Towards Better Cyber Security Consciousness: the Ease and Danger of Osint Tools in Exposing Critical Infrastructure Vulnerabilities
| dc.contributor.author | Pervez,M.H. | |
| dc.contributor.author | Ecevit,M.I. | |
| dc.contributor.author | Naqvi,N.Z. | |
| dc.contributor.author | Creutzburg,R. | |
| dc.contributor.author | Dag,H. | |
| dc.date.accessioned | 2024-06-23T21:39:19Z | |
| dc.date.available | 2024-06-23T21:39:19Z | |
| dc.date.issued | 2023 | |
| dc.description.abstract | This article explores open-source intelligence (OS-INT) to identify the vulnerabilities and loopholes in power grid systems, focusing on an electrical distribution company operating in Turkey. The study emphasizes the potential risks of sharing publicly available information on social media accounts, websites, reports, and press releases which most companies overlook. It highlights that individuals or adversaries can exploit this information to harm companies and countries that may not be fully aware of these vulnerabilities. OSINT tools can efficiently gather interpretable data on a company, which companies unknowingly share. By refining the collected data, the study aims to understand the technologies used, their software versions, and any associated vulnerabilities. Web scraping tools extract data from the company's website, which may contain critical information about updates, ongoing systems, and technologies. The article provides a comprehensive understanding of the potential risks and vulnerabilities associated with sharing sensitive information and the various OSINT tools and techniques that can be used to identify and address these vulnerabilities. The importance of vigilance against the potential harm that remote or unrelated individuals can inflict using OSINT capabilitiesis underscored. This study shows how easy it is to detect vulnerabilities in a critical infrastructure system using OSINT tools. © 2023 IEEE. | en_US |
| dc.description.sponsorship | Methodius University in Skopje; UKIM; European Commission, EC; Erasmus+, (101082683) | en_US |
| dc.identifier.doi | 10.1109/UBMK59864.2023.10286573 | |
| dc.identifier.isbn | 979-835034081-5 | |
| dc.identifier.scopus | 2-s2.0-85177604717 | |
| dc.identifier.uri | https://doi.org/10.1109/UBMK59864.2023.10286573 | |
| dc.identifier.uri | https://hdl.handle.net/20.500.12469/5850 | |
| dc.language.iso | en | en_US |
| dc.publisher | Institute of Electrical and Electronics Engineers Inc. | en_US |
| dc.relation.ispartof | UBMK 2023 - Proceedings: 8th International Conference on Computer Science and Engineering -- 8th International Conference on Computer Science and Engineering, UBMK 2023 -- 13 September 2023 through 15 September 2023 -- Burdur -- 193873 | en_US |
| dc.rights | info:eu-repo/semantics/closedAccess | en_US |
| dc.subject | critical infrastructure protection | en_US |
| dc.subject | cyber risk | en_US |
| dc.subject | cyber security | en_US |
| dc.subject | Maltego | en_US |
| dc.subject | OSINT investigation | en_US |
| dc.subject | power grid | en_US |
| dc.subject | Shodan | en_US |
| dc.title | Towards Better Cyber Security Consciousness: the Ease and Danger of Osint Tools in Exposing Critical Infrastructure Vulnerabilities | en_US |
| dc.type | Conference Object | en_US |
| dspace.entity.type | Publication | |
| gdc.author.scopusid | 58706004700 | |
| gdc.author.scopusid | 57964038500 | |
| gdc.author.scopusid | 58705853600 | |
| gdc.author.scopusid | 6602924425 | |
| gdc.author.scopusid | 6507328166 | |
| gdc.bip.impulseclass | C5 | |
| gdc.bip.influenceclass | C5 | |
| gdc.bip.popularityclass | C5 | |
| gdc.coar.access | metadata only access | |
| gdc.coar.type | text::conference output | |
| gdc.collaboration.industrial | false | |
| gdc.description.department | Kadir Has University | en_US |
| gdc.description.departmenttemp | Pervez M.H., Kadir Has University, Dept. of Management Information Systems, Istanbul, Turkey; Ecevit M.I., Cyber Security and Critical Infrastructure Research Center, Kadir Has University, Istanbul, Turkey; Naqvi N.Z., Cyber Security Graduate Program, Kadir Has University, Istanbul, Turkey; Creutzburg R., Berlin School of Technology, Srh Berlin University of Applied Sciences, Berlin, Germany; Dag H., Cyber Security and Critical Infrastructure Research Center, Kadir Has University, Istanbul, Turkey | en_US |
| gdc.description.endpage | 443 | en_US |
| gdc.description.publicationcategory | Konferans Öğesi - Uluslararası - Kurum Öğretim Elemanı | en_US |
| gdc.description.startpage | 438 | en_US |
| gdc.identifier.openalex | W4387913019 | |
| gdc.index.type | Scopus | |
| gdc.oaire.diamondjournal | false | |
| gdc.oaire.impulse | 0.0 | |
| gdc.oaire.influence | 2.5942106E-9 | |
| gdc.oaire.isgreen | false | |
| gdc.oaire.popularity | 2.5427536E-9 | |
| gdc.oaire.publicfunded | false | |
| gdc.openalex.collaboration | International | |
| gdc.openalex.fwci | 0.43955229 | |
| gdc.openalex.normalizedpercentile | 0.52 | |
| gdc.opencitations.count | 0 | |
| gdc.plumx.mendeley | 16 | |
| gdc.plumx.scopuscites | 1 | |
| gdc.scopus.citedcount | 1 | |
| gdc.virtual.author | Ecevit, Mert İlhan | |
| gdc.virtual.author | Dağ, Hasan | |
| relation.isAuthorOfPublication | 32d2136a-cb55-4ba5-9e30-1767c6f3b090 | |
| relation.isAuthorOfPublication | e02bc683-b72e-4da4-a5db-ddebeb21e8e7 | |
| relation.isAuthorOfPublication.latestForDiscovery | 32d2136a-cb55-4ba5-9e30-1767c6f3b090 | |
| relation.isOrgUnitOfPublication | ff62e329-217b-4857-88f0-1dae00646b8c | |
| relation.isOrgUnitOfPublication | acb86067-a99a-4664-b6e9-16ad10183800 | |
| relation.isOrgUnitOfPublication | b20623fc-1264-4244-9847-a4729ca7508c | |
| relation.isOrgUnitOfPublication.latestForDiscovery | ff62e329-217b-4857-88f0-1dae00646b8c |