received little attention among researchers. Marcus Nohlberg’s research has led to enhanced knowledge about what methods attackers use and what it is that makes people and organizations so vulnerable. Somewhat depressingly, Marcus Nohlberg’s research shows that information and training do not work as well as we think:

“There will always be a small group of people who do not do as they were taught. What’s more, it’s all too seldom that people undergo training in security issues in general. To change behavior, this is something that needs to be worked with constantly. The best thing is practical training, and it’s probable that organizations will need to start running internal checks where they in fact create fictitious attacks in order to identify weaknesses,” says Marcus Nohlberg.

Social engineering as a method of fraud is costly for the attacker since it requires commitment and time. However, software and technologies already exist that can interact with other people automatically:

“You can easily imagine how serious it will be when such programs target victims via digital forums like Facebook in the future. When it becomes just as simple as spreading spam, this will present a major threat to social activities on the Internet.”

In his research, Marcus Nohlberg presents a description of fraud crimes from the perspectives of victims, perpetrators, and defenders, but he also offers suggested measures for preventing attacks, based on his own experiences from controlled attacks.

Title of dissertation: Securing Information Assets -- Understanding, Measuring and Protecting against Social Engineering Attacks.

Maria Erlandsson | alfa
Further information:
http://www.su.se

More articles from Social Sciences:

nachricht New measure for the wellbeing of populations could replace Human Development Index
07.11.2018 | International Institute for Applied Systems Analysis (IIASA)

nachricht Because not only arguments count
30.10.2018 | Max-Planck-Institut für Mathematik in den Naturwissenschaften (MPIMIS)

All articles from Social Sciences >>>

The most recent press releases about innovation >>>

Die letzten 5 Focus-News des innovations-reports im Überblick:

Im Focus: Ten-year anniversary of the Neumayer Station III

The scientific and political community alike stress the importance of German Antarctic research

Joint Press Release from the BMBF and AWI

The Antarctic is a frigid continent south of the Antarctic Circle, where researchers are the only inhabitants. Despite the hostile conditions, here the Alfred...

Im Focus: Ultra ultrasound to transform new tech

World first experiments on sensor that may revolutionise everything from medical devices to unmanned vehicles

The new sensor - capable of detecting vibrations of living cells - may revolutionise everything from medical devices to unmanned vehicles.

Im Focus: Flying Optical Cats for Quantum Communication

Dead and alive at the same time? Researchers at the Max Planck Institute of Quantum Optics have implemented Erwin Schrödinger’s paradoxical gedanken experiment employing an entangled atom-light state.

In 1935 Erwin Schrödinger formulated a thought experiment designed to capture the paradoxical nature of quantum physics. The crucial element of this gedanken...

Im Focus: Nanocellulose for novel implants: Ears from the 3D-printer

Cellulose obtained from wood has amazing material properties. Empa researchers are now equipping the biodegradable material with additional functionalities to produce implants for cartilage diseases using 3D printing.

It all starts with an ear. Empa researcher Michael Hausmann removes the object shaped like a human ear from the 3D printer and explains:

Im Focus: Elucidating the Atomic Mechanism of Superlubricity

The phenomenon of so-called superlubricity is known, but so far the explanation at the atomic level has been missing: for example, how does extremely low friction occur in bearings? Researchers from the Fraunhofer Institutes IWM and IWS jointly deciphered a universal mechanism of superlubricity for certain diamond-like carbon layers in combination with organic lubricants. Based on this knowledge, it is now possible to formulate design rules for supra lubricating layer-lubricant combinations. The results are presented in an article in Nature Communications, volume 10.

One of the most important prerequisites for sustainable and environmentally friendly mobility is minimizing friction. Research and industry have been dedicated...

All Focus news of the innovation-report >>>

Anzeige

Anzeige

VideoLinks
Industry & Economy
Event News

Our digital society in 2040

16.01.2019 | Event News

11th International Symposium: “Advanced Battery Power – Kraftwerk Batterie” Aachen, 3-4 April 2019

14.01.2019 | Event News

ICTM Conference 2019: Digitization emerges as an engineering trend for turbomachinery construction

12.12.2018 | Event News

 
Latest News

Additive manufacturing reflects fundamental metallurgical principles to create materials

18.01.2019 | Materials Sciences

How molecules teeter in a laser field

18.01.2019 | Life Sciences

The cytoskeleton of neurons has been found to be involved in Alzheimer's disease

18.01.2019 | Health and Medicine

VideoLinks
Science & Research
Overview of more VideoLinks >>>