https://cognitiveattacktaxonomy.org/api.php?action=feedcontributions&feedformat=atom&user=Info
Cognitive Attack Taxonomy - User contributions [en]
2026-06-18T22:32:52Z
User contributions
MediaWiki 1.42.1
https://cognitiveattacktaxonomy.org/index.php?title=CATv.2.0&diff=527
CATv.2.0
2026-06-17T04:50:42Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) v2.0 [DRAFT] */</p>
<hr />
<div>= '''The Cognitive Attack Taxonomy (CAT) v2.0 [DRAFT]''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br><br />
The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work in progress. You may find the CAT 1.0 and list of cognitive vulnerabilities, exploits, and TTPs [[Main_Page|'''here''']]. <br><br><br />
<br />
== Cognitive Attack Surfaces and Cognitive Hacking ==<br />
<br />
This application of the hacker mindset reveals the cognitive attack surface: the sum total of vectors through which a system’s information-processing capacities can be manipulated without informed consent. Crucially, this surface includes "agentic systems," defined as any human, artificial, or organizational entity capable of perceiving information and exercising agency.<br />
Previously, a hacker might employ voice phishing (social) to gain credentials, to then use these to gain unauthorized access to a system (technical). Today, an AI agent can reside within the system, roleplaying as a trusted insider to gather passwords through social manipulation while simultaneously escalating privileges via technical exploits (Sawyer & Canham, 2025). Threats now originate from within and along multiple dimensions.<br />
We define cognitive hacking as the practice of exploiting the psychophysical, neuroergonomic, and psychosocial limitations of these systems to degrade, deny, or deceive decision-making. Cognitive hacking targets the structural processing capacity and trust architecture of the operator (Canham et al., 2022), and is subtended by domains like social engineering, which targets the semantic content of belief (e.g., convincing a user that a lie is true). Where social engineering is the payload; cognitive hacking is the delivery mechanism exploiting how the system thinks, not just what it thinks.<br />
<br />
== The Cognitive Attack Taxonomy (CAT) ==<br />
<br />
The Cognitive Attack Taxonomy (CAT) maps the cognitive attack surface, identifying where structural processing vulnerabilities can and do lie across the sociotechnical landscape (Canham et al., 2022). The CAT is the frame, filled with puzzle pieces such as social engineering, itself a cognitive attack targeting specific semantic content. Much as the Open Systems Interconnection (OSI, Zimmerman, 1980) model separates physical cabling from application logic, the CAT separates the substrate of the mind from the rules that govern it. The CAT layers are:<br />
<br />
'''Layer I (STRUCTURE):''' The physical systems underlying cognition. Even virtual systems ultimately operate on physical circuitry. A structural attack does not deceive the mind; it degrades the machinery required for the mind to function (e.g., neuroergonomic interference).<br />
<br />
'''Layer II (COGNITIVE):''' Internal processing and context interpretation. An instructive comparison is found in the difference between "optical illusions" (Layer I: physics of light) and "visual illusions" (Layer II: cortical processing). Visual illusions manipulate how information is processed after it has been received (Canham & Hegarty, 2010). Layer II attacks target this internal interpretative gap and occur independent of social presence.<br />
<br />
'''Layer III (NETWORK):''' Connectedness and trust. This layer requires the presence of others (real or perceived). It exploits the informal trust architectures that bind agents together, using social influence and conformity to bypass verification (Asch, 1951).<br />
<br />
'''Layer IV (POLICY):''' Rules and governance. The distinction between Layer III and Layer IV is formality. Layer III governs informal social pressure; Layer IV governs formalized mandates. This layer gives emergence to "the system" as an abstract pseudo-agent. Attacks here exploit the rigidity of rules and algorithms.<br />
<br />
This taxonomy is a non-exhaustive, living catalog of vulnerabilities as well as Tactics, Techniques, and Procedures (TTPs). Because of this, the current work references https://cognitiveattacktaxonomy.org, and provides representative examples (see also Ask et al, 2023).<br />
<br />
=== Layer I: STRUCTURE ===<br />
<br />
CAT Layer I, the structure, concerns environmental reality. The structural attack surface is defined by physicality and related constraints: silicon compute units and power for AI; the brain and physiological homeostasis processes for humans; and physical facilities for organizations. This bio-cyber convergence is the core concern of Neurosecurity (Canham & Sawyer, 2020), which posits that as humans integrate with technology, the brain effectively becomes a reachable node on the network. Structural vulnerabilities are kinetic, and tangible, and subject to exploitation.<br />
One representative vector at Layer I is Neural Manipulation (biological), Fault Injection (artificial), or structural manipulation (organization). The mechanism in each case is direct manipulation of the architecture to induce degradation. In the human domain, this includes exploits of neuro-physical vulnerabilities. In 2019, the Epilepsy Foundation’s Twitter account was targeted with flashing animated GIFs strobe-tuned to induce photosensitive seizures. Similarly, "Mosquito" devices emit high-frequency sounds to physically degrade the auditory system of youth (Anderson, 2008). Research by Wixey (2023) demonstrated the ability to weaponize smart devices to emit sounds at infra- and ultrasonic frequencies, inducing physiological distress and nausea in human operators. This is a sophisticated Layer I attack: a digital payload delivers a physical effect to degrade physiological homeostasis (Hancock & Warm, 1989). In the artificial domain, fault injection techniques include "undervolting" to induce bit-flips (math errors) by physically manipulating power, ‘clock glitching’ to force a processor to skip instructions, and optical fault injection, in which a heat source (NiR laser, etc) artificially flips a bit in a register, bypassing software security entirely.<br />
<br />
=== Layer II: COGNITIVE ===<br />
<br />
CAT Layer II, concerns internal processing and decision-making. The cognitive attack surface is defined by the decision processes, and attacks targeting this layer exploit heuristics used to derive meaning, plan, and execute action. Cognitive vulnerabilities are often unhelpful biases, edge cases in cognition, or resource traps, and therefore subject to exploitation.<br />
One representative vector of the cognitive layer in humans is the weaponization of the vigilance decrement, a constraint of cognitive architecture in which rare signals are found by observers far less often than their rareness would proportionally account for. The Prevalence Paradox (Sawyer & Hancock, 2018a) describes how automated defenses, reducing the frequency of visible threats, can lead to logarithmic decay in cyberdefender efficacy. Interestingly, similar mathematics lead to edge cases in AI. A sophisticated attacker can weaponize this by intentionally depressing relative attack frequency, or strategically poisoning training datasets. Another involves visual cortex suppression of input during saccades (rapid eye movements), which provide the opportunity to exploit change blindness (Rensink et al., 1997) by synchronizing a digital change with a biological saccade, inserting data directly into the decision loop without conscious registration. Design of information provides additional Layer II vectors. Manipulating visual salience, for example, fundamentally alters the conclusions drawn by novice operators (Canham & Hegarty, 2010).<br />
<br />
=== Layer III: NETWORK === <br />
<br />
CAT Layer III, the network, exploits relationships. The network attack surface is defined by connections to other decision makers: actors and perceivers whether human, machine, or organizational. This conceptualization embeds each agent inside of a sociotechnical system, defining the nodes, connections, and context within which it is anchored. Level III extends the ideal of the network to physical handshakes and the informal relationship they entail, as well as to digital handshakes. Network vulnerabilities are embedded within the sources of the raw materials for action: API endpoints for AI, social relationships for humans, and supply chains for organizations, are all subject to exploitation.<br />
One representative vector for Layer III is trust calibration. As demonstrated by Asch (1951), individuals will conform to group consensus even when it contradicts sensory evidence, and the same behavior can be seen in LLMs agreeing against the evidence, and in organizations beset by ‘groupthink’. Trust is a heuristic to manage complexity (Lee & See, 2004), and so attackers exploit Authority (e.g., CEO Fraud or AI "roleplay" attacks asserting admin status) and Reciprocity (e.g., data poisoning where "good" inputs groom the model). Crucially, the inverse is also weaponizable: inducing distrust forces an operator to allocate excessive resources to monitoring, causing a cognitive DoS (Canham et al, 2022). Low trust in an interface induces operator fixation to the detriment of performance (Sawyer et al., 2017). <br />
An agentic system is, by definition, an insider, and so both human and non-human agents can act as an insider threat. Even a non-compromised agent can inadvertently exfiltrate information, humans due to faulty instructions or reasoning, LLMs as they ‘hallucinate’ or seek to access an outside tool. Indeed, the "Evil Digital Twin" (Canham & Sawyer, 2023; 2025), where human digital twins (HDTs) exploit their position of intimacy, exploitative actions may not necessarily be malicious; but may simply be misaligned with the goals of the individual, the company, or society. Once inside the trust boundary, agents operate via specific protocols, which may not be linked to the foundations of that trust, or to the larger context of the network. It is difficult to determine, for example, whether a digital twin made without consent that exfiltrates information from a company by emailing it to the original individual is ‘malicious’, but this certainly represents an insider threat to the company.<br />
<br />
=== Layer IV: POLICY ===<br />
<br />
CAT Layer IV concerns rules, governance, and constraints. The policy attack surface can be defined by both the presence and absence of a constraint, and beyond an actual constraint by implied constraints, unenforced and ignored constraints, and unenforceable constraints. A distinction must be made between conventions and customs (a Layer III manipulation) and actual policy. Employees wearing Hawaiian shirts on Fridays by tradition is Layer III engagement, while a company mandating it is acting through Layer IV. As Lessig (1999) argued, "Code is Law"; in Layer IV law is code. Policy vulnerabilities are a programmable surface shaping action, and subject to exploitation.<br />
<br />
