| Item Type |
Journal paper
|
| Abstract |
LinkedIn, with over 1.5 million Groups, has become a popular place for business employees to create private groups to exchange information and communicate. Recent research on social networking sites (SNSs) has widely explored the phenomenon and its positive effects on firms. However, social networking's negative effects on information security were not adequately addressed. Supported by the credibility, persuasion and motivation theories, we conducted 1) a field experiment, demonstrating how sensitive organizational data can be exploited, followed by 2) a qualitative study of employees engaged in SNSs activities; and 3) interviews with Chief Information Security Officers (CISOs). Our research has resulted in four main findings: 1) employees are easily deceived and susceptible to victimization on SNSs where contextual elements provide psychological triggers to attackers; 2) organizations lack mechanisms to control SNS online security threats, 3) companies need to strengthen their information security policies related to SNSs, where stronger employee identification and authentication is needed, and 4) SNSs have become important security holes where, with the use of social engineering techniques, malicious attacks are easily facilitated. |
| Authors |
Silic, Mario & Back, Andrea |
| Research Team |
IWI3 |
| Projects |
Silic, Mario & Back, Andrea
(2015)
Insights into Understanding Employees' Compliance with IT Security Policies in the Shadow IT Context
[fundamental research project]
|
| Journal or Publication Title |
Computers in Human Behavior |
| Language |
English |
| Keywords |
Social networking sites, Field experiment, Deception, Employee psychology |
| Subjects |
business studies |
| HSG Classification |
not classified |
| HSG Profile Area |
SoM - Business Innovation |
| Refereed |
Yes |
| Date |
1 July 2016 |
| Publisher |
Elsevier |
| Place of Publication |
Amsterdam [u.a.] |
| Volume |
60 |
| Page Range |
35-43 |
| Number of Pages |
9 |
| ISSN |
0747-5632 |
| ISSN-Digital |
1873-7692 |
| Publisher DOI |
https://doi.org/10.1016/j.chb.2016.02.050 |
| Official URL |
http://www.sciencedirect.com/science/article/pii/S... |
| Depositing User |
Prof. Dr. Andrea Back
|
| Date Deposited |
23 Feb 2016 12:13 |
| Last Modified |
20 Jul 2022 17:27 |
| URI: |
https://www.alexandria.unisg.ch/publications/247617 |
The dark side of social networking sites : Understanding phishing risks
![[img]](http://www.alexandria.unisg.ch/style/images/fileicons/oa_orange.png)
