Social Engineering Attacks on Government Opponents: Target Perspectives-Reference-Cited by-同舟云学术

Social Engineering Attacks on Government Opponents: Target Perspectives

Published:2017-04-01 Issue:2 Volume:2017 Page:172-185
ISSN:2299-0984
Container-title:Proceedings on Privacy Enhancing Technologies
language:en
Short-container-title:

Author:

Marczak William R.¹,Paxson Vern²

Affiliation:

1. UC Berkeley, Citizen Lab

2. UC Berkeley, ICSI

Abstract

Abstract New methods of dissident surveillance employed by repressive nation-states increasingly involve socially engineering targets into unwitting cooperation (e.g., by convincing them to open a malicious attachment or link). While a fair amount is understood about the nature of these threat actors and the types of tools they use, there is comparatively little understood about targets’ perceptions of the risks associated with their online activity, and their security posture. We conducted in-depth interviews of 30 potential targets of Middle Eastern and Horn of Africa-based governments, also examining settings and software on their computers and phones. Our engagement illuminates the ways that likely targets are vulnerable to the types of social engineering employed by nation-states.

Publisher

Walter de Gruyter GmbH

Subject

General Medicine

Reference35 articles.

1. [1] S. L. Blond, A. Uritesc, C. Gilbert, Z. L. Chua, P. Saxena, and E. Kirda, “A Look at Targeted Attacks Through the Lense of an NGO,” in 23rd USENIX Security Symposium (USENIX Security 14), Aug. 2014.

2. [2] W. R. Marczak, J. Scott-Railton, M. Marquis-Boire, and V. Paxson, “When Governments Hack Opponents: A Look at Actors and Technology,” in 23rd USENIX Security Symposium (USENIX Security 14), Aug. 2014.

3. [3] S. Hardy, M. Crete-Nishihata, K. Kleemola, A. Senft, B. Sonne, G. Wiseman, P. Gill, and R. J. Deibert, “Targeted Threat Index: Characterizing and Quantifying Politically-Motivated Targeted Malware,” in 23rd USENIX Security Symposium (USENIX Security 14), Aug. 2014.

4. [4] “FinFisher - Excellence in IT Investigation,” accessed: 27-February-2014. [Online]. Available: http://www.finfisher.com/

5. [5] “Hacking Team,” accessed: 27-February-2014. [Online]. Available: http://www.hackingteam.it/

Cited by 10 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. SoK: Safer Digital-Safety Research Involving At-Risk Users;2024 IEEE Symposium on Security and Privacy (SP);2024-05-19

2. Social engineering awareness and resilience in Egypt: a quantitative exploration;Library Hi Tech;2024-04-09

3. Overview of Usable Privacy Research: Major Themes and Research Directions;Synthesis Lectures on Information Security, Privacy, and Trust;2024

4. SoK: A Framework for Unifying At-Risk User Research;2022 IEEE Symposium on Security and Privacy (SP);2022-05

5. Social Engineering Attacks in E-Government System: Detection and Prevention;International Journal of Applied Engineering and Management Letters;2022-02-17