A Security Model for Enhancement of Social Engineering Process with Implementation of Multifactor Authentication

Abstract

Social engineering has developed as a major risk in online communities and it is a successful means to target data systems. Modern social engineering attacks are based on the services that knowledge workers use. In MNCs employees are not physically located at same offices, but works on distributed system which enables employees to interact in real-time environment. The lessening in physical interaction leads to increase in use of communication tools such as WhatsApp, Facebook, Twitter, Gmail etc. makes the system more vulnerable to social engineering attacks. Recent Pulwama attack in India showed the impact of social media and internet with lack of information authenticity that played a major role in escalation of the tension between both India and Pakistan. The lack of “Fear of Getting Caught” among the attackers is the main cause of unlawful activities over the online communities. This paper provides a security model that will help reducing social engineering attacks to a large extend.