Saved in:
Bibliographic Details
Main Authors: Longtchi, Theodore, Xu, Shouhuai
Format: Preprint
Published: 2024
Subjects:
Online Access:https://arxiv.org/abs/2408.11584
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866914919073447936
author Longtchi, Theodore
Xu, Shouhuai
author_facet Longtchi, Theodore
Xu, Shouhuai
contents Cyber attacks, including cyber social engineering attacks, such as malicious emails, are always evolving with time. Thus, it is important to understand their evolution. In this paper we characterize the evolution of malicious emails through the lens of Psychological Factors, PFs, which are humans psychological attributes that can be exploited by malicious emails. That is, attackers who send them. For this purpose, we propose a methodology and apply it to conduct a case study on 1,260 malicious emails over a span of 21 years, 2004 to 2024. Our findings include attackers have been constantly seeking to exploit many PFs, especially the ones that reflect human traits. Attackers have been increasingly exploiting 9 PFs and mostly in an implicit or stealthy fashion. Some PFs are often exploited together. These insights shed light on how to design future defenses against malicious emails.
format Preprint
id arxiv_https___arxiv_org_abs_2408_11584
institution arXiv
publishDate 2024
record_format arxiv
spellingShingle Characterizing the Evolution of Psychological Factors Exploited by Malicious Emails
Longtchi, Theodore
Xu, Shouhuai
Cryptography and Security
Cyber attacks, including cyber social engineering attacks, such as malicious emails, are always evolving with time. Thus, it is important to understand their evolution. In this paper we characterize the evolution of malicious emails through the lens of Psychological Factors, PFs, which are humans psychological attributes that can be exploited by malicious emails. That is, attackers who send them. For this purpose, we propose a methodology and apply it to conduct a case study on 1,260 malicious emails over a span of 21 years, 2004 to 2024. Our findings include attackers have been constantly seeking to exploit many PFs, especially the ones that reflect human traits. Attackers have been increasingly exploiting 9 PFs and mostly in an implicit or stealthy fashion. Some PFs are often exploited together. These insights shed light on how to design future defenses against malicious emails.
title Characterizing the Evolution of Psychological Factors Exploited by Malicious Emails
topic Cryptography and Security
url https://arxiv.org/abs/2408.11584