Awareness and Social Engineering-Based Cyberattacks

Nowadays, the psychological techniques used to harass, intimidate, threaten, and steal information are more common due to free access to technological resources and the digitization of communications. Social engineering attacks have evolved into telephone calls, emails, and face-to-face interactions. On the other hand, assessing the Information security awareness of users and thereby identifying users who are more vulnerable to social engineering attacks is crucial for enterprise cybersecurity risk assessment. So, this paper aims to investigate the relationship between awareness and social engineering-based cyberattacks. The findings showed differences in technical security solutions regarding age, education, and occupation groups (P 0.05). Based on that, educational organizations must design specific training programs considering age, education level, and occupation because each category has special requirements. Furthermore, this paper showed that most respondents did not know about social engineering approaches, indicating the need for comprehensive training about social engineering attacks.