{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,1]],"date-time":"2026-02-01T10:11:41Z","timestamp":1769940701912,"version":"3.49.0"},"reference-count":53,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"2","license":[{"start":{"date-parts":[[2017,6,1]],"date-time":"2017-06-01T00:00:00Z","timestamp":1496275200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Systems Journal"],"published-print":{"date-parts":[[2017,6]]},"DOI":"10.1109\/jsyst.2015.2388707","type":"journal-article","created":{"date-parts":[[2015,2,17]],"date-time":"2015-02-17T19:09:18Z","timestamp":1424200158000},"page":"415-426","source":"Crossref","is-referenced-by-count":10,"title":["Exploiting Trust: Stealthy Attacks Through Socioware and Insider Threats"],"prefix":"10.1109","volume":"11","author":[{"given":"Aditya K.","family":"Sood","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sherali","family":"Zeadally","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rohit","family":"Bansal","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref39","article-title":"Making malware cleanup easier","year":"2014","journal-title":"Facebook Blog Post"},{"key":"ref38","article-title":"Patent reveals how Twitter could protect users from malware on the mobile Web","author":"weber","year":"2014","journal-title":"Venture Beat Online Article"},{"key":"ref33","article-title":"Yahoo quickly fixes Flickr SQL injection, remote code execution flaws","author":"greenberg","year":"2014","journal-title":"SC Magazine"},{"key":"ref32","article-title":"Twitter jumps to block XSS worm in Tweetdeck","author":"wisniewski","year":"2014","journal-title":"Sophos Blog"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2012.283"},{"key":"ref30","article-title":"Giant snakes eating zookeepers and unwatchable videos&#x2014;Facebook hit again by clickjacking scams","author":"cluley","year":"2012","journal-title":"Sophos Blog"},{"key":"ref37","article-title":"Facebook Patches O-Auth Authentication Vulnerability","author":"book","year":"2013","journal-title":"Kaspersky Threatpost Online Article"},{"key":"ref36","article-title":"Facebook logins easily stolen from iPhone Android","author":"liebowitz","year":"2012","journal-title":"NBC News Online Article"},{"key":"ref35","year":"0","journal-title":"Google Application Security Vulnerability Reward Program"},{"key":"ref34","year":"0","journal-title":"Facebook Responsible Disclosure Policy and Whitehat Program"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1145\/2488388.2488413"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2013.2280884"},{"key":"ref29","first-page":"1","article-title":"Clickjacking: Attacks and defenses","author":"huang","year":"0","journal-title":"Proc 21st USENIX Conf Security Symp"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1145\/1397735.1397744"},{"key":"ref1","first-page":"196","article-title":"Malware propagation in online social networks: Nature, dynamics, and defense implications","author":"yan","year":"0","journal-title":"Proc 6th ACM Symp Inf Comput Commun Secur"},{"key":"ref20","article-title":"New XSS Facebook Worm Allows Automatic Wall Posts","author":"wueest","year":"2011","journal-title":"Symantec SecurityFocus"},{"key":"ref22","article-title":"Drive-by download attack on Facebook used malicious ads","author":"constantin","year":"2011","journal-title":"Computer World"},{"key":"ref21","article-title":"Malicious Facebook ad redirects to fake antivirus software","author":"kirk","year":"2010","journal-title":"PC World"},{"key":"ref24","article-title":"Google's DoubleClick ad servers exposed millions of computers to malware","author":"brandon","year":"2014","journal-title":"The Verge"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1016\/S1361-3723(11)70041-0"},{"key":"ref26","article-title":"Latest Security Intelligence Report Shows 24 Percent of PCs are Unprotected","author":"meissner","year":"2013","journal-title":"Micro-blog"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1109\/ISI.2013.6578788"},{"key":"ref50","article-title":"Insider Threat Survey","year":"2012","journal-title":"SpectraSoft Survey"},{"key":"ref51","doi-asserted-by":"publisher","DOI":"10.1145\/1866886.1866888"},{"key":"ref53","first-page":"44","article-title":"Genie in a Model? Why model driven security will not secure