Warning: Increases the risk of social engineering cyber attacks

The National Directorate of Cyber Security (DNSC) has issued a new warning, stressing the importance of vigilance against urgent requests or requests for disclosure of sensitive data, which are increasingly common in the context of cyber attacks. DNSC specialists point out that social engineering methods, used to manipulate users into revealing confidential information, remain one of the most dangerous tactics for compromising online security.

Social engineering is a sophisticated deception technique by which cyber attackers attempt to trick users into providing personal or sensitive information. In such attacks, hackers use psychological manipulation to exploit people's trust and gain access to confidential data. According to the DNSC, most cyber attacks targeting ordinary users contain elements of social engineering, making them even harder to detect. Attackers use victims' personal information, such as email addresses, names, PINs, or other data obtained from previous security breaches. This data is then used to generate a sense of authenticity in requests for additional data. For example, an email that appears to come from a trusted source may contain correct personal information, making it more believable and tempting for victims to respond.

Specialists outline some essential measures that users must take to protect themselves against these attacks. These can be grouped as follows: - Carefully analyze urgent requests: If you receive a message that asks you to act quickly and disclose sensitive information, take the time to verify the source of the message. Most institutions will not request confidential data by email or phone. - Be cautious with requests for personal information: Avoid providing personal data without first verifying the authenticity of the requester, especially if the request comes in an unexpected context. - Stay alert for messages from strangers: Attackers can use seemingly legitimate emails or messages from strangers to lure you into a trap. - Don't act under pressure: Hackers often use tactics that induce a state of urgency, causing you to make quick decisions without much thought. Proceed with caution and evaluate each request before providing information.

Recently, numerous social engineering attacks have targeted both individuals and companies or institutions. A notable example is the "phishing" type attack in which hackers pose as representatives of banks or state institutions, requesting bank data or access codes. These attacks resulted in major financial losses for victims who inadvertently provided critical information. Another famous case was the cyberattack against Twitter in 2020, when several accounts of public figures were compromised through a combination of social engineering and hacking techniques, leading to a massive online fraud attempt.

In an increasingly digitized world, cyber security is becoming essential to protect personal data. Social engineering remains one of the most effective methods for cyber attackers, but through education and vigilance, users can significantly reduce the risk of becoming victims. DNSC urges the public to exercise caution and not provide personal or financial information without careful verification of sources.