Social engineering in social network: a systematic literature review

Abubaker, Ali Adnan, Eleyan, Derar, Eleyan, Amna ORCID: https://orcid.org/0000-0002-2025-3027, Bejaoui, Tarek, Katuk, Norliza and Al-Khalidi, Mohammed ORCID: https://orcid.org/0000-0002-1655-8514 (2023) Social engineering in social network: a systematic literature review. In: 2023 International Symposium on Networks, Computers and Communications (ISNCC), 23 October 2023 - 26 October 2023, Doha, Qatar.

Preview

Accepted Version Available under License In Copyright. Download (351kB) | Preview

Abstract

Social engineering is hacking and manipulating people's minds to obtain access to networks and systems in order to acquire sensitive data. A social engineering attack happens when victims are unaware of the strategies utilised and how to avoid them. Although rapid developments in communication technology made communication between individuals easier and faster, on the other hand, individuals' personal and private information is likely to be available online via social networking or other services without adequate security measures to protect such sensitive data. Hackers can use social engineering to target them no matter the technology they use to protect themselves. The methods differ, and the goal is the same, which is to manipulate and deceive organisations, companies, and individuals to obtain sensitive and private in-formation that attackers can benefit from, perhaps to sell it on the dark web or steal the payment card information of victims. The current research presents the attack techniques used in social engineering, as well as ways for pre-venting social engineering assaults. The major purpose of this study is to systematically and impartially conduct a systematic review of previous research on current social engineering attacks and the methods used to reduce these attacks.