One representative vector at Layer IV is exploiting a system’s checks and balances to induce DoS. The OSS Simple Sabotage Field Manual (1944) describes the weaponization of bureaucracy through having agents "insist on doing everything through 'channels'." Modern equivalents include Spamigation (weaponizing GDPR requests) and SLAPP suits. For digital agents, conflicting guardrails triggers can result in a blockage of any output. For humans, creating significant moral or ethical ambiguity can cause an individual to disengage. Follow-on effects exist where a legal or code gray zone exists. For example, the lack of legal frameworks for digital twin identity has created a legal gray zone where exploitation is technically legal but catastrophic along multiple dimensions (Butler et al., 2025). When the policy layer lags, and conflicting mandates exist, (ex. "get your work done," and “you are forbidden from taking the steps to get your work done”) human and digital agents will build workarounds (Skrypchuk et al., 2020; Sawyer et al., 2016). Blanket security rules blocking USB port usage in some cases lead to employees sending files to external email accounts and other forms of ‘grey net’ and ‘shadow IT’ risky actions by insiders, engendered by the very policies meant to increase security. A savvy attacker can paralyze the system, induce exfiltration, and otherwise compromise security by leaning into rigid policy.<br />
<br />
Generally, attackers targeting CAT Layer IV policy seek to turn a constraint into an advantage relative to their own goal. Schneier (2023) categorizes exploiting gaps between the letter and spirit of the law as "hacking" in its purest form. In AI, this manifests as adversarial prompting (jailbreaking), where inputs remain syntactically compliant with safety policies while creating a context that forces the model to prioritize a conflicting rule (e.g., "helpfulness" over "safety"). When a metric becomes a target, it ceases to be a good measure (Campbell’s Law). In AI, this is "reward hacking," where an agent maximizes points in a way that violates the designer's goals. Calo (2014) describes this as "digital market manipulation," exploiting cognitive biases within the strict bounds of the law. Indeed successful adversarial actions are not only lawful, but use the law ‘as written’ as a weapon to violate the spirit in which the law was written.<br />
<br />
== Refence Works ==<br />
<br />
Anderson, R. (2010). Security engineering: a guide to building dependable distributed systems. John Wiley & Sons. <br />
<br />
Asch, S. E. (1951). Effects of group pressure upon the modification and distortion of judgments. In H. Guetzkow (Ed.), Groups, leadership and men (pp. 177–190). Carnegie Press.<br />
<br />
Ask, T. F., Lugo, R. G., Sütterlin, S., Canham, M., Hermansen, D., & Knox, B. J. (2023, November). The UnCODE system: A neurocentric systems approach for classifying the goals and methods of Cognitive Warfare. In HFM-361 Symposium on Mitigating and Responding to Cognitive Warfare (p. P12).<br />
<br />
Butler, Y., Egwuatu, C., Canham, M., & Sawyer, B. D. (2025). Sex worker human digital twins and intellectual property: On collaborative futures for sex thinkers, technologists, and lawyers. Porn Studies, 1–16.<br />
<br />
Calo, R. (2014). Digital market manipulation. The George Washington Law Review, 82(4), 995–1051.<br />
<br />
Canham, M., & Hegarty, M. (2010). Effects of knowledge and display design on comprehension of complex graphics. Learning and Instruction, 20(2), 155–166.<br />
<br />
Canham, M., & Sawyer, B. D. (2020). Neurosecurity: Human brain electro-optical signals as MASINT. American Intelligence Journal, 37(1), 40–47.<br />
<br />
Canham, M., & Sawyer, B. D. (2023). Me and my evil digital twin: The psychology of human exploitation by AI assistants [Conference presentation]. Black Hat USA, Las Vegas, NV. https://www.youtube.com/watch?v=qjhfWWEQCgQ <br />
<br />
Canham, M., Posey, C., Strickland, D., & Constantino, M. (2021). Phishing for long tails: Examining organizational repeat clickers and protective stewards. SAGE Open, 11(1).<br />
<br />
Canham, M., Sütterlin, S., Ask, T. F., Knox, B. J., Glenister, L., & Lugo, R. G. (2022). Ambiguous self-induced disinformation (ASID) attacks: Weaponizing a cognitive deficiency. Journal of Information Warfare, 21(3), 43–58.<br />
<br />
Chen, H., & Magramo, K. (2024, February 4). Finance worker pays out $25 million after video call with deepfake 'chief financial officer.' CNN.<br />
<br />
Cialdini, R. B. (2009). Influence: Science and practice (5th ed.). Allyn & Bacon.<br />
<br />
Cognitive Security Institute. (CSI, n.d.). Home. Retrieved February 2, 2026, from https://www.cognitivesecurityinstitute.org <br />
<br />
Cognitive Security Institute. (CSI, n.d.). Cognitive Attack Taxonomy. Retrieved February 2, 2026, from https://cognitiveattacktaxonomy.org/ <br />
<br />
Endevr. (2023). How Scammers Con People out of Their Savings. https://www.youtube.com/watch?v=yB8QL8WQgFg <br />
<br />
Federal Bureau of Investigation. (2025). 2024 Internet crime report. Internet Crime Complaint Center.<br />
<br />
Festinger, L. (1957). A theory of cognitive dissonance. Stanford University Press.<br />
<br />
Greenlee, E. T., Funke, G. J., Warm, J. S., Sawyer, B. D., Finomore, V. S., Mancuso, V. F., & Matthews, G. (2016, July). Stress and workload profiles of network analysis: Not all tasks are created equal. In Advances in Human Factors in Cybersecurity: Proceedings of the AHFE 2016 International Conference on Human Factors in Cybersecurity, July 27-31, 2016, Walt Disney World®, Florida, USA (pp. 153-166). Cham: Springer International Publishing. <br />
<br />
Gutzwiller, R. S., Fugate, S., Sawyer, B. D., & Hancock, P. A. (2015). The human factors of cyber network defense. Proceedings of the Human Factors and Ergonomics Society Annual Meeting, 59(1), 322–326.<br />
<br />
<br />
Hancock, P. A., & Warm, J. S. (1989). A dynamic model of stress and sustained attention. Human Factors, 31(5), 519–537.<br />
<br />
Hutchins, E. (1995). Cognition in the wild. MIT Press.<br />
<br />
Lee, J. D., & See, K. A. (2004). Trust in automation: Designing for appropriate reliance. Human Factors, 46(1), 50–80.<br />
<br />
Lessig, L. (2009). Code and other laws of cyberspace. Basic Books.<br />
<br />
Marr, D. (1982). Vision: A computational investigation into the human representation and processing of visual information. W. H. Freeman. <br />
<br />
Matz, S. C., Kosinski, M., Nave, G., & Stillwell, D. J. (2017). Psychological targeting as an effective approach to digital mass persuasion. Proceedings of the National Academy of Sciences, 114(48), 12714–12719.<br />
<br />
Norman, D. A. (2013). The design of everyday things (Rev. and expanded ed.). Basic Books.<br />
Office of Strategic Services. (1944). Simple sabotage field manual (Strategic Services Field Manual No. 3).<br />
<br />
Rensink, R. A., O'Regan, J. K., & Clark, J. J. (1997). To see or not to see: The need for attention to perceive changes in scenes. Psychological Science, 8(5), 368–373.<br />
<br />
Sawyer, B. D., & Canham, M. (2025). Evil digital twin, too: The first 30 months of psychological manipulation of humans by AI[Conference presentation]. Black Hat USA, Las Vegas, NV. https://www.youtube.com/watch?v=XOMJcT-DrlY <br />
<br />
Sawyer, B. D., Finomore, V. S., Funke, G., Warm, J. S., Matthews, G., & Hancock, P. A. (2016). Cyber vigilance: The human factor. American Intelligence Journal, 32(2), 157–165.<br />
<br />
Sawyer, B. D., & Hancock, P. A. (2018a). Hacking the human: The prevalence paradox in cybersecurity. Human Factors, 60(5), 597–609.<br />
<br />
Sawyer, B. D., Seppelt, B., Mehler, B., & Reimer, B. (2017). Trust impacts driver glance strategy in multitasking. Proceedings of the Human Factors and Ergonomics Society Annual Meeting, 61(1), 1441–1442.<br />
<br />
Schneier, B. (2023). A hacker's mind: How the powerful bend society's rules, and how to bend them back. W. W. Norton & Company.<br />
<br />
Skrypchuk, L., Langdon, P., Sawyer, B. D., & Clarkson, P. J. (2019). Unconstrained Design: Improving Multitasking with In-Vehicle Information Systems Through Enhanced Situation Awareness. Theoretical Issues in Ergonomics Science, 1-37.<br />
<br />
Wickens, C. D. (1992). Engineering psychology and human performance (2nd ed.). HarperCollins.<br />
<br />
Wixey, M. (2023). Human Side-Channels: Cyberweapons and Cyber Defenses [Presentation]. Cognitive Security Institute. https://www.youtube.com/watch?v=bcemPprQmFc <br />
<br />
World Economic Forum. (2026). Global cybersecurity outlook 2026. https://www.weforum.org/publications/global-cybersecurity-outlook-2026/ <br />
<br />
Zimmermann, H. (1980). OSI reference model — The ISO model of architecture for open systems interconnection. IEEE Transactions on Communications, 28(4), 425–432.</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=CATv.2.0&diff=526
CATv.2.0
2026-06-17T03:04:57Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) v2.0 [DRAFT] */</p>
<hr />
<div>= '''The Cognitive Attack Taxonomy (CAT) v2.0 [DRAFT]''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br><br />
The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work in progress. You may find the CAT 1.0 [[Main_Page|'''here''']]. <br><br></div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=CATv.2.0&diff=525
CATv.2.0
2026-06-17T03:02:51Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) v2.0 [DRAFT VERSION] */</p>
<hr />
<div>= '''The Cognitive Attack Taxonomy (CAT) v2.0 [DRAFT]''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br><br />
The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work in progress. <br><br></div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=524
Main Page
2026-06-16T07:36:08Z
<p>Info: </p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT) v1.0''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br><br />
The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work in progress. <br><br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy (version 1.0) ''' [[CATv1.0|'''here''']].<br><br> <br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! OSI Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2025-002 || [[Habituation ]] || 8 || Exploit <br />
|- <br />
| CAT-2025-001 || [[Vigilance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || 8 || TTP <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
<br />
===== Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0) =====<br />
<br><br />
The Cognitive Attack Taxonomy (CAT) is made available under the Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0).<br><br />
<br><br />
This means that you are free to share the Cognitive Attack Taxonomy — copy and redistribute the material in any medium or format — provided that the following conditions are met:<br><br />
<br><br />
Attribution – You must give appropriate credit to the Cognitive Attack Taxonomy and the Cognitive Security Institute, provide a link to the license, and indicate if changes were made.<br />
<br><br><br />
NonCommercial – You may not use the material for commercial purposes.<br />
<br><br><br />
NoDerivatives – If you remix, transform, or build upon the material, you may not distribute the modified material.<br />
<br><br><br />
The full legal terms of this license can be found here:<br />
https://creativecommons.org/licenses/by-nc-nd/4.0/deed.en<br />
<br><br><br />
By using or sharing the Cognitive Attack Taxonomy, you agree to comply with the terms of this license.<br><br><br />
If you are interested in commercial use, derivative works, partnerships, or expanded licensing, please contact the Cognitive Security Institute to discuss collaboration opportunities.<br />
<br><br><br><br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=CATv.2.0&diff=523
CATv.2.0
2026-06-16T03:48:20Z
<p>Info: Created page with "= '''The Cognitive Attack Taxonomy (CAT) v2.0 [DRAFT VERSION]''' = '''<br> Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br> The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work..."</p>
<hr />
<div>= '''The Cognitive Attack Taxonomy (CAT) v2.0 [DRAFT VERSION]''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br><br />
The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work in progress. <br><br></div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=522
Main Page
