International Journal of Network Security & Its Applications (IJNSA)

International Journal of Network Security & Its Applications (IJNSA)

ISSN: 0974 - 9330 (Online); 0975 - 2307 (Print)

http://airccse.org/journal/ijnsa.html

EXPLORING HISTORICAL AND EMERGING HISHING TECHNIQUES AND MITIGATING THE ASSOCIATED SECURITY RISKS

Marc A. Rader and Syed (Shawon) M. Rahman, Capella University, USA

ABSTRACT

Organizations invest heavily in technical controls for their Information Assurance (IA) infrastructure. These technical controls mitigate and reduce the risk of damage caused by outsider attacks. Most organizations rely on training to mitigate and reduce risk of non-technical attacks such as social engineering. Organizations lump IA training into small modules that personnel typically rush through because the training programs lack enough depth and creativity to keep a trainee engaged. The key to retaining knowledge is making the information memorable. This paper describes common and emerging attack vectors and how to lower and mitigate the associated risks.

KEY WORDS

Security Risks, Phishing, Social Engineering, Cross Site Scripting, Emerging Attack Vectors, DNS poising.

Original Source URL: http://airccse.org/journal/nsa/5413nsa02.pdf

Volume Link: http://airccse.org/journal/jnsa13_current.html