[Originally published by Royal Danish Defence College]

Social engineering involves the exploitation of the human element of cyber security. The study is an investigation into the phenomenon of Social Engineering 2.0 with the aim of developing a social vulnerability assessment (SVA) framework for conducting cyber reconnaissance to uncover critical information and using deception tactics to create social engineering attacks, which will help identify the human security vulnerabilities within an organisation.

In Project SAVE, a total of 185 social engineering attacks have been executed against three organisations that are part of critical infrastructure in Denmark. See the results of the attacks as well as the utilised attack vectors, and get insight into how cyber criminals utilise information from open sources to design personalised cyber attacks.

Download the book here