How OSINT knowledge may stop social engineering attacks | SC Media
( Adobe Stock )
Popular social engineering attacks use fundamental human emotions like fear, curiosity, or urgency. The enemy’s title may be spelled incorrectly, misspelled, or absent in a mass-phishing attack, and the content may include items, services, or places that are not known to the target.
The authors of SC Media Perspectives ‘ sections are recognized experts in the field of security. [ Read more perspectives here. ]
On the other hand, in a precise phishing attack, content is expertly crafted, including personal information like name, job title, or contact information, imitating corporate tone or style, and making references to past or upcoming corporate events. Social engineering techniques include, among others, , , s, attacks, and natural breaches.
The prevalence of targeted social engineering attacks has significantly in recent years due to one main factor: the availability of Open-Source Intelligence ( OSINT ).
OSINT refers to both the steps involved in gathering and analyzing publicly available data and the insight derived from that process. OSINT, which was developed by the U.S. military during , serves as the umbrella term for various types of intelligence, including geospatial intelligence ( GEOINT ), human intelligence ( HUMINT ), signal intelligence ( SIGINT ), imagery intelligence ( IMINT ), and social media intelligence ( SOCMINT ), among others.
OSINT has grown to be a preferred device for risk stars, but it is also widely used by administrations, law enforcement, and companies for legitimate purposes. Assailants can create detailed profiles of their targets by combining fragments of publicly available data, which enables them to create highly effective and personal cultural engineering campaigns.
How OSINT is used by thieves to carry out social engineering attacks
Bad actors effectively use different OSINT varieties to increase the potency of their social engineering attacks:
- adversaries can use GEOINT to create scenarios that sound plausible and comfortable by identifying a target’s location, daily routines, or often visited locations.
- HUMINT frequently uses clear interactions, such as portraying coworkers or authority figures, to elicit sensitive information or pressure targets into taking specific actions, to foster trust.
- SIGINT enables hackers to intercept and examine communications, such as emails and phone calls, to gather specific or organizational information that can be used to create highly convincing phishing or pretexting schemes.
- IMINT provides physical insights, such as those in photos or videos, that may reveal personal habits, places to work, or even security flaws that attackers use to tailor their strategy.
- To create hyper-personalized attacks that exploit human emotions like respect, curiosity, and greed, SOCMINT allows bad actors to use personal information, interests, and social contacts from programs like Linked In, Facebook, or X.
Together, these OSINT strategies give attackers the ability to launch powerful, focused social engineering campaigns that are becoming more difficult to detect and repress.
Up, AI and OSINT amplify cultural architecture.
AI ( AI ) has revolutionized how OSINT is collected, processed, and used by attackers. For instance, machine learning ( ML) algorithms can quickly sift through social media platforms, public records, and online forums to find patterns, relationships, and vulnerabilities that might otherwise go unnoticed. AI makes it simple for intruders to create detailed information of their goals, including personal preferences, behavioral patterns, and expert networks, without much manual work.
Additionally, natural language processing ( NLP ) algorithms can identify communication styles, enabling phishing emails or messages to closely resemble the language and tone of a target’s superiors or coworkers. Similar to AI, algorithmic audio or video content can be created to elicit encouraging impersonations of trustworthy people to pressure targets into carrying out specific actions, such as sending funds or sharing sensitive information.
It’s time to take OSINT threats seriously.
To effectively manage and control threats, organizations must adopt OSINT-aware tactics. Major tactics include:
- Conduct independent assessments: By ensuring awareness of publicly available information and possible threats, OSINT assessments help to identify and assess the organization’s and its employees ‘ digital footprint. Evaluations must include both offensive and defensive methods as well as protective andnbsp.
- Develop high-level plans: Working with compliance, danger, and OSINT experts, the C-suite must concentrate on developing data protection policies and procedures, such as those that verify the authenticity of demands, particularly those that involve sensitive information or financial transactions.
- Give standard, extensive training and recognition plans for employees at all levels, helping them understand how attackers may use publicly available information, and empowering them with knowledge and skills to defend both personal and professional data from social architectural threats.
- Encourage employees to take responsibility for their actions, focusing on the importance of vigilance, information hygiene ( limiting what employees can share online ), and adhering to cybersecurity protocols in both professional and personal settings.
Organizations must take OSINT risks really, conduct defensive and offensive OSINT assessments constantly, and invest in security awareness training programs as these attacks become more sophisticated. Organizations can stay one step ahead in the ongoing battle against cultural engineering simply by adopting a proactive approach to OSINT.
Steve Durbin, CEO, Information Security Forum
SC Media Perspectives rows are written by a reputable group of SC Media’s security subject matter experts. Each factor aims to give a distinct words to pressing cybersecurity issues. Material aspires to be imperative, of the highest caliber, and non-commercial.
Receive regular email updates
The most recent and important daily media is a must-read for SC Media every day.
In 5 hours, neglect this advertising.