Bot Development for Social Engineering Attacks on Twitter

Jefferson Viana Fonseca Abreu; Jorge Henrique Cabral Fernandes; Jo\~ao; Jos\'e Costa Gondim; C\'elia Ghedini Ralha

arXiv:2007.11778·cs.SI·July 24, 2020·5 cites

Bot Development for Social Engineering Attacks on Twitter

Jefferson Viana Fonseca Abreu, Jorge Henrique Cabral Fernandes, Jo\~ao, Jos\'e Costa Gondim, C\'elia Ghedini Ralha

PDF

Open Access

TL;DR

This study developed Twitter bots to simulate social engineering attacks, collecting user response data over a month, revealing that such attacks remain feasible despite Twitter's security measures.

Contribution

The paper introduces a new bot-based methodology for assessing user vulnerability to social engineering on Twitter.

Findings

01

Feasibility of social engineering attacks on Twitter confirmed

02

Collected feedback data from 1,287 accounts over 38 days

03

No conclusive preceptors for unsafe behavior identified

Abstract

A series of bots performing simulated social engineering attacks using phishing in the Twitter platform was developed to identify potentially unsafe user behavior. In this work different bot versions were developed to collect feedback data after stimuli directed to 1,287 twitter accounts for 38 consecutive days. The results were not conclusive about the existence of preceptors for unsafe behavior, but we conclude that despite Twiter's security this kind of attack is still feasible.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsSpam and Phishing Detection · Advanced Malware Detection Techniques · Network Security and Intrusion Detection