First InternationalWorkshop on Detection and Mitigation of Cyber attacks that exploit human vuLnerabilitiES (DAMOCLES)

Breve B.;Desolda G.;Deufemia V.;Spano L. D.

2024-01-01

---

Abstract

Today, the pervasive influence of technology has created significant cybersecurity challenges, exacerbated by human error that is often overlooked in system design. Reports show that up to 95% of cyber attacks are due to human factors, such as susceptibility to phishing and lax software maintenance. Italian public administrations (PAs) face heightened cyber risks due to underinvestment compared to the private sector. To address these challenges, the DAMOCLES research project provides a tailored framework focusing on Human Vulnerability Assessment (HVA) and Human Vulnerability Mitigation (HVM). HVA activities include behavior-based assessments and controlled cyber-Attack testing using Digital Twins (DT) to mirror user behavior. HVM uses insights from HVA to develop customized training programs, supported by non-coding approaches for easy adoption. DAMOCLES aims to improve cybersecurity in Italian government agencies by effectively addressing human-related security vulnerabilities.