Honeybot, Your Man in the Middle for Automated Social Engineering
Automated social engineering poses a serious information security threat to human communications on the Internet since the attacks can easily scale to a large number of victims. The authors present a new attack that instruments human conversations for social engineering, or spamming. The detection rate is low, which becomes manifest in link click rates of up to 76.1%. This new attack poses a challenge for detection mechanisms, and user education. Instant Messaging (IM) spam is a prevailing issue on the Internet. Most often, spam messages contain a link to shady webshops, phishing websites, or malware. Current spam bots either directly distribute those messages, or they contact users and send a link when a user responds.