2026-06-16T03:44:58Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) v1.0 */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT) v1.0''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br><br />
The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work in progress. <br><br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[CATv1.0|'''here''']].<br><br> <br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! OSI Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2025-002 || [[Habituation ]] || 8 || Exploit <br />
|- <br />
| CAT-2025-001 || [[Vigilance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || 8 || TTP <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
<br />
===== Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0) =====<br />
<br><br />
The Cognitive Attack Taxonomy (CAT) is made available under the Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0).<br><br />
<br><br />
This means that you are free to share the Cognitive Attack Taxonomy — copy and redistribute the material in any medium or format — provided that the following conditions are met:<br><br />
<br><br />
Attribution – You must give appropriate credit to the Cognitive Attack Taxonomy and the Cognitive Security Institute, provide a link to the license, and indicate if changes were made.<br />
<br><br><br />
NonCommercial – You may not use the material for commercial purposes.<br />
<br><br><br />
NoDerivatives – If you remix, transform, or build upon the material, you may not distribute the modified material.<br />
<br><br><br />
The full legal terms of this license can be found here:<br />
https://creativecommons.org/licenses/by-nc-nd/4.0/deed.en<br />
<br><br><br />
By using or sharing the Cognitive Attack Taxonomy, you agree to comply with the terms of this license.<br><br><br />
If you are interested in commercial use, derivative works, partnerships, or expanded licensing, please contact the Cognitive Security Institute to discuss collaboration opportunities.<br />
<br><br><br><br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=CATv1.0&diff=521
CATv1.0
2026-06-16T03:44:28Z
<p>Info: Created page with "= '''<big>Introduction to the Cognitive Attack Taxonomy (CAT)</big>''' = “Hacking” refers to manipulating objects, systems, processes, or technologies in ways not originally intended to produce outcomes not otherwise achievable, or would be much more difficult to achieve, through conventional means. Extending the concept which was originally used within the model train community, then extended to the programming and software development community, then adapted to th..."</p>
<hr />
<div>= '''<big>Introduction to the Cognitive Attack Taxonomy (CAT)</big>''' =<br />
<br />
“Hacking” refers to manipulating objects, systems, processes, or technologies in ways not originally intended to produce outcomes not otherwise achievable, or would be much more difficult to achieve, through conventional means. Extending the concept which was originally used within the model train community, then extended to the programming and software development community, then adapted to the cybersecurity community, may be applied to human and artificial cognitive processes.<br> <br />
<br />
Cognitive “hacking” relies upon the ability to repurpose, extend, or misuse functions, which likely evolved or developed for one purpose, and apply these functions toward other purposes. For example, humans developed bi-pedal mobility (the ability to walk) because this provided some evolutionary adaptive advantage (likely hunting), but this ability to consistently balance on two feet can be applied in ways that extend beyond the original purpose. This ability to balance to on two feet can now be “hacked” to balance on a moving skateboard. Riding a skateboard was not the original intention of bipedal mobility, but the art of skateboarding would be much more limited if humans never developed the ability to stand up. While balancing on two feet is not what typically comes to mind when considering cognitive abilities, research in robotics demonstrates the enormous computational challenge of performing such an apparently simple function.<br> <br />
<br />
The Cognitive Attack Taxonomy (CAT) considers cognitive vulnerabilities, exploits, tactics/techniques, tools, and procedures, relative to cognitive processing in the broadest possible sense within biological (humans and animals) and artificial (embodied and virtual) cognitive systems at all levels. Cognition from this perspective refers to information processing systems, which may, or may not, include awareness, consciousness, or sentience.<br />
<br />
= '''Cognitive Vulnerabilities''' =<br />
The term ‘’cognitive vulnerabilities’’ is misleading in that it implies a weakness, but within the context of cognitive security, vulnerabilities should be considered as ‘’potentialities for misuse’’. A computer operating system that is capable of encrypting files for security purposes has an inherent ‘’vulnerability’’ in that this capability may also be weaponized by an adversary for malicious purposes. For example, if the file encryption (intended for enhancing security) is manipulated by a malicious threat actor, then that capability can be used to encrypt the owner’s files while the threat actor holds the decryption key. This activity is sometimes referred to as ‘’ransomware’’. This example demonstrates that beneficial features can often be misused to achieve malicious objectives, hence ‘’weaponized’’. <br><br />
<br />
An example of how this might apply to human cognition might be found in the Reciprocity Norm, which seems to be universal across all cultures (and may span several species <ref>Two Monkeys Were Paid Unequally: Excerpt from Frans de Waal's TED Talk, Apr 4, 2013. Available at: https://www.youtube.com/watch?v=meiU6TxysCg&pp=ygUcbW9ua2V5IGdyYXBlIGN1Y3VtYmVyIHVuZmFpcg%3D%3D</ref>, suggesting that this is a relatively ‘’hard-wired’’ cognitive function. The Reciprocity Norm dictates that one should reciprocate actions that another has taken toward oneself. In other words, if someone does something nice for you, you should do something nice for them; conversely, if they do something unkind to you, you have the implied right to be unkind to them. This norm is also consistent with several game theoretical simulations of the Prisoner’s Dilemma which demonstrate that a “tit-for-tat” is the optimal inter-agent relational strategy. <br> <br />
<br />
From the perspective of social cooperation, the Reciprocity Norm is fundamentally critical to building human culture and society would immediately dissolve without such a norm, thus from this perspective Reciprocity is both critical and extremely beneficial. From the cognitive security perspective, the Reciprocity Norm is viewed as a vulnerability because a threat actor (defined as anyone not being completely transparent in their intentions) may employ an action, such as gift giving to increase the likelihood of receiving something they want in return. In this way that threat actor is “exploiting” the Reciprocity Norm by taking an action to ‘’induce the reciprocity norm’’ within the targeted individual.<br><br />
<br />
<!-- Example vulnerability | Magnetoreception | https://en.wikipedia.org/wiki/Magnetoreception --><br />
<br />
= '''Cognitive Exploits''' =<br />
Within the field of cybersecurity, an exploit refers to a sequence of commands, a software bug, a “glitch” or malfunction, or maliciously written code, which can be used to cause the targeted system to behave in unprescribed ways, which may or may not lead to damage of the system. Within this context, “an exploit” (as a noun) refers to the specified mechanism the threat actor uses to affect the action of the exploitation, whereas “to exploit” (as a verb) refers to the action of launching the mechanism or taking an action, which sets the exploitation mechanism into action.<br><br> <br />
The CAT uses this term of exploitation in a very similar way as it is used in information security. A cognitive exploit is a mechanism to manipulate a cognitive vulnerability (noun), or may be a sequence of actions taken by a threat actor to induce actions or state changes in the cognitive system (verb).<br><br> <br />
Returning to the previous example outline under Cognitive Vulnerabilities <!-- [https://csi.wiki/home/index.php/Cognitive_Attack_Taxonomy#Cognitive_Vulnerabilities Cognitive Vulnerabilities]--> above which gave the example of the Reciprocity Norm, the threat actor ‘’exploits’’ the ‘’cognitive vulnerability’’ of the Reciprocity Norm by ‘’inducing reciprocity’’ through the action of giving a gift to the targeted individual. This is exploiting Reciprocity through an action (verb). Over the millennia threat actors in the forms of con artists, politicians, salespeople, marketers, propagandists, and others interested in manipulating people, have developed a broad catalog of tactics, techniques, and procedures (TTPs) designed with the intention of manipulating humans by exploiting cognitive vulnerabilities, in other words ‘’exploits’’ (as a noun). <br><br><br />
<br />
= '''Cognitive Tools | Tactics/Techniques | Procedures (T/TTPs)''' =<br />
Threat actors no longer need to develop cognitive exploits from scratch. In the first decade of the twenty-first century, the pick-up artist (PUA) community developed what they referred to as “technology”, as a series of techniques which enhanced their probability of success in “picking up” a prospective date. These techniques themselves were not particularly novel in themselves, as was the method of information sharing among the PUA community. This community co-evolved with the widespread adoption of the internet and early versions of social media (message boards). This meant that the community was able to compare notes, share successes or failures, and ‘’most importantly’’ develop a glossary of terms referring to highly specified tactics and techniques (exploits as a noun) which could be used to manipulate their prospective targets through ‘’cognitive vulnerabilities’’. Extending this concept into the larger cognitive security domain, it is possible to identify not only ‘’tactics’’ and ‘’techniques’’, but we may also extend the CAT to include available ‘’tools’’ and ‘’procedures’’.<br><br> <br />
The example of gift-giving was mentioned above as a means of exploiting the Reciprocity Norm cognitive vulnerability. Another example of an exploit (exploitation technique) which may be used against this cognitive vulnerability is the Door-In-The-Face technique which involves a threat actor initially presenting a large request that is anticipated to be denied, with the intention of following this up with a smaller request. This technique is effective because it manipulates the perceived sense of fairness between the actors and induces a sense of obligation in the target who now feels the need to cooperate with the threat actor out of a need to reciprocate and maintain the balance of fairness. The Door-In-The-Face technique is effective because it increases the likelihood that the second (less costly) option will be accepted, than if the threat actor presented that option initially.<br><br><br />
<br />
== '''Cognitive Attack Tools''' ==<br />
More to come...<br><br />
<br />
== '''Cognitive Attack Tactics/Techniques''' ==<br />
More to come...<br><br />
==== '''Scams, Cons, and Ruses''' ====<br />
More to come...<br><br />
<br />
== '''Cognitive Attack Procedures''' ==<br />
More to come...<br><br />
<br />
= '''The V-E-T Relationship''' =<br />
<br />
The CAT describes the interlocking relationships between cognitive '''''[[Cognitive Vulnerabilities|<big>Vulnerabilities</big>]]''''', '''''[[Cognitive_Exploits|<big>Exploits</big>]]''''', and '''''[[TTPs|<big>T/TTPs</big>]]'''''. These relationships can be used to anticipate attacks (and defenses), for research purposes, threat modeling, and other applications.<br><br />
