Nowadays, security attacks greatly rely on the human vulnerabilities, hence is fundamental to include the human factor into corporate risk analysis. Moreover, high-value services have introduced two-factor authentication to prevent adversaries from compromising accounts using stolen credentials.
Read the full articles An innovative and comprehensive framework for Social Vulnerability Assessment and Social Authentication: Vulnerabilities, Mitigations, and Redesign, respectively by Enrico Frumento & Roberto Puricelli and by Marco Lancini of CEFRIEL, published on the “Magdeburger Institut für Sicherheitsforschung” in the special edition “In Depth Security – Proceedings of the DeepSec Conferences”.
Social Engineering is the most important strategy for infection with malware today. Moreover, massive use of mails can reach a lot of victims at a time, since you don’t need talented hackers for that and they just address tons of users at once. In this scenario, traditional training methods with teachers and posters are not very effective, and, even, three months after training, there is no more difference in the user’s reaction to phishing mails.
These are some of the main topics highlighted in the article Spearphishing: Jeder Fünfte geht in die Falle (One every five users falls in the trap), published on heise Security on November, 22nd 2014, which reports the talk held by Enrico Frumento and Roberto Puricelli of CEFRIEL at DeepSec 2014, the prestigious international Conference on information security.
An innovative and comprehensive framework for Social Driven Vulnerability Assessment, the detailed CEFRIEL presentation at DeepSec 2014.
Starting May 2014 EIT ICT Labs has opened a new innovation centre in Italy in Milan, which works as a satellite of the Italian node based in Trento.The Milan Satellite, hosted on CEFRIEL premises, will work closely together with the Co-Location Centre of Trento and its strong partner network consisting of Italian excellences in ICT higher education, research and industry.
“The affiliation of the CEFRIEL to the EIT ICT Labs”, comments Alfonso Fuggetta, CEO of CEFRIEL, “represents not only an important growth opportunity for the centre, but also helps to enrich and promote innovation activities of the EIT ICT Labs in Italy and strengthen international collaborations”.