Towards Measuring and Mitigating Social Engineering Software Download Attacks

Rapid, technological advancements have facilitated communication between people and made sensitive information available via networks and social media platforms, which may not be fully protected, facilitating the occurrence of violations and threats via social engineering attacks. The aim of social engineering attacks is to deceive people and corporate workers into revealing their sensitive information such as passwords and usernames, as well as spreading malware. It is easier for criminals to exploit humans' natural tendency to trust rather than using technology and software. Therefore, social engineering attacks are considered one of the most dangerous attacks that violate the privacy and safety of individuals and organizations. The basic principles of social engineering attacks, their stages of implementation, classifications and types, as well as methods and procedures for reducing these attacks, are covered in this study.