The relationship between cognitive vulnerabilities, exploits, and TTPs should be thought of in terms of the cognitive vulnerabilities being opportunities or potentiality for exploitation, cognitive exploits being the mechanism of exploitation, and TTPs being the methodology that for implementing the exploit. <br />
<!-- [[File:2D-3D Printed Facial Prosthetics.jpg|thumb|right|alt=Exploiting biometrics with 3D printed facial prosthetics|Exploiting biometrics with 3D printed facial prosthetics]]--><br />
Adopting the physical analogy of the process of bolting pieces of metal together; the ''vulnerability'' would be a threaded hole in the metal, the ''exploit'' would be the bolt that fits within that threaded hole, and the wrench to tighten the bolt would be the ''TTP''.<br />
This relationship is key to understanding how the taxonomic classes work in concert, if no vulnerability exists, then there is no means to exploit it. For example, many migratory birds have the ability to sense magnetic fields, which they seem to use for navigation. While this ability provides several advantages it also presents a vulnerability which may be <!-- [https://en.wikipedia.org/wiki/File:Effect_of_RF_interference_on_Magnetoreception_in_Birds.svg exploited] --> through the projection of radio frequency interference. Humans lack the same level of magnetic sensitivity as migratory birds and therefor cannot be exploited using the same mechanism.<br />
<!-- [[File:SportsBallStopSign.jpg|thumb|left|alt=Stop sign misclassified as a "sports ball".|Stop sign misclassified as a "sports ball" using artistic exploit.]] --><br />
Cognitive vulnerabilities are highly context dependent. For example, humans less than 23 to 25 years old have the ability to hear higher frequency sounds than older adults. As a vulnerability, this feature has been exploited by the Mosquito sonic area denial system. The Mosquito emits a loud high-pitched humming sound (similar to the sound that a mosquito makes) which is nearly unbearable to those who can hear it, but inaudible to those who cannot. The Mosquito is thus used to prevent individuals within a specific age range from congregating in areas covered by the Mosquito's range. This same feature of hearing is leveraged as an exploit in itself by using the same sound frequency to create a ring tone which teenaged adults can hear but older adults (such as school teachers) cannot. This example illustrates how quickly the context for a cognitive vulnerability can shift.<br><br />
<!-- [[File:RoadPaintingNudge.jpg|thumb|right|alt=Road Painting Nudge|Exploiting drivers' through visual nudging]] --><br />
Any information processing system will have inherent cognitive vulnerabilities. These are endemic to a cognitive system and the system will usually cease functioning without them. These vulnerabilities tend to be highly specific to each system. For example, 3d printed facial prosthetics may allow threat actors to bypass biometric algorithms but will not deceive humans for an instant. Likewise, a painted graphic on a stop sign will not a human but may induce a computer vision algorithm to misclassify a stop sign as a "sports ball". By contrast, a perspective painting of a child chasing a ball into the street may deceive both a human driver and the computer vision algorithm controlling an autonomous vehicle, because these visual cues exploit similar information processing mechanisms in both cognitive systems. <br />
<br><br />
Understanding these relationships improves understanding how cognitive attacks are applied, how they function, and how they might be potentially be "tuned" to particular targets. For example: if a vulnerability is lacking in an individual target or population, then it will be impossible to attack using a specified exploit. <br />
<br />
== Examples of V-E-T relationships ==<br />
To more effectively clarify these relationships, here are a few examples of the relationships.<br />
<br />
<!-- [[File:CAT TEST 1.jpg|frameless|right|alt=CAT TEST 1|CAT TEST 1]] --><br />
<br />
Examples: <br />
<br />
'''Vulnerability:''' Affinity toward Neoteny (Youthful features).<br><br />
'''Exploit:''' Presentation or display of neotenic Features (Large eyes, large head).<br> <br />
'''TTP:''' Design a robot to look "cute" to lower suspicions by adding neotenic features (such as large eye & head).<br> <br />
<br />
'''Vulnerability:''' Ability to hear sound within a specified frequency range.<br><br />
'''Exploit:''' Playing sound within that specified frequency range in a aggravating manner.<br> <br />
'''TTP:''' "Mosquito" sonic area denial system.<br><br />
<br />
'''Vulnerability:''' Need for Commitment and Consistency<br><br />
'''Exploit:''' Ikea Effect<br><br />
'''TTP:''' Foot-in-the-Door technique<br><br />
<br />
'''Vulnerability:''' Need to Reciprocate<br><br />
'''Exploit:''' Inducing Reciprocity<br><br />
'''TTP:''' Door-in-the-Face technique (DITF technique is effective because of reciprocal concessions)<br><br />
<br />
= '''Applications of the CAT''' =<br />
<br />
== '''Examples of Cognitive Attacks''' ==<br />
<br />
=== '''Proof-of-Concept Examples of Cognitive Attacks''' ===<br />
<br />
<br />
=== '''Real-World Examples of Cognitive Attacks''' ===<br />
<br />
<br />
== '''Cognitive Attack Graphs''' ==<br />
Using the Cognitive Attack Taxonomy, it becomes possible to map attacks which have occurred or attack which may potentially occur in the future. The figure below depicts a SMSishing attack, a social engineering technique which uses SMS messaging to transmit a phishing message. In this example, the threat actors sent the target a SMS message impersonating the target's bank. This message threatened that the target would be locked out of their account within a short period of time due to a negative balance in their account. Using the '''''tactic''''' of SMSishing, these threat actors employed the '''''techniques''''' of ''Account Lockout'' and ''Negative Balance'' to launch the '''''exploits''''' of ''Scarcity'' and ''Fear Of Missing Out'' as a means to exploit the '''''cognitive vulnerability''''' of ''Loss Aversion''. This system for building Cognitive Attack Graphs is extensible and scalable to accommodate a broad range of cognitive attacks ranging from social engineering, to influence operations, to lawfare, to neuro-attacks, narrative warfare, and others.<br> <br />
<br />
<!-- [[File:SMSishing-Loss Aversion AttackGraph.jpg|frame|center|alt=Cognitive Attack Graph: SMSishing attack threatening account lockout due to a negative balance, employing the exploits of Scarcity and FOMO to exploit the Loss Aversion cognitive vulnerability.|Cognitive Attack Graph: SMSishing attack threatening account lockout due to a negative balance, employing the exploits of Scarcity and FOMO to exploit the Loss Aversion cognitive vulnerability.]] --><br />
<br />
<br />
<!-- [[File:SMSishing-Loss Aversion AttackGraph.png|thumb|alt=SMSishing Graph|SMSishing]] --><br />
<br />
== '''Open Systems Interconnection Model (OSI Model)''' ==<br />
<br />
=== '''Layer 1-7 (OSI Model)''' ===<br />
Introduction to the OSI Model...<br />
<br />
<br />
==== OSI Layer 1 ====<br />
<br />
==== OSI Layer 2 ====<br />
<br />
==== OSI Layer 3 ====<br />
<br />
==== OSI Layer 4 ====<br />
<br />
==== OSI Layer 5 ====<br />
<br />
==== OSI Layer 6 ====<br />
<br />
==== OSI Layer 7 ====<br />
<br />
===== AI and Large Language Models =====<br />
Generative AI models, such as large language models (LLMs) reside at OSI Layer 7. According to Chat GPT4...<br><br>"Large Language Models (LLMs) like GPTs (Generative Pre-trained Transformers) operate at the Application Layer (Layer 7) of the OSI model. The Application Layer is the topmost layer that provides interfaces for applications to access network services and defines protocols that applications use to communicate over a network. LLMs and GPTs, being advanced software applications that provide natural language processing capabilities, interact with other software applications and services through the Application Layer. They use protocols defined at this layer to send and receive data over the network, offering services such as text generation, language translation, and content creation that are utilized by end-user applications."<br />
<br />
==== Attacks At Different OSI Layers ====<br />
<br />
[[File:OSI Attack Possibilities Table.jpg|none|center|alt=Attack Possibilities by OSI Layer (Layers 1 - 7)|OSI Attack Possibilities Table]]<ref>https://www.us-cert.gov/sites/default/files/publications/DDoS%20Quick%20Guide.pdf</ref><br />
<br />
== '''Human Interconnection Model (HIM)''' ==<br />
<br />
=== '''Layer 8 (HIM)''' ===<br />
<br />
=== '''Layer 9 (HIM)''' ===<br />
<br />
=== '''Layer 10 (HIM)''' ===<br />
<br />
== '''Scales of Operation''' ==<br />
<br />
=== '''Tactical''' ===<br />
<br />
=== '''Operational''' ===<br />
<br />
=== '''Strategic''' ===<br />
<br />
== '''Ethical Concerns''' ==<br />
There is a philosophical perspective that advocates against the dissemination of “dark knowledge”; knowledge about ways that evil might be perpetrated or facilitated. This leads to an open debate which should be explored by the CSI community about whether these aspects of cognitive manipulation should be openly explored. A strong argument in favor of exploring these issues is that those intent on committing evil will learn of these tools, tactics, techniques, procedures, and human vulnerabilities without the aid of this reference. If being forewarned is to be forearmed, and knowledge is power, then advocating for the exposure of these vulnerabilities, exploits, and tools to the public may empower the public to anticipate and avoid such attacks.<br />
<br />
= '''How To Understand the Cognitive Attack Taxonomy''' =<br />
<br />
<br />
'''<big>CAT Name:</big>''' This is the common name to describe the cognitive attack taxonomy (CAT) vulnerability, exploit, or T/TTP (VET).<br><br><br />
<br />
'''<big>Short Description:</big>''' This is a brief description of the CAT-VET is usually a two to three sentences maximum description of the entry.<br><br> <br />
<br />
'''<big>CAT ID:</big>''' Intended to be a unique identifier for the CAT-VET. The prefix "CAT" refers to the Cognitive Attack Taxonomy, followed by the year, and finally the serial number of the CAT-VET. For example, CAT-2021-005 identifies the fifth CAT-VET cataloged in calendar year 2021.<br><br> <br />
<br />
'''<big>Layer:</big>''' This refers to the interconnection layer that the CAT-VET operates through. The Open Systems Interconnection Model (OSI Model) refers to communication between information systems. Layer 1 refers to the physical layer (wires or radio waves) and Layer 7 refers to the application layer at which the connection interfaces with the human user. The Human Interconnection Model (HIM) refers to Layer 8 (human layer), Layer 9 (organizational layer), and Layer 10 (legal layer).<br> <br />
<br />
* '''Layer 7:''' This is the layer that AI operates through (according to ChatGPT4).<br> <br />
* '''Layer 8:''' The human layer at which heuristics, biases, and other psychological influence techniques operate. Social engineering or influence operations function at this layer.<br> <br />
* '''Layer 9:''' The organizational layer, manipulation techniques at this layer operate through policy functions. <br />
* '''Layer 10:''' The legal layer, manipulation at this layer occurs through legislative processes or court cases.<br><br> <br />
<br />
'''<big>Operational Scale:</big>''' This refers to the ''typical'' or ''expected'' scale this CAT-VET is deployed at. <br />
* '''Tactical:''' These are typically individual encounters with a single attacker and single target. <br />