your web application","volume":"5","author":"hochreiner","year":"2014","journal-title":"J Wireless Mobile Netw Ubiquitous Comput Dependable Appl"},{"key":"ref52","first-page":"14","article-title":"Evaluation of computer network security based on attack graphs and security event processing","volume":"5","author":"kotenko","year":"2014","journal-title":"J Wireless Mobile Netw Ubiquitous Comput Dependable Appl"},{"key":"ref10","first-page":"1","article-title":"RAIDE: Rootkit analysis and identification elimination","author":"butler","year":"0","journal-title":"Proc of the BlackHat Europe"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1002\/spe.973"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1145\/2413176.2413213"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijcip.2013.01.002"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1145\/1772690.1772720"},{"key":"ref14","author":"baltazar","year":"2009","journal-title":"The Real Face of Koobface Botnet"},{"key":"ref15","article-title":"Worm 2.0, or Lily Jade in action","author":"golvanov","year":"2012","journal-title":"Secure List"},{"key":"ref16","article-title":"Facebook Ramnit Worm Swipes 45?000 Usernames and Passwords","author":"smith","year":"2012","journal-title":"Huffington Post"},{"key":"ref17","article-title":"Teen uses worm to boost ratings on MySpace.com","author":"lai","year":"2005","journal-title":"Computer World"},{"key":"ref18","article-title":"Twitter &#x2018;onMouseOver&#x2019; security flaw widely exploited","author":"cluley","year":"2010","journal-title":"Sophos Blog"},{"key":"ref19","article-title":"Clickjacking worm hits hundreds of thousands on Facebook","author":"goodin","year":"2010","journal-title":"The Register"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1145\/1592665.1592668"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/1558607.1558670"},{"key":"ref6","author":"mariani","year":"2011","journal-title":"Spying on Internet Explorer"},{"key":"ref5","first-page":"32","article-title":"Efficient and scalable socware detection in online social networks","author":"rahman","year":"0","journal-title":"Proc 21st USENIX Conf Security Symp"},{"key":"ref8","author":"surgeons","year":"2010","journal-title":"Social demographics 2010 A fresh look at Facebook and Twitter"},{"key":"ref7","first-page":"1","article-title":"Chain exploitation&#x2014;Social networks malware","volume":"1","author":"sood","year":"2011","journal-title":"ISACA Journal"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1080\/19393555.2011.654318"},{"key":"ref9","first-page":"147","article-title":"Addressing insider threat using &#x2018;where you are&#x2019; as fourth factor authentication","author":"sung","year":"0","journal-title":"Proceedings of IEEE ICC"},{"key":"ref46","first-page":"26","article-title":"An insider threat prediction model","author":"kandias","year":"0","journal-title":"Proc Of the 8th Int Conf on Trust Privacy & Security in Digital Business"},{"key":"ref45","author":"sood","year":"2012","journal-title":"Malware Design Strategies for Circumventing Detection and Prevention Controls&#x2014;Part One"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1109\/TSMCA.2011.2162500"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1016\/j.diin.2007.10.002"},{"key":"ref42","author":"swiderski","year":"2004","journal-title":"Threat Modeling"},{"key":"ref41","year":"0","journal-title":"OWASP"},{"key":"ref44","author":"sood","year":"2012","journal-title":"Dissecting the NGR Bot Framework"},{"key":"ref43","year":"2012","journal-title":"MSDN"}],"container-title":["IEEE Systems Journal"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/4267003\/7959216\/07042925.pdf?arnumber=7042925","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,10,11]],"date-time":"2021-10-11T02:35:03Z","timestamp":1633919703000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/7042925\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,6]]},"references-count":53,"journal-issue":{"issue":"2"},"URL":"https:\/\/doi.org\/10.1109\/jsyst.2015.2388707","relation":{},"ISSN":["1932-8184","1937-9234","2373-7816"],"issn-type":[{"value":"1932-8184","type":"print"},{"value":"1937-9234","type":"electronic"},{"value":"2373-7816","type":"electronic"}],"subject":[],"published":{"date-parts":[[2017,6]]}}}