Litcius/Paper detail

Targeting the Weakest Link: Social Engineering Attacks in Ethereum Smart Contracts

Nikolay Ivanov, Jianzhi Lou, Ting Chen, Jin Li, Qiben Yan

202116 citationsDOI

Abstract

Ethereum holds multiple billions of U.S. dollars in the form of Ether cryptocurrency and ERC-20 tokens, with millions of deployed smart contracts algorithmically operating these funds. Unsurprisingly, the security of Ethereum smart contracts has been under rigorous scrutiny. In recent years, numerous defense tools have been developed to detect different types of smart contract code vulnerabilities. When opportunities for exploiting code vulnerabilities diminish, the attackers start resorting to social engineering attacks, which aim to influence humans - often the weakest link in the system. The only known class of social engineering attacks in Ethereum are honeypots, which plant hidden traps for attackers attempting to exploit existing vulnerabilities, thereby targeting only a small population of potential victims.

Topics & Concepts

Computer securityExploitSocial engineering (security)CryptocurrencyScrutinyComputer sciencePopulationHoneypotCode (set theory)Programming languageSociologyLawSet (abstract data type)DemographyPolitical scienceBlockchain Technology Applications and SecurityAdvanced Malware Detection TechniquesSpam and Phishing Detection