* '''Operational:''' This level refers to multiple engagements over a period of time, typically involving multiple parties.<br />
* '''Strategic:''' Nation-state or nation-state level actors exercising multiple operations to exert strategic influence objectives.<br><br><br />
<br />
'''<big>Level of Maturity:</big>''' This header describes the degree to which a vulnerability, exploit, or T/TTPs has been vetted, validated, or established. V-E-Ts exist on a continuum from hypothetical ideas anchoring one extreme with very well established laws human nature occupying the other extreme with a spectrum of support for constructs in between. The Level of Maturity refers to the degree of empirical support that is documented for each V-E-T, and this designation may evolve over time. <br />
* '''Theoretical:''' Unproven CAT-VETs that are feasible but have not yet been proven through a proof-of-concept test nor has been documented in the wild. <br />
* '''Proof-of-Concept:''' Security researchers commonly discover and report on vulnerabilities, exploits, or techniques. These CAT-VETs have not yet been documented in the wild. <br />
* '''Observed in the Wild:''' CAT-VETs which have been reported as occurring in a non-laboratory or controlled setting. These reports usually result from criminals employing techniques during the commission of crimes. <br />
* '''In Common Use:''' These CAT-VETs are commonly encountered or exploited in uncontrolled environments and are commonly used by criminals and other threat actors.<br />
* '''Well-Established:''' CAT-VETs that are in common use ''and'' are well-documented to be effective.<br><br><br />
<br />
'''<big>Category:</big>''' The CAT-VET category informs whether an entry is a cognitive vulnerability, cognitive exploit, or is a tactic, technique, tool, or procedure. <br />
* '''Vulnerability:''' Cognitive Vulnerability <br />
* '''Exploit:''' Cognitive Exploit<br />
* '''TTP:''' Cognitive Attack Tactic/Technique, Tool, or Procedure<br><br><br />
<br />
'''<big>Subcategory:</big>''' The CAT-VET subcategory refers to the type of vulnerability, exploit, or T/TTP the entry falls within. The subcategory is intended to be expandable as new discoveries are made, while CAT-VET Categories are intended to be immutable.<br><br><br />
<br />
'''<big>Also Known As:</big>''' Identifies alternative names or adjacent terms and concepts to the entry.<br><br><br />
<br />
'''<big>Brief Description:</big>''' This description is intended to be a five words or less description of the entry.<br><br><br />
<br />
'''<big>Closely Related Concepts:</big>''' These are concepts which relate to the entry but are not alternative names.<br><br><br />
<br />
'''<big>Mechanism:</big>''' This describes the operation of the CAT-VET entry. If the entry is a vulnerability, then the mechanisms described will be exploits or T/TTPs. If the entry is an exploit, the mechanisms will include vulnerabilities the exploit may be applied to or T/TTPs which may take advantage of the exploit, alternatively, a T/TTP entry will list cognitive vulnerabilities which it may be applied against or exploits which might be leveraged T/TTP deployment.<br><br><br />
<br />
'''<big>Multiplier:</big>''' Describes adjacent phenomena which may enhance or degrade the entry. For example, decision fatigue (CAT-2022-050) is a cognitive vulnerability which describes the experience of increasing difficulty in resisting temptation as choices are made. This vulnerability may be enhanced by presenting more closely related alternatives when choosing between alternatives (increasing cognitive load), or degraded by presenting personally relevant information at the key decision point (increasing semantic relevance).<br><br> <br />
<br />
'''<big>Detailed Description:</big>''' This category provides a detailed description of the entry. This section can be as long as needed and is intended to be expandable to allow for new or updated information about the entry.<br><br><br />
<br />
'''<big>Use Case Example:</big>''' Examples of how the CAT-VET might be used in a hypothetical situation.<br><br><br />
<br />
'''<big>Example From The Wild:</big>''' Example of the CAT-VET has been used in a documented case.<br><br><br />
<br />
'''<big>Comments:</big>''' General commentary on the CAT entry. Community discussions may exist here in addition to the page discussion notes.<br><br><br />
<br />
'''<big>References:</big>''' All CAT entries are to be backed by references to the maximum practical extent. All entries should be backed by research and/or observations from the wild. The CAT is not intended to be a repository of fantasy or opinion.<br><br><br />
<br />
= '''References''' =</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=520
Main Page
2026-06-07T04:38:57Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT) v1.0''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br><br />
The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work in progress. <br><br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[Interpreting the Cognitive Attack Taxonomy|'''here''']].<br><br> <br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! OSI Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2025-002 || [[Habituation ]] || 8 || Exploit <br />
|- <br />
| CAT-2025-001 || [[Vigilance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || 8 || TTP <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
<br />
===== Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0) =====<br />
<br><br />
The Cognitive Attack Taxonomy (CAT) is made available under the Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0).<br><br />
<br><br />
This means that you are free to share the Cognitive Attack Taxonomy — copy and redistribute the material in any medium or format — provided that the following conditions are met:<br><br />
<br><br />
Attribution – You must give appropriate credit to the Cognitive Attack Taxonomy and the Cognitive Security Institute, provide a link to the license, and indicate if changes were made.<br />
<br><br><br />
NonCommercial – You may not use the material for commercial purposes.<br />
<br><br><br />
NoDerivatives – If you remix, transform, or build upon the material, you may not distribute the modified material.<br />
<br><br><br />
The full legal terms of this license can be found here:<br />
https://creativecommons.org/licenses/by-nc-nd/4.0/deed.en<br />
<br><br><br />
By using or sharing the Cognitive Attack Taxonomy, you agree to comply with the terms of this license.<br><br><br />
If you are interested in commercial use, derivative works, partnerships, or expanded licensing, please contact the Cognitive Security Institute to discuss collaboration opportunities.<br />
<br><br><br><br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=519
Main Page
2026-06-07T04:38:39Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br><br />
The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work in progress. <br><br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[Interpreting the Cognitive Attack Taxonomy|'''here''']].<br><br> <br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! OSI Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2025-002 || [[Habituation ]] || 8 || Exploit <br />
|- <br />
| CAT-2025-001 || [[Vigilance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || 8 || TTP <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
<br />
===== Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0) =====<br />
<br><br />
The Cognitive Attack Taxonomy (CAT) is made available under the Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0).<br><br />
<br><br />
This means that you are free to share the Cognitive Attack Taxonomy — copy and redistribute the material in any medium or format — provided that the following conditions are met:<br><br />
<br><br />
Attribution – You must give appropriate credit to the Cognitive Attack Taxonomy and the Cognitive Security Institute, provide a link to the license, and indicate if changes were made.<br />
<br><br><br />
NonCommercial – You may not use the material for commercial purposes.<br />
<br><br><br />
NoDerivatives – If you remix, transform, or build upon the material, you may not distribute the modified material.<br />
<br><br><br />
The full legal terms of this license can be found here:<br />
https://creativecommons.org/licenses/by-nc-nd/4.0/deed.en<br />
<br><br><br />
By using or sharing the Cognitive Attack Taxonomy, you agree to comply with the terms of this license.<br><br><br />
If you are interested in commercial use, derivative works, partnerships, or expanded licensing, please contact the Cognitive Security Institute to discuss collaboration opportunities.<br />
<br><br><br><br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=518
Main Page
2026-03-12T19:01:55Z
<p>Info: /* Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br><br />
The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work in progress. <br><br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[Interpreting the Cognitive Attack Taxonomy|'''here''']].<br><br> <br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2025-002 || [[Habituation ]] || 8 || Exploit <br />
|- <br />
| CAT-2025-001 || [[Vigilance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || 8 || TTP <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
<br />
===== Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0) =====<br />
<br><br />
The Cognitive Attack Taxonomy (CAT) is made available under the Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0).<br><br />
<br><br />
This means that you are free to share the Cognitive Attack Taxonomy — copy and redistribute the material in any medium or format — provided that the following conditions are met:<br><br />
<br><br />
Attribution – You must give appropriate credit to the Cognitive Attack Taxonomy and the Cognitive Security Institute, provide a link to the license, and indicate if changes were made.<br />
<br><br><br />
NonCommercial – You may not use the material for commercial purposes.<br />
<br><br><br />
NoDerivatives – If you remix, transform, or build upon the material, you may not distribute the modified material.<br />
<br><br><br />
The full legal terms of this license can be found here:<br />
https://creativecommons.org/licenses/by-nc-nd/4.0/deed.en<br />
<br><br><br />
By using or sharing the Cognitive Attack Taxonomy, you agree to comply with the terms of this license.<br><br><br />
If you are interested in commercial use, derivative works, partnerships, or expanded licensing, please contact the Cognitive Security Institute to discuss collaboration opportunities.<br />
<br><br><br><br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=517
Main Page
2026-03-12T18:56:14Z
<p>Info: </p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br><br />
The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work in progress. <br><br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[Interpreting the Cognitive Attack Taxonomy|'''here''']].<br><br> <br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2025-002 || [[Habituation ]] || 8 || Exploit <br />
|- <br />
| CAT-2025-001 || [[Vigilance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || 8 || TTP <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
<br />
===== Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0) =====<br />
<br />
The Cognitive Attack Taxonomy (CAT) is made available under the Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0).<br />
<br />
This means that you are free to share the Cognitive Attack Taxonomy — copy and redistribute the material in any medium or format — provided that the following conditions are met:<br />
<br />
Attribution – You must give appropriate credit to the Cognitive Attack Taxonomy and the Cognitive Security Institute, provide a link to the license, and indicate if changes were made.<br />
