MAZEPHISHING: THE COVID-19 PANDEMIC AS CREDIBLE SOCIAL CONTEXT FOR SOCIAL ENGINEERING ATTACKS

IF 0.5 4区社会学 0 HUMANITIES, MULTIDISCIPLINARY Trames-Journal of the Humanities and Social Sciences Pub Date : 2021-05-18 DOI:10.31124/ADVANCE.14607894.V1

Kristjan Kikerpill, A. Siibak

{"title":"MAZEPHISHING: THE COVID-19 PANDEMIC AS CREDIBLE SOCIAL CONTEXT FOR SOCIAL ENGINEERING ATTACKS","authors":"Kristjan Kikerpill, A. Siibak","doi":"10.31124/ADVANCE.14607894.V1","DOIUrl":null,"url":null,"abstract":"The first months of the COVID-19 pandemic witnessed a\nsurge of social engineering attacks. Although the pandemic is certainly not the\nfirst occurrence of socially disruptive circumstances that drive cybercriminals\nto action, relevant academic scholarship has remained scarce. To fill this gap\nin literature, and propose the analytical framework of mazephishing that\nplaces particular emphasis on the importance of credible social context in the\nfunctioning of the online scam ecosystem, we carried out a content analysis of (N=563)\ninternational news stories reporting on social engineering attacks. Our results\nindicate that criminals make heavy use of social context and impersonation to\nmake scams seem more credible. Major themes used in the scam messages include\nhealth information, personal protective equipment, cures, financial relief and\ndonations. Additionally, scammers diversify their use of mediums depending on\nthe type of scam being perpetrated. Our analysis also shows a significant\npresence of principles of persuasion in the circulated scam attempts.","PeriodicalId":44498,"journal":{"name":"Trames-Journal of the Humanities and Social Sciences","volume":null,"pages":null},"PeriodicalIF":0.5000,"publicationDate":"2021-05-18","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Trames-Journal of the Humanities and Social Sciences","FirstCategoryId":"90","ListUrlMain":"https://doi.org/10.31124/ADVANCE.14607894.V1","RegionNum":4,"RegionCategory":"社会学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"0","JCRName":"HUMANITIES, MULTIDISCIPLINARY","Score":null,"Total":0}

引用次数: 5

Abstract

The first months of the COVID-19 pandemic witnessed a surge of social engineering attacks. Although the pandemic is certainly not the first occurrence of socially disruptive circumstances that drive cybercriminals to action, relevant academic scholarship has remained scarce. To fill this gap in literature, and propose the analytical framework of mazephishing that places particular emphasis on the importance of credible social context in the functioning of the online scam ecosystem, we carried out a content analysis of (N=563) international news stories reporting on social engineering attacks. Our results indicate that criminals make heavy use of social context and impersonation to make scams seem more credible. Major themes used in the scam messages include health information, personal protective equipment, cures, financial relief and donations. Additionally, scammers diversify their use of mediums depending on the type of scam being perpetrated. Our analysis also shows a significant presence of principles of persuasion in the circulated scam attempts.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

迷宫式钓鱼:COVID-19大流行是社会工程攻击的可信社会背景

COVID-19大流行的头几个月见证了社会工程攻击的激增。虽然这场大流行肯定不是第一次出现导致网络犯罪采取行动的社会破坏性情况，但相关的学术研究仍然很少。为了填补这一文献空白，并提出了特别强调可信社会背景在在线诈骗生态系统功能中的重要性的迷宫式钓鱼分析框架，我们对(N=563)报道社会工程攻击的国际新闻报道进行了内容分析。我们的研究结果表明，犯罪分子大量利用社会背景和模仿来使骗局看起来更可信。诈骗信息的主要主题包括健康信息、个人防护装备、治疗方法、经济救济和捐款。此外，根据诈骗的类型，诈骗者使用不同的媒介。我们的分析还表明，在流传的骗局企图中，说服原则的存在是很重要的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