Advertisement

Are We Designing Cybersecurity to Protect People from Malicious Actors?

  • Alex CadzowEmail author
Conference paper
Part of the Advances in Intelligent Systems and Computing book series (AISC, volume 876)

Abstract

When the discussion about engaging people to take an active approach to cybersecurity there is a focus on ensuring they protect their devices from malware and controlling access to their devices. There is a lesser focus on providing education and awareness to identify potential attacks from malicious actors. At the moment technology and software companies focus on protecting devices and not the people directly. This is due to a need to protect data from malware and unauthorised access. The conversation surrounding cybersecurity and data protection has come to the fore again due to the EU General Data Protection Regulation 2016/679 (GDPR) and hardware design flaws that include Intel Spectre bug. This paper will look at four areas the first is basic phishing attack along with malware and ransomware. The second area is compromised devices that includes cryptojacking and distributed denial of service attacks (DDOS). The third area is swatting attacks looking at experiences in America and Europe. Which include privacy protection, spoofing and fraud. The fourth area is the problem of online sextortion and revenge porn. Which includes entrapment, grooming, limited education and awareness. A gap analysis will examine what is being done in cybersecurity in these areas and what needs to be done to provide better cybersecurity in these areas in order to achieve better cybersecurity protection for people from malicious actors. Finally, the questions of are we designing cybersecurity to protect people from malicious actors will be answered.

Keywords

Cybersecurity Human factors GDPR Data Protection 

References

  1. 1.
    What is Cyber Security? https://digitalguardian.com/
  2. 2.
  3. 3.
  4. 4.
    Guardian.com/uk: More young men being blackmailed over videos of sex acts, says NCA (2016). https://www.theguardian.com/uk-news/2016/nov/29/sextortion-young-men-blackmailed-over-videos-sex-acts-online-national-crime-agency
  5. 5.
    Three men indicted in Call of Duty-linked ‘Swatting’ death, CNET. https://www.cnet.com/news/three-men-indicted-in-call-of-duty-linked-swatting-death/
  6. 6.
    Ncsc.gov.uk: NCSC glossary. https://www.ncsc.gov.uk/glossary
  7. 7.
    Doxing and law enforcement – What to look for and how to prevent, officer.com. https://www.officer.com/investigations/article/12219040/doxing-and-law-enforcement-what-to-look-for-and-prevent
  8. 8.
    Cryptojacking - Cryptomining in the browser, enisa.europe.eu. https://www.enisa.europa.eu/publications/info-notes/cryptojacking-cryptomining-in-the-browser
  9. 9.
    digitalattackmap.com: What is a DDoS Attack? https://www.digitalattackmap.com/understanding-ddos/
  10. 10.
    Federal Bureau of Investigation (F.B.I): Evolution of Swatting, Washington D.C., F.B.I (2016). https://www.fbi.gov/news/podcasts/thisweek/the-evolution-of-swatting.mp3/view
  11. 11.
    Cybercrime-Prozess in Nürnberg 24-Jähriger gesteht Vorwürfe, Bavarian Radio. https://www.br.de/nachrichten/mittelfranken/inhalt/landgericht-nuernberg-fuerth-cybercrime-100.html
  12. 12.
  13. 13.
    European Cybercrime Centre: Online sexual coercion and extortion as a form of crime affecting children – Law Enforcement Perspective. Europol, The Hague (2017)Google Scholar
  14. 14.
    Ncsc.gov.uk: A new approach for cybersecurity in the UK. National Cyber Security Centre, Cheltenham (2016). https://www.ncsc.gov.uk/news/new-approach-cyber-security-uk
  15. 15.
    oyoty.com: What is Oyoty, 1015. Privately SA, Lausanne (2017): https://www.oyoty.com/faq

Copyright information

© Springer Nature Switzerland AG 2019

Authors and Affiliations

  1. 1.C3LSawbridgeworthUK

Personalised recommendations