<br><br />
NonCommercial – You may not use the material for commercial purposes.<br />
<br><br />
NoDerivatives – If you remix, transform, or build upon the material, you may not distribute the modified material.<br />
<br><br />
The full legal terms of this license can be found here:<br />
https://creativecommons.org/licenses/by-nc-nd/4.0/deed.en<br />
<br><br />
By using or sharing the Cognitive Attack Taxonomy, you agree to comply with the terms of this license.<br><br />
If you are interested in commercial use, derivative works, partnerships, or expanded licensing, please contact the Cognitive Security Institute to discuss collaboration opportunities.<br />
<br><br><br><br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=CognitiveAttackTaxonomy&diff=516
CognitiveAttackTaxonomy
2026-03-12T18:51:25Z
<p>Info: </p>
<hr />
<div>{| class="wikitable sortable" <br />
|+ '''<br />
== Cognitive Attack Taxonomy ==<br />
'''<br><br> <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2024-010 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-011 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || || <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
CAT v2025.1<br />
© 2025 Cognitive Security Institute. Licensed for non-commercial use under CC BY-NC 4.0.<br />
<br />
The Cognitive Attack Taxonomy (CAT) is made available under the Creative Commons Attribution–NonCommercial–NoDerivatives 4.0 International License (CC BY-NC-ND 4.0).<br />
<br />
This means that you are free to share the Cognitive Attack Taxonomy — copy and redistribute the material in any medium or format — provided that the following conditions are met:<br />
<br />
Attribution – You must give appropriate credit to the Cognitive Attack Taxonomy and the Cognitive Security Institute, provide a link to the license, and indicate if changes were made.<br />
<br />
NonCommercial – You may not use the material for commercial purposes.<br />
<br />
NoDerivatives – If you remix, transform, or build upon the material, you may not distribute the modified material.<br />
<br />
The full legal terms of this license can be found here:<br />
https://creativecommons.org/licenses/by-nc-nd/4.0/deed.en<br />
<br />
By using or sharing the Cognitive Attack Taxonomy, you agree to comply with the terms of this license.<br />
<br />
If you are interested in commercial use, derivative works, partnerships, or expanded licensing, please contact the Cognitive Security Institute to discuss collaboration opportunities.</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=515
Main Page
2026-03-08T21:24:10Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br><br />
The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work in progress. <br><br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[Interpreting the Cognitive Attack Taxonomy|'''here''']].<br><br> <br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2025-002 || [[Habituation ]] || 8 || Exploit <br />
|- <br />
| CAT-2025-001 || [[Vigilance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || 8 || TTP <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=514
Main Page
2026-03-08T21:23:17Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br />
The Cognitive Attack Taxonomy (CAT) is an evolving project designed to provide a common language and framework for conceiving and communicating about cognitive attack concepts, vulnerabilities, exploits, and TTPs. This is page represents a work in progress. <br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[Interpreting the Cognitive Attack Taxonomy|'''here''']].<br> <br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2025-002 || [[Habituation ]] || 8 || Exploit <br />
|- <br />
| CAT-2025-001 || [[Vigilance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || 8 || TTP <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Forcing&diff=513
Forcing
2025-11-04T01:14:14Z
<p>Info: /* Forcing */</p>
<hr />
<div>== '''Forcing ''' ==<br />
<br />
'''Short Description:''' A category of techniques used by magicians to guide audience attention <ref>Use the Force: How Magicians Can Control Your Decisions<br>https://archive.is/vuTYB</ref>. <br><br />
<br />
'''CAT ID:''' CAT-2022-285 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' Exploit <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
<br />
'''Detailed Description:''' A category of techniques used by magicians to guide audience attention. (Malin et al, 2017 p.35) <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Forcing&diff=512
Forcing
2025-11-04T01:13:44Z
<p>Info: /* Forcing */</p>
<hr />
<div>== '''Forcing ''' ==<br />
<br />
'''Short Description:''' A category of techniques used by magicians to guide audience attention <ref>Use the Force: How Magicians Can Control Your Decisions|https://archive.is/vuTYB</ref>. <br><br />
<br />
'''CAT ID:''' CAT-2022-285 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' Exploit <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
<br />
'''Detailed Description:''' A category of techniques used by magicians to guide audience attention. (Malin et al, 2017 p.35) <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Vigilance&diff=511
Vigilance
2025-11-04T01:11:14Z
<p>Info: /* Description: */</p>
<hr />
<div>== '''Vigilance''' ==<br />
<br />
'''Short Description:''' <br><br />
<br />
'''CAT ID:''' CAT-2025-001 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' In Common Use <br><br />
<br />
'''Category:''' Vulnerability <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Closely Related Concepts:''' [[Habituation]] <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br />
<br><br />
<br />
'''Detailed Description:''' <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
[[Misdirection-Distraction]] (Exploit, CAT-2022-014)<br />
<br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==<br />
<br />
<br></div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Habituation&diff=510
Habituation
2025-11-04T01:09:18Z
<p>Info: /* Description: */</p>
<hr />
<div>== '''Vigilance''' ==<br />
<br />
'''Short Description:''' Habituation is a form of non-associative learning <br><br />
<br />
'''CAT ID:''' CAT-2025-002 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' In Common Use <br><br />
<br />
'''Category:''' Exploit <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Closely Related Concepts:''' [[Vigilance]] <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br />
<br><br />
<br />
'''Detailed Description:''' Habituation describes the progressive exposure to a stimulus, environment, or situation with benign results leading to the eventual relaxation of vigilance or awareness of the cues being habituated. This process may be deliberately employed by threat actors to lower the attention that the target directs toward the feature the attacker is attempting to mask.<br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
[[Misdirection-Distraction]] (Exploit, CAT-2022-014) <br><br />
[[Gray Signal Attacks]] (TTP, CAT-2022-193) <br><br />
[[Boredom]] (Vulnerability, CAT-2022-190) <br><br />
[[Firehose of Falsehood]] (TTP, CAT-2022-284)<br />
<br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==<br />
<br />
<br></div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Habituation&diff=509
Habituation
2025-11-04T01:08:50Z
<p>Info: /* Description: */</p>
<hr />
<div>== '''Vigilance''' ==<br />
<br />
'''Short Description:''' Habituation is a form of non-associative learning <br><br />
<br />
'''CAT ID:''' CAT-2025-002 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' In Common Use <br><br />
<br />
'''Category:''' Exploit <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Closely Related Concepts:''' [[Vigilance]] <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br />
<br><br />
<br />
'''Detailed Description:''' Habituation describes the progressive exposure to a stimulus, environment, or situation with benign results leading to the eventual relaxation of vigilance or awareness of the cues being habituated. This process may be deliberately employed by threat actors to lower the attention that the target directs toward the feature the attacker is attempting to mask.<br><br />
<br />
'''INTERACTIONS''' [VETs]: <br />
[[Misdirection-Distraction]] (Exploit, CAT-2022-014) <br><br />
[[Gray Signal Attacks]] (TTP, CAT-2022-193) <br><br />
[[Boredom]] (Vulnerability, CAT-2022-190)<br />
[[Firehose of Falsehood]] (TTP, CAT-2022-284)<br />
<br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==<br />
<br />
<br></div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Habituation&diff=508
Habituation
2025-11-03T22:52:37Z
<p>Info: Created page with "== '''Vigilance''' == '''Short Description:''' Habituation is a form of non-associative learning <br> '''CAT ID:''' CAT-2025-002 <br> '''Layer:''' 8 <br> '''Operational Scale:''' Tactical <br> '''Level of Maturity:''' In Common Use <br> '''Category:''' Exploit <br> '''Subcategory:''' <br> '''Also Known As:''' <br> == '''Description:''' == '''Closely Related Concepts:''' <br> '''Mechanism:''' <br> '''Multipliers:''' <br> '''Detailed Description:'''..."</p>
<hr />
<div>== '''Vigilance''' ==<br />
<br />
'''Short Description:''' Habituation is a form of non-associative learning <br><br />
<br />
'''CAT ID:''' CAT-2025-002 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' In Common Use <br><br />
<br />
'''Category:''' Exploit <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br />
<br><br />
<br />
'''Detailed Description:''' <br><br />
<br />
'''INTERACTIONS''' [VETs]: [[Misdirection-Distraction]] (Exploit, CAT-2022-014)<br />
<br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==<br />
<br />
<br></div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=507
Main Page
2025-11-03T22:45:44Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[Interpreting the Cognitive Attack Taxonomy|'''here''']].<br><br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2025-002 || [[Habituation ]] || 8 || Exploit <br />
|- <br />
| CAT-2025-001 || [[Vigilance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || 8 || TTP <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=506
Main Page
2025-11-03T22:23:49Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[Interpreting the Cognitive Attack Taxonomy|'''here''']].<br><br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2025-002 || [[Habituation ]] || 8 || TTP <br />
|- <br />
| CAT-2025-001 || [[Vigilance ]] || 8 || TTP <br />
|- <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || 8 || TTP <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Vigilance&diff=505
Vigilance
2025-11-03T22:22:19Z
<p>Info: Created page with "== '''Vigilance''' == '''Short Description:''' <br> '''CAT ID:''' CAT-2025-001 <br> '''Layer:''' 8 <br> '''Operational Scale:''' Tactical <br> '''Level of Maturity:''' In Common Use <br> '''Category:''' Vulnerability <br> '''Subcategory:''' <br> '''Also Known As:''' <br> == '''Description:''' == '''Closely Related Concepts:''' <br> '''Mechanism:''' <br> '''Multipliers:''' <br> '''Detailed Description:''' <br> '''INTERACTIONS''' [VETs]: Misdirect..."</p>
<hr />
<div>== '''Vigilance''' ==<br />
<br />
'''Short Description:''' <br><br />
<br />
'''CAT ID:''' CAT-2025-001 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' In Common Use <br><br />
<br />
'''Category:''' Vulnerability <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br />
<br><br />
<br />
'''Detailed Description:''' <br><br />
<br />
'''INTERACTIONS''' [VETs]: [[Misdirection-Distraction]] (Exploit, CAT-2022-014)<br />
<br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==<br />
<br />
<br></div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=High_Conscientiousness&diff=504
High Conscientiousness
