Analysis of Unintentional Insider Threats Deriving from Social Engineering Exploits

Frank L. Greitzer, Jeremy R. Strozer, Sholom Cohen, Andrew P. Moore, David Mundie, Jennifer Cowley
2014 2014 IEEE Security and Privacy Workshops  
Organizations often suffer harm from individuals who bear no malice against them but whose actions unintentionally expose the organizations to risk-the unintentional insider threat (UIT). In this paper we examine UIT cases that derive from social engineering exploits. We report on our efforts to collect and analyze data from UIT social engineering incidents to identify possible behavioral and technical patterns and to inform future research and development of UIT mitigation strategies.
doi:10.1109/spw.2014.39 dblp:conf/sp/GreitzerSCMMC14 fatcat:evihrggzj5gwpns2tisrij5yje