Page 26 - Cyber Defense eMagazine December 2023
P. 26

imbalance. The outcomes for the victims are also similar: self-doubt, shame, and losing their grip on
            reality.



            What is Gaslighting?

            As 2022’s most popular word, you’ve probably heard of gaslighting. The term originates from the 1938
            play  Gas  Light  (which  was  turned  into  a  movie  of  the  same  name  in  1944),  in  which  a  husband
            manipulates his wife into believing she is losing her mind.
            One of his tactics was to make the lights in the house flicker by using the gas lights in the attic. Whenever
            she asked him “Why are the lights flickering?”, he said (something along the lines of) “It’s all in your head,
            darling. We should speak to the doctor about increasing your meds, you sound a bit cuckoo”. As this
            goes on, she eventually starts to question her sanity. The play doesn’t use the term gaslighting, but it
            demonstrates the type of manipulative behavior that now describes gaslighting.

            While social engineering has elements of gaslighting, they’re not entirely the same thing.

            Gaslighting in the context of relationships happens repeatedly and over time, slowly dismantling the
            victim’s sense of reality and self. Social engineering in cyber security is generally a one-off and doesn’t
            usually involve the key element of attacking the victim’s credibility (“you’re so paranoid/ jealous/ crazy”)
            that makes gaslighting so effective.




            How Gaslighting Increases the Effectiveness of Cybercrime

            Social engineering in the context of cyber security manipulates people into performing certain actions,
            like giving up access, credentials, bank details, or other sensitive information.


            It’s effective because attackers build rapport, distort reality, exploit the simulated power imbalance, and
            create a strong emotional reaction in their victims – some of the same tactics used in gaslighting.




            Rapport Building
            Gaslighting only works when there is some sort of relationship and trust. Likewise, scammers know that
            a person is more likely to engage with them if they’ve built rapport.

            A scammer might call you on the phone, telling you “Someone has access to your bank accounts through
            PayPal, and they can take all your money. I’m calling to help you.” They seem calm and professional and
            engage in a friendly chat with you and, believing they are calling to help, you let your guard down and do
            what they ask.










            Cyber Defense eMagazine – December 2023 Edition                                                                                                                                                                                                          26
            Copyright © 2023, Cyber Defense Magazine. All rights reserved worldwide.
   21   22   23   24   25   26   27   28   29   30   31