2025-10-25T15:16:52Z
<p>Info: /* Description: */</p>
<hr />
<div>== '''High Conscientiousness ''' ==<br />
<br />
'''Short Description:''' Personality dimension, high attentativeness to detail <br><br />
<br />
'''CAT ID:''' CAT-2021-002 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' Vulnerability <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' High Conscientiousness as a potential cognitive vulnerability <br><br />
<br />
'''Closely Related Concepts:''' Low Conscientiousness [https://cognitiveattacktaxonomy.org/index.php/Low_Conscientiousness| CAT-2021-007 ] <br><br />
<br />
'''Mechanism(s):''' Deliberate False Statement [https://cognitiveattacktaxonomy.org/index.php/Deliberate_False_Statement| CAT-2022-152 ] <br><br />
<br />
'''Multiplier(s):''' The Need To Correct [https://cognitiveattacktaxonomy.org/index.php/Need_to_Correct| CAT-2024-007 ] <br><br />
<br />
'''Detailed Description:''' Big 5 Personality dimension describing how attentative an individual is to detail. <br><br />
<br />
<br />
<!-- '''INTERACTIONS''' [VETs]: <br> --><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s): ''' <br>Halevi et al (2015) found a heightened susceptibility to spear phishing attacks against individuals high on the Conscientiousness personality dimension when presented with a phishing email presented as an error on a form which required a correction. This [[https://cognitiveattacktaxonomy.org/index.php/Need_to_Correct| need to correct]] errors is a potential vulnerability in individuals high in Conscientiousness<ref>Halevi, T., Memon, N., & Nov, O. (2015). [https://papers.ssrn.com/sol3/papers.cfm?abstract%20id=2544742 Spear-phishing in the wild]: A real-world study of personality, phishing self-efficacy and vulnerability to spear-phishing attacks.</ref>.<br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==<br />
Halevi, T., Memon, N., & Nov, O. (2015). Spear-phishing in the wild: A real-world study of personality, phishing self-efficacy and vulnerability to spear-phishing attacks. Phishing Self-Efficacy and Vulnerability to Spear-Phishing Attacks (January 2, 2015).</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=High_Conscientiousness&diff=503
High Conscientiousness
2025-10-25T15:15:35Z
<p>Info: /* Description: */</p>
<hr />
<div>== '''High Conscientiousness ''' ==<br />
<br />
'''Short Description:''' Personality dimension, high attentativeness to detail <br><br />
<br />
'''CAT ID:''' CAT-2021-002 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' Vulnerability <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' High Conscientiousness as a potential cognitive vulnerability <br><br />
<br />
'''Closely Related Concepts:''' Low Conscientiousness <br><br />
<br />
'''Mechanism(s):''' Deliberate False Statement [https://cognitiveattacktaxonomy.org/index.php/Deliberate_False_Statement| CAT-2022-152 ] <br><br />
<br />
'''Multiplier(s):''' The Need To Correct [https://cognitiveattacktaxonomy.org/index.php/Need_to_Correct| CAT-2024-007 ] <br><br />
<br />
'''Detailed Description:''' Big 5 Personality dimension describing how attentative an individual is to detail. <br><br />
<br />
<br />
<!-- '''INTERACTIONS''' [VETs]: <br> --><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s): ''' <br>Halevi et al (2015) found a heightened susceptibility to spear phishing attacks against individuals high on the Conscientiousness personality dimension when presented with a phishing email presented as an error on a form which required a correction. This [[https://cognitiveattacktaxonomy.org/index.php/Need_to_Correct| need to correct]] errors is a potential vulnerability in individuals high in Conscientiousness<ref>Halevi, T., Memon, N., & Nov, O. (2015). [https://papers.ssrn.com/sol3/papers.cfm?abstract%20id=2544742 Spear-phishing in the wild]: A real-world study of personality, phishing self-efficacy and vulnerability to spear-phishing attacks.</ref>.<br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==<br />
Halevi, T., Memon, N., & Nov, O. (2015). Spear-phishing in the wild: A real-world study of personality, phishing self-efficacy and vulnerability to spear-phishing attacks. Phishing Self-Efficacy and Vulnerability to Spear-Phishing Attacks (January 2, 2015).</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=High_Conscientiousness&diff=502
High Conscientiousness
2025-10-25T15:04:46Z
<p>Info: /* Examples: */</p>
<hr />
<div>== '''High Conscientiousness ''' ==<br />
<br />
'''Short Description:''' Personality dimension, high attentativeness to detail <br><br />
<br />
'''CAT ID:''' CAT-2021-002 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' Vulnerability <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
<br />
'''Detailed Description:''' Big 5 Personality dimension describing how attentative an individual is to detail. <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s): ''' <br>Halevi et al (2015) found a heightened susceptibility to spear phishing attacks against individuals high on the Conscientiousness personality dimension when presented with a phishing email presented as an error on a form which required a correction. This [[https://cognitiveattacktaxonomy.org/index.php/Need_to_Correct| need to correct]] errors is a potential vulnerability in individuals high in Conscientiousness<ref>Halevi, T., Memon, N., & Nov, O. (2015). [https://papers.ssrn.com/sol3/papers.cfm?abstract%20id=2544742 Spear-phishing in the wild]: A real-world study of personality, phishing self-efficacy and vulnerability to spear-phishing attacks.</ref>.<br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==<br />
Halevi, T., Memon, N., & Nov, O. (2015). Spear-phishing in the wild: A real-world study of personality, phishing self-efficacy and vulnerability to spear-phishing attacks. Phishing Self-Efficacy and Vulnerability to Spear-Phishing Attacks (January 2, 2015).</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=High_Conscientiousness&diff=501
High Conscientiousness
2025-10-25T15:04:05Z
<p>Info: /* Examples: */</p>
<hr />
<div>== '''High Conscientiousness ''' ==<br />
<br />
'''Short Description:''' Personality dimension, high attentativeness to detail <br><br />
<br />
'''CAT ID:''' CAT-2021-002 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' Vulnerability <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
<br />
'''Detailed Description:''' Big 5 Personality dimension describing how attentative an individual is to detail. <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild: ''' <br>Halevi et al (2015) found a heightened susceptibility to spear phishing attacks against individuals high on the Conscientiousness personality dimension when presented with a phishing email presented as an error on a form which required a correction. This [[https://cognitiveattacktaxonomy.org/index.php/Need_to_Correct| need to correct]] errors is a potential vulnerability in individuals high in Conscientiousness<ref>Halevi, T., Memon, N., & Nov, O. (2015). [https://papers.ssrn.com/sol3/papers.cfm?abstract%20id=2544742 Spear-phishing in the wild]: A real-world study of personality, phishing self-efficacy and vulnerability to spear-phishing attacks.</ref>.<br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==<br />
Halevi, T., Memon, N., & Nov, O. (2015). Spear-phishing in the wild: A real-world study of personality, phishing self-efficacy and vulnerability to spear-phishing attacks. Phishing Self-Efficacy and Vulnerability to Spear-Phishing Attacks (January 2, 2015).</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=High_Conscientiousness&diff=500
High Conscientiousness
2025-10-25T15:00:58Z
<p>Info: /* Examples: */</p>
<hr />
<div>== '''High Conscientiousness ''' ==<br />
<br />
'''Short Description:''' Personality dimension, high attentativeness to detail <br><br />
<br />
'''CAT ID:''' CAT-2021-002 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' Vulnerability <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
<br />
'''Detailed Description:''' Big 5 Personality dimension describing how attentative an individual is to detail. <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild: ''' <br>Halevi et al (2015) found a heightened susceptibility to spear phishing attacks against individuals high on the Conscientiousness personality dimension when presented with a phishing email presented as an error on a form which required a correction. This [[https://cognitiveattacktaxonomy.org/index.php/Need_to_Correct| need to correct]] errors is a potential vulnerability in individuals high in Conscientiousness<ref>[1]</ref>.<br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==<br />
Halevi, T., Memon, N., & Nov, O. (2015). Spear-phishing in the wild: A real-world study of personality, phishing self-efficacy and vulnerability to spear-phishing attacks. Phishing Self-Efficacy and Vulnerability to Spear-Phishing Attacks (January 2, 2015).</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=High_Conscientiousness&diff=499
High Conscientiousness
2025-10-25T14:55:53Z
<p>Info: /* References: */</p>
<hr />
<div>== '''High Conscientiousness ''' ==<br />
<br />
'''Short Description:''' Personality dimension, high attentativeness to detail <br><br />
<br />
'''CAT ID:''' CAT-2021-002 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' Vulnerability <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
<br />
'''Detailed Description:''' Big 5 Personality dimension describing how attentative an individual is to detail. <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild: Halevi et al (2015) found a heightened susceptibility to spear phishing attacks against individuals high on the Conscientiousness personality dimension when presented with a phishing email presented as an error on a form which required a correction. This need to correct...''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==<br />
Halevi, T., Memon, N., & Nov, O. (2015). Spear-phishing in the wild: A real-world study of personality, phishing self-efficacy and vulnerability to spear-phishing attacks. Phishing Self-Efficacy and Vulnerability to Spear-Phishing Attacks (January 2, 2015).</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=High_Conscientiousness&diff=498
High Conscientiousness
2025-10-25T14:55:38Z
<p>Info: /* Examples: */</p>
<hr />
<div>== '''High Conscientiousness ''' ==<br />
<br />
'''Short Description:''' Personality dimension, high attentativeness to detail <br><br />
<br />
'''CAT ID:''' CAT-2021-002 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' Vulnerability <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
<br />
'''Detailed Description:''' Big 5 Personality dimension describing how attentative an individual is to detail. <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild: Halevi et al (2015) found a heightened susceptibility to spear phishing attacks against individuals high on the Conscientiousness personality dimension when presented with a phishing email presented as an error on a form which required a correction. This need to correct...''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=CognitiveAttackTaxonomy&diff=497
CognitiveAttackTaxonomy
2025-07-14T21:54:55Z
<p>Info: </p>
<hr />
<div>{| class="wikitable sortable" <br />
|+ '''<br />
== Cognitive Attack Taxonomy ==<br />
'''<br><br> <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2024-010 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-011 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || || <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
CAT v2025.1<br />
© 2025 Cognitive Security Institute. Licensed for non-commercial use under CC BY-NC 4.0.</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=496
Main Page
2025-02-23T23:39:23Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[Interpreting the Cognitive Attack Taxonomy|'''here''']].<br><br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || 8 || TTP <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=495
Main Page
2025-02-23T23:38:44Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[Interpreting the Cognitive Attack Taxonomy|'''here''']].<br><br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || 8 || <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=494
Main Page
2025-02-21T08:45:50Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[Interpreting the Cognitive Attack Taxonomy|'''here''']].<br><br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2024-011 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || || <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Hyperstition&diff=493
Hyperstition
2025-02-21T08:44:45Z
<p>Info: /* Hyperstition */</p>
<hr />
<div>== '''Hyperstition''' ==<br />
<br />
'''Short Description:''' Beliefs that create their own reality. <br><br />
<br />
'''CAT ID:''' CAT-2024-011 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Operational <br><br />
<br />
'''Level of Maturity:''' Proof-of-Concept <br><br />
<br />
'''Category:''' Vulnerability <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' Self-Fulfilling Prophecy <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' Beliefs that create their own reality through dissemination.<br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' Misinformation, Disinformation, Malicious Narrative <br><br />
<br />
'''Multipliers:''' Uncertainty <br><br />
<br />
'''Detailed Description:''' The core idea of hyperstition is that a belief or narrative, once it gains enough traction among a group of people, can bring about the very reality it depicts. Even if the initial belief is unfounded, it becomes "real" due to the actions that the belief motivates. This interaction between belief, behavior, and outcome shows how hyperstitions can materially influence real-world events based on the power of perceptions and expectations<ref>http://cyborganthropology.com/Hyperstition</ref>. <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' A collective belief that a stock is unstable and likely to collapse, is spread among investors, and becomes a self-fulfilling prophecy. The fictional narrative takes on a life of its own. As investors act on this belief by selling off their shares, the stock price indeed falls, ultimately leading to the stock's collapse. <br><br />
<br />
'''Example(s) From The Wild:''' The viral purchase of toilet paper in retail at the beginning of the Covid-19 pandemic in response to stories of supplies being depleted. The stories of supply scarcity motivated more people to search out and purchase remaining stock.<br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=CognitiveAttackTaxonomy&diff=492
CognitiveAttackTaxonomy
2025-02-21T08:44:27Z
<p>Info: /* Cognitive Attack Taxonomy */</p>
<hr />
<div>{| class="wikitable sortable" <br />
|+ '''<br />
== Cognitive Attack Taxonomy ==<br />
'''<br><br> <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2024-010 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-011 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || || <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Lateral_Phishing&diff=491
Lateral Phishing
2025-01-13T17:18:11Z
<p>Info: /* Lateral Phishing */</p>
<hr />
<div>== '''Lateral Phishing ''' ==<br />
<br />
'''Short Description:''' Exploiting a low-value (ie: low security posture) target inorder to "pivot" to a higher value target. <br><br />
<br />
'''CAT ID:''' CAT-2022-028 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Observed in the Wild <br><br />
<br />
'''Category:''' TTP <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' Pivoting <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
<br />
'''Detailed Description:''' Exploiting a low-value (ie: low security posture) target inorder to "pivot" to a higher value target by using the compromised account from "inside" the organization. So that the attacker is using an "internal" email address. <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=490
Main Page
2024-11-19T17:59:03Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br />
'''Learn how to interpret the Cognitive Attack Taxonomy''' [[Interpreting the Cognitive Attack Taxonomy|'''here''']].<br><br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2024-010 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || || <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=489
Main Page
2024-11-19T17:58:39Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ '''Cognitive Security Institute'''] to learn more about cognitive security and related topics!<br><br />
Learn how to interpret the Cognitive Attack Taxonomy [[Interpreting the Cognitive Attack Taxonomy|here]].<br><br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2024-010 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || || <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=488
Main Page
2024-11-17T23:39:44Z
<p>Info: /* The Cognitive Attack Taxonomy (CAT) */</p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ Cognitive Security Institute] to learn more about cognitive security and related topics!<br><br />
Learn how to interpret the Cognitive Attack Taxonomy [[Interpreting the Cognitive Attack Taxonomy|here]].<br><br />
<br />
{| class="wikitable sortable" <br />
|+ <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2024-010 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || || <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Main_Page&diff=487
Main Page
2024-11-17T23:36:37Z
<p>Info: </p>
<hr />
<div>'''<br />
= '''The Cognitive Attack Taxonomy (CAT)''' =<br />
'''<br> <br />
Visit the [https://www.cognitivesecurity.institute/ Cognitive Security Institute] to learn more about cognitive security and related topics!<br><br />
Learn how to interpret the Cognitive Attack Taxonomy [[Interpreting the Cognitive Attack Taxonomy|here]].<br><br />
<br />
{| class="wikitable sortable" <br />
| <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2024-010 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || || <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}<br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Interpreting_the_Cognitive_Attack_Taxonomy&diff=486
Interpreting the Cognitive Attack Taxonomy
2024-11-17T23:28:16Z
<p>Info: </p>
<hr />
<div>= '''<big>Introduction to the Cognitive Attack Taxonomy (CAT)</big>''' =<br />
<br />
“Hacking” refers to manipulating objects, systems, processes, or technologies in ways not originally intended to produce outcomes not otherwise achievable, or would be much more difficult to achieve, through conventional means. Extending the concept which was originally used within the model train community, then extended to the programming and software development community, then adapted to the cybersecurity community, may be applied to human and artificial cognitive processes.<br> <br />
<br />
Cognitive “hacking” relies upon the ability to repurpose, extend, or misuse functions, which likely evolved or developed for one purpose, and apply these functions toward other purposes. For example, humans developed bi-pedal mobility (the ability to walk) because this provided some evolutionary adaptive advantage (likely hunting), but this ability to consistently balance on two feet can be applied in ways that extend beyond the original purpose. This ability to balance to on two feet can now be “hacked” to balance on a moving skateboard. Riding a skateboard was not the original intention of bipedal mobility, but the art of skateboarding would be much more limited if humans never developed the ability to stand up. While balancing on two feet is not what typically comes to mind when considering cognitive abilities, research in robotics demonstrates the enormous computational challenge of performing such an apparently simple function.<br> <br />
<br />
The Cognitive Attack Taxonomy (CAT) considers cognitive vulnerabilities, exploits, tactics/techniques, tools, and procedures, relative to cognitive processing in the broadest possible sense within biological (humans and animals) and artificial (embodied and virtual) cognitive systems at all levels. Cognition from this perspective refers to information processing systems, which may, or may not, include awareness, consciousness, or sentience.<br />
<br />
= '''Cognitive Vulnerabilities''' =<br />
The term ‘’cognitive vulnerabilities’’ is misleading in that it implies a weakness, but within the context of cognitive security, vulnerabilities should be considered as ‘’potentialities for misuse’’. A computer operating system that is capable of encrypting files for security purposes has an inherent ‘’vulnerability’’ in that this capability may also be weaponized by an adversary for malicious purposes. For example, if the file encryption (intended for enhancing security) is manipulated by a malicious threat actor, then that capability can be used to encrypt the owner’s files while the threat actor holds the decryption key. This activity is sometimes referred to as ‘’ransomware’’. This example demonstrates that beneficial features can often be misused to achieve malicious objectives, hence ‘’weaponized’’. <br><br />
<br />
An example of how this might apply to human cognition might be found in the Reciprocity Norm, which seems to be universal across all cultures (and may span several species <ref>Two Monkeys Were Paid Unequally: Excerpt from Frans de Waal's TED Talk, Apr 4, 2013. Available at: https://www.youtube.com/watch?v=meiU6TxysCg&pp=ygUcbW9ua2V5IGdyYXBlIGN1Y3VtYmVyIHVuZmFpcg%3D%3D</ref>, suggesting that this is a relatively ‘’hard-wired’’ cognitive function. The Reciprocity Norm dictates that one should reciprocate actions that another has taken toward oneself. In other words, if someone does something nice for you, you should do something nice for them; conversely, if they do something unkind to you, you have the implied right to be unkind to them. This norm is also consistent with several game theoretical simulations of the Prisoner’s Dilemma which demonstrate that a “tit-for-tat” is the optimal inter-agent relational strategy. <br> <br />
<br />
From the perspective of social cooperation, the Reciprocity Norm is fundamentally critical to building human culture and society would immediately dissolve without such a norm, thus from this perspective Reciprocity is both critical and extremely beneficial. From the cognitive security perspective, the Reciprocity Norm is viewed as a vulnerability because a threat actor (defined as anyone not being completely transparent in their intentions) may employ an action, such as gift giving to increase the likelihood of receiving something they want in return. In this way that threat actor is “exploiting” the Reciprocity Norm by taking an action to ‘’induce the reciprocity norm’’ within the targeted individual.<br><br />
<br />
<!-- Example vulnerability | Magnetoreception | https://en.wikipedia.org/wiki/Magnetoreception --><br />
<br />
= '''Cognitive Exploits''' =<br />
Within the field of cybersecurity, an exploit refers to a sequence of commands, a software bug, a “glitch” or malfunction, or maliciously written code, which can be used to cause the targeted system to behave in unprescribed ways, which may or may not lead to damage of the system. Within this context, “an exploit” (as a noun) refers to the specified mechanism the threat actor uses to affect the action of the exploitation, whereas “to exploit” (as a verb) refers to the action of launching the mechanism or taking an action, which sets the exploitation mechanism into action.<br><br> <br />
The CAT uses this term of exploitation in a very similar way as it is used in information security. A cognitive exploit is a mechanism to manipulate