Engenharia Social: Um estudo sobre o nível de conhecimento e suscetibilidade em diferentes faixas etárias

Abstract

Social engineering is a psychological manipulation technique used to deceive individuals and obtain confidential information, posing a growing threat to information security. This study analyzed the level of knowledge and susceptibility of the population of Itapajé to such attacks, considering different age groups and educational levels. To achieve this, a survey was conducted with 124 participants who responded to an online questionnaire addressing topics such as phishing, pretexting, and baiting, as well as their digital security practices. The results indicate that although many participants have heard of social engineering, a significant portion cannot identify attacks or are unaware of the associated risks. Additionally, 74.2% have never received training on the topic, and a large proportion are unfamiliar with the General Data Protection Law (LGPD), which may compromise their digital security. It was also observed that email and social media attacks are the most recognized threats among participants. Given these findings, there is an urgent need for educational campaigns and training programs focused on raising awareness about social engineering, especially among the most vulnerable groups. The implementation of continuous digital education programs, both in educational institutions and in companies, can help mitigate the risks associated with these attacks. Future studies are suggested to explore the effectiveness of different awareness methods and the impact of technological advancements on digital security.