Social engineering on the attack: What Cybermoi/s 2024 has in store for You (1/2)
Articles by the same author:
2
3
4
Launched in 2012 by the ENISA (European Union Agency for Cybersecurity), the European Cybersecurity Month (ECSM), also known as Cybermoi/s in France, aims to educate citizens about digital risks and promote good online practices. In France, the initiative is led by Cybermalveillance.gouv.fr.
A recent study by Cybermalveillance.gouv.fr shows that, although 63% of internet users consider themselves well-informed, 61% have been victims of cyber malice over the past year. The most common attacks include phishing, account hacking, and cyberbullying, with notable financial and psychological consequences. The Cybermoi/s provides a platform to educate and encourage vigilance, particularly among younger generations and businesses, through awareness-raising actions and practical advice.
This year, Cybermois will focus its actions on a particularly concerning issue: manipulation via social engineering. Responsible for 98% of cyberattacks, this technique involves cybercriminals exploiting human rather than technological weaknesses by manipulating individuals to obtain sensitive information or money.
Among the most common are phishing, where attackers pose as trusted entities to steal sensitive information. Spearphishing targets specific individuals with personal details to enhance credibility. Ransomware locks access to systems in exchange for a ransom, while vishing uses phone calls to extract data. More direct methods, like tailgating, allow fraudsters to physically enter secure areas. Finally, whaling, or CEO fraud, targets executives to extort funds or information. These techniques illustrate the importance of vigilance within businesses.
With the rise of generative AI, these attacks have become increasingly sophisticated, raising the risks for both individuals and professionals. The 2024 Cybermalveillance.gouv.fr report reveals that 3 out of 4 users are unaware of social engineering techniques, making these attacks particularly effective. For businesses, an IBM Security study reports that the average cost of a data breach in France rose from €3.835 million in 2023 to €3.920 million in 2024, marking a record high since the pandemic. Furthermore, 35% of victimized companies take more than 150 days to recover from a data breach, and only 12% of organizations surveyed declared they had fully recovered from their data breaches.
In the face of these threats, Cybermoi/s 2024 aims to be a key moment to raise awareness about best practices, particularly around verifying information sources, protecting digital identities, and educating younger generations, who are often more vulnerable to online manipulation. Strengthening vigilance against social engineering has become a societal challenge for both individuals and businesses.
Anyone wishing to get involved can take several actions during the Cybermoi/s. Businesses, citizens, and administrations can all contribute by raising awareness about good cybersecurity practices among their networks. Cybermalveillance.gouv.fr provides a comprehensive communication kit, including visuals, practical guides, and personalized advice. You can use these resources to organize your own events, publish content on social media, or send newsletters to employees or clients. The goal? Multiply awareness actions to strengthen collective digital protection.
Cybermoi/s 2024 is not limited to raising awareness about social engineering fraud. Check out our second article, which presents key initiatives and events not to be missed throughout October. Learn how to get actively involved and strengthen your daily cybersecurity.