To read this content please select one of the options below:

Solutions for counteracting human deception in social engineering attacks

Curtis C. Campbell (School of Advanced Studies, University of Phoenix, Tempe, Arizona, USA)

Information Technology & People

ISSN: 0959-3845

Article publication date: 10 August 2018

Issue publication date: 23 September 2019

2298

Abstract

Purpose

The purpose of this paper is to investigate the top three cybersecurity issues in organizations related to social engineering and aggregate solutions for counteracting human deception in social engineering attacks.

Design/methodology/approach

A total of 20 experts within Information System Security Association participated in a three-round Delphi study for aggregating and condensing expert opinions. Three rounds moved participants toward consensus for solutions to counteract social engineering attacks in organizations.

Findings

Three significant issues: compromised data; ineffective practices; and lack of ongoing education produced three target areas for implementing best practices in countering social engineering attacks. The findings offer counteractions by including education, policies, processes and continuous training in security practices.

Research limitations/implications

Study limitations include lack of prior data on effective social engineering defense. Research implications stem from the psychology of human deception and trust with the ability to detect deception.

Practical implications

Practical implications relate to human judgment in complying with effective security policies and programs and consistent education and training. Future research may include exploring financial, operational and educational costs of implementing social engineering solutions.

Social implications

Social implications apply across all knowledge workers who benefit from technology and are trusted to protect organizational assets and intellectual property.

Originality/value

This study contributes to the field of cybersecurity with a focus on trust and human deception to investigate solutions to counter social engineering attacks. This paper adds to under-represented cybersecurity research regarding effective implementation for social engineering defense.

Keywords

Citation

Campbell, C.C. (2019), "Solutions for counteracting human deception in social engineering attacks", Information Technology & People, Vol. 32 No. 5, pp. 1130-1152. https://doi.org/10.1108/ITP-12-2017-0422

Publisher

:

Emerald Publishing Limited

Copyright © 2018, Emerald Publishing Limited

Related articles