Featured Research

from universities, journals, and other organizations

How We Are Tricked Into Into Giving Away Our Personal Information

Date:
January 18, 2009
Source:
Vetenskapsrådet (The Swedish Research Council)
Summary:
We human beings don’t always do as we have been taught, and organizations are poorly prepared for IT security attacks that target human weaknesses. Since it is difficult to change people’s behavior, it doesn’t help to provide training about how to behave securely. Scientists are studying attacks that are considered social engineering in IT contexts.

We human beings don’t always do as we have been taught, and organizations are poorly prepared for IT security attacks that target human weaknesses. Since it is difficult to change people’s behavior, it doesn’t help to provide training about how to behave securely. This is shown by Marcus Nohlberg in his dissertation at Stockholm University in Sweden in which he studied attacks that are called social engineering in IT contexts.

The concept of social engineering refers to the art of using social codes and knowledge of human behavior to get us to provide information or do things we should not do. A topical example happened very recently in Sweden, where people received calls from a person who purported to represent the IT office at their bank and asked them to identify themselves using their personal bank encoders. The attacker then used these codes to steal money from the victims’ accounts.

“I predicted a couple of years ago that this kind of attack would become common, especially account fraud,” says Marcus Nohlberg.

Despite the serious consequences, with many successful fraud attempts, this technique has received little attention among researchers. Marcus Nohlberg’s research has led to enhanced knowledge about what methods attackers use and what it is that makes people and organizations so vulnerable. Somewhat depressingly, Marcus Nohlberg’s research shows that information and training do not work as well as we think:

“There will always be a small group of people who do not do as they were taught. What’s more, it’s all too seldom that people undergo training in security issues in general. To change behavior, this is something that needs to be worked with constantly. The best thing is practical training, and it’s probable that organizations will need to start running internal checks where they in fact create fictitious attacks in order to identify weaknesses,” says Marcus Nohlberg.

Social engineering as a method of fraud is costly for the attacker since it requires commitment and time. However, software and technologies already exist that can interact with other people automatically:

“You can easily imagine how serious it will be when such programs target victims via digital forums like Facebook in the future. When it becomes just as simple as spreading spam, this will present a major threat to social activities on the Internet.”

In his research, Marcus Nohlberg presents a description of fraud crimes from the perspectives of victims, perpetrators, and defenders, but he also offers suggested measures for preventing attacks, based on his own experiences from controlled attacks.

Title of dissertation: Securing Information Assets -- Understanding, Measuring and Protecting against Social Engineering Attacks.


Story Source:

The above story is based on materials provided by Vetenskapsrådet (The Swedish Research Council). Note: Materials may be edited for content and length.


Cite This Page:

Vetenskapsrådet (The Swedish Research Council). "How We Are Tricked Into Into Giving Away Our Personal Information." ScienceDaily. ScienceDaily, 18 January 2009. <www.sciencedaily.com/releases/2009/01/090115081741.htm>.
Vetenskapsrådet (The Swedish Research Council). (2009, January 18). How We Are Tricked Into Into Giving Away Our Personal Information. ScienceDaily. Retrieved April 16, 2014 from www.sciencedaily.com/releases/2009/01/090115081741.htm
Vetenskapsrådet (The Swedish Research Council). "How We Are Tricked Into Into Giving Away Our Personal Information." ScienceDaily. www.sciencedaily.com/releases/2009/01/090115081741.htm (accessed April 16, 2014).

Share This



More Mind & Brain News

Wednesday, April 16, 2014

Featured Research

from universities, journals, and other organizations


Featured Videos

from AP, Reuters, AFP, and other news services

Cognitive Function: Is It All Downhill From Age 24?

Cognitive Function: Is It All Downhill From Age 24?

Newsy (Apr. 15, 2014) — A new study out of Canada says cognitive motor performance begins deteriorating around age 24. Video provided by Newsy
Powered by NewsLook.com
App Fights Jet Lag With The Power Of Math

App Fights Jet Lag With The Power Of Math

Newsy (Apr. 13, 2014) — Researchers at the University of Michigan have designed an app to fight jet lag by adjusting your body's light intake. Video provided by Newsy
Powered by NewsLook.com
Treatment Gaps Endangering Cops, Mentally Ill

Treatment Gaps Endangering Cops, Mentally Ill

AP (Apr. 10, 2014) — As states slash funding for mental health services, police officers are interacting more than ever with people suffering from schizophrenia and other serious disorders of the mind. The consequences can be deadly. (April 10) Video provided by AP
Powered by NewsLook.com
Teen Drinking Rates Linked To Alcohol Mentions In Pop Music

Teen Drinking Rates Linked To Alcohol Mentions In Pop Music

Newsy (Apr. 9, 2014) — A University of Pittsburgh study found pop music that mentions alcohol is linked to higher drinking rates among teens. Video provided by Newsy
Powered by NewsLook.com

Search ScienceDaily

Number of stories in archives: 140,361

Find with keyword(s):
 
Enter a keyword or phrase to search ScienceDaily for related topics and research stories.

Save/Print:
Share:  

Breaking News:
from the past week

In Other News

... from NewsDaily.com

Science News

Health News

Environment News

Technology News



Save/Print:
Share:  

Free Subscriptions


Get the latest science news with ScienceDaily's free email newsletters, updated daily and weekly. Or view hourly updated newsfeeds in your RSS reader:

Get Social & Mobile


Keep up to date with the latest news from ScienceDaily via social networks and mobile apps:

Have Feedback?


Tell us what you think of ScienceDaily -- we welcome both positive and negative comments. Have any problems using the site? Questions?
Mobile iPhone Android Web
Follow Facebook Twitter Google+
Subscribe RSS Feeds Email Newsletters
Latest Headlines Health & Medicine Mind & Brain Space & Time Matter & Energy Computers & Math Plants & Animals Earth & Climate Fossils & Ruins