Towards Better Cyber Security Consciousness: the Ease and Danger of Osint Tools in Exposing Critical Infrastructure Vulnerabilities

dc.authorscopusid 58706004700
dc.authorscopusid 57964038500
dc.authorscopusid 58705853600
dc.authorscopusid 6602924425
dc.authorscopusid 6507328166
dc.contributor.author Pervez,M.H.
dc.contributor.author Ecevit, Mert İlhan
dc.contributor.author Ecevit,M.I.
dc.contributor.author Dağ, Hasan
dc.contributor.author Naqvi,N.Z.
dc.contributor.author Creutzburg,R.
dc.contributor.author Dag,H.
dc.contributor.other Management Information Systems
dc.date.accessioned 2024-06-23T21:39:19Z
dc.date.available 2024-06-23T21:39:19Z
dc.date.issued 2023
dc.department Kadir Has University en_US
dc.department-temp Pervez M.H., Kadir Has University, Dept. of Management Information Systems, Istanbul, Turkey; Ecevit M.I., Cyber Security and Critical Infrastructure Research Center, Kadir Has University, Istanbul, Turkey; Naqvi N.Z., Cyber Security Graduate Program, Kadir Has University, Istanbul, Turkey; Creutzburg R., Berlin School of Technology, Srh Berlin University of Applied Sciences, Berlin, Germany; Dag H., Cyber Security and Critical Infrastructure Research Center, Kadir Has University, Istanbul, Turkey en_US
dc.description.abstract This article explores open-source intelligence (OS-INT) to identify the vulnerabilities and loopholes in power grid systems, focusing on an electrical distribution company operating in Turkey. The study emphasizes the potential risks of sharing publicly available information on social media accounts, websites, reports, and press releases which most companies overlook. It highlights that individuals or adversaries can exploit this information to harm companies and countries that may not be fully aware of these vulnerabilities. OSINT tools can efficiently gather interpretable data on a company, which companies unknowingly share. By refining the collected data, the study aims to understand the technologies used, their software versions, and any associated vulnerabilities. Web scraping tools extract data from the company's website, which may contain critical information about updates, ongoing systems, and technologies. The article provides a comprehensive understanding of the potential risks and vulnerabilities associated with sharing sensitive information and the various OSINT tools and techniques that can be used to identify and address these vulnerabilities. The importance of vigilance against the potential harm that remote or unrelated individuals can inflict using OSINT capabilitiesis underscored. This study shows how easy it is to detect vulnerabilities in a critical infrastructure system using OSINT tools. © 2023 IEEE. en_US
dc.description.sponsorship Methodius University in Skopje; UKIM; European Commission, EC; Erasmus+, (101082683) en_US
dc.identifier.citationcount 0
dc.identifier.doi 10.1109/UBMK59864.2023.10286573
dc.identifier.endpage 443 en_US
dc.identifier.isbn 979-835034081-5
dc.identifier.scopus 2-s2.0-85177604717
dc.identifier.startpage 438 en_US
dc.identifier.uri https://doi.org/10.1109/UBMK59864.2023.10286573
dc.identifier.uri https://hdl.handle.net/20.500.12469/5850
dc.language.iso en en_US
dc.publisher Institute of Electrical and Electronics Engineers Inc. en_US
dc.relation.ispartof UBMK 2023 - Proceedings: 8th International Conference on Computer Science and Engineering -- 8th International Conference on Computer Science and Engineering, UBMK 2023 -- 13 September 2023 through 15 September 2023 -- Burdur -- 193873 en_US
dc.relation.publicationcategory Konferans Öğesi - Uluslararası - Kurum Öğretim Elemanı en_US
dc.rights info:eu-repo/semantics/closedAccess en_US
dc.scopus.citedbyCount 1
dc.subject critical infrastructure protection en_US
dc.subject cyber risk en_US
dc.subject cyber security en_US
dc.subject Maltego en_US
dc.subject OSINT investigation en_US
dc.subject power grid en_US
dc.subject Shodan en_US
dc.title Towards Better Cyber Security Consciousness: the Ease and Danger of Osint Tools in Exposing Critical Infrastructure Vulnerabilities en_US
dc.type Conference Object en_US
dspace.entity.type Publication
relation.isAuthorOfPublication 32d2136a-cb55-4ba5-9e30-1767c6f3b090
relation.isAuthorOfPublication e02bc683-b72e-4da4-a5db-ddebeb21e8e7
relation.isAuthorOfPublication.latestForDiscovery 32d2136a-cb55-4ba5-9e30-1767c6f3b090
relation.isOrgUnitOfPublication ff62e329-217b-4857-88f0-1dae00646b8c
relation.isOrgUnitOfPublication.latestForDiscovery ff62e329-217b-4857-88f0-1dae00646b8c

Files