Publicity of the organisation as a vulnerability factor in a social engineering attack

Authors

Keywords:

social engineering attacks, corporate website, evaluation parameters, information security

Abstract

The article is devoted to the study of publicity of an organization, its wide representation in the Internet environment as a factor that increases the risks of implementing a social engineering attack. The research methods are based on the selection of information sources that can be engaged by an attacker at the stage of "information gathering" in the commission of a social engineering attack, and the construction on their basis of a composite assessment indicator. The result of the study is a mathematical formalization of parameters for assessing the sources of information, as well as the construction of a composite score based on them, which in turn can form the basis of new models of analysis of the success of the implementation of a social engineering attack.

About authors

Anastasia Olegovna Khlobystova

St. Petersburg Federal Research Center of the Russian Academy of Sciences

St. Petersburg Federal Research Center of the Russian Academy of Sciences

Maxim Viktorovich Abramov

St. Petersburg Federal Research Center of the Russian Academy of Sciences

Candidate of engineering sciences

Published

29.02.2024 — Updated on 29.02.2024

Versions

How to Cite

Khlobystova, A. O., & Abramov, M. V. (2024). Publicity of the organisation as a vulnerability factor in a social engineering attack. Information Society, (1), 85-93. Retrieved from http://infosoc.iis.ru/article/view/1003

Issue

Section

Trust and security in the information society