diplomsko delo
Abstract
V kibernetskem prostoru je uporabnik postal največja ranljivost sistema. Socialni inženiring je postal zelo priljubljena tehnika kibernetskih napadalcev, saj na njem sloni kar 98 % kibernetskih napadov. Socialni inženiring je zasnovan tako, da se pri izkoriščanju sistemske varnosti opira prav na človekovo ranljivost. Tako napadalci lahko brez velika tehničnega vložka dobijo ključne informacije za vdor. Socialni inženiring je velika skrb za podjetja, saj napadalci ciljajo na zaposlene, da napadajo informacijska sredstva v organizaciji.
V tej diplomi so predstavljene oblike socialnega inženiringa, ter mehanizmi napadalcev, ki opisujejo, kako napadalci izkoristijo človeške lastnosti, da pridejo do občutljivih podatkov. Predstavljene so tudi človeške ranljivosti oz. kako določene človekove lastnosti povečujejo ranljivost določene osebe.
Opravljen je bil tudi vprašalnik, v katerem je 60 ljudi različnih starosti in izobrazbenih usmeritev odgovarjalo na vprašanja o socialnem inženiringu. Namen študije je bil ugotoviti, kako ozaveščeni so ljudje o napadih socialnega inženiringa in kako bi ravnali v določenih situacijah, opisanih v vprašanjih.
Na koncu je podan še primer testnega phishing napada, ki je bil poslan 20-im osebam. E-mail sporočilo je vsebovalo sumljivo povezavo, ki naj bi vodila na stran priljubljenega socialnega omrežja.
Keywords
socialni inženiring;ribarjenje;kibernetski napadi;visokošolski strokovni študij;Aplikativna elektrotehnika;diplomske naloge;
Data
Language: |
Slovenian |
Year of publishing: |
2021 |
Typology: |
2.11 - Undergraduate Thesis |
Organization: |
UL FE - Faculty of Electrical Engineering |
Publisher: |
[N. Osterman] |
UDC: |
004.056(043.2) |
COBISS: |
75648259
|
Views: |
240 |
Downloads: |
39 |
Average score: |
0 (0 votes) |
Metadata: |
|
Other data
Secondary language: |
English |
Secondary title: |
ǂThe ǂuser as a vulnerability of cyberspace |
Secondary abstract: |
In cyberspace, the user has become the system’s biggest vulnerability. Social engineering has become a prevalent technique for cyber attackers, as 98 % of cyber attacks rely on it. Social engineering is designed to rely on human vulnerability when exploiting system security. Thus, attackers can obtain critical intrusion information without extensive technical input. Social engineering is a big concern for companies, as attackers target employees to attack information resources in an organization.
This diploma presents forms of social engineering and attack mechanisms that describe how attackers exploit human traits to access sensitive data. Human vulnerabilities are also presented or how certain human characteristics increase the vulnerability of a specific person.
A questionnaire was also conducted where 60 people of different ages and educational backgrounds answered questions about social engineering. The purpose of the study was to find out how aware people are of social engineering attacks and how they would react in certain situations described in the questions.
Finally, there is an example of a test phishing attack that was sent to 20 people. The email included a suspicious link that allegedly led to a page of a popular social network. |
Secondary keywords: |
social engineering;phishing;cyber attacks; |
Type (COBISS): |
Bachelor thesis/paper |
Study programme: |
1000315 |
Embargo end date (OpenAIRE): |
1970-01-01 |
Thesis comment: |
Univ. v Ljubljani, Fak. za elektrotehniko |
Pages: |
45 str. |
ID: |
13339019 |