98% of Cyberattacks Exploit Human Error, UAE Council Warns
▼ Summary
– Nearly 98% of cyberattacks are driven by human error, with criminals increasingly using social engineering tactics that manipulate trust, emotions, and urgency.
– The UAE Cyber Security Council issued this warning during its Cyber Pulse initiative, a year-long awareness program to strengthen digital literacy and resilience.
– Attackers impersonate officials or trusted organizations to trick victims into revealing sensitive information or performing risky actions through methods like fake rewards and urgent messages.
– Fraudsters use direct communication to manipulate human behavior through empathy, fear, or urgency, often aiming to steal banking credentials, passwords, or personal information.
– The Council advises verifying identities, avoiding disclosing personal details, and monitoring official alerts to reduce risks as part of broader efforts to strengthen national cybersecurity.
A staggering 98% of successful cyberattacks stem from human error, according to a recent alert from the UAE Cyber Security Council. Criminals are shifting their focus away from purely technical vulnerabilities, instead leveraging psychological manipulation to exploit trust, urgency, and emotion. This troubling trend highlights the critical need for heightened public awareness and improved digital hygiene.
The warning emerged during the sixth week of the Cyber Pulse initiative, a year-long national campaign aimed at boosting cybersecurity literacy among individuals and organizations. Rather than deploying complex malware, attackers now favor social engineering tactics that trick people into voluntarily surrendering sensitive data or performing unsafe actions.
Common strategies used by cybercriminals include impersonating trusted officials or organizations, sending fake reward notifications, and distributing phishing links. Many also create a false sense of urgency, pressuring victims to act quickly without thinking. Another method involves overwhelming targets with contradictory information, leading to confusion and poor judgment.
These manipulative techniques are designed to trigger emotional responses, such as fear, excitement, or empathy, prompting individuals to disclose passwords, banking details, or other confidential information. The Council emphasized that verifying the identity of anyone requesting sensitive data is essential for protection.
To guard against these threats, the public is advised to avoid sharing personal or financial information through unverified channels and to remain skeptical of unsolicited messages. Staying informed through official security alerts and adopting recommended best practices can significantly reduce vulnerability.
Now in its second year, the Cyber Pulse awareness drive forms a key part of the UAE’s broader strategy to foster a secure digital environment. By promoting vigilance and education, the initiative supports the nation’s goal of building a resilient and trustworthy digital ecosystem.
(Source: MEA Tech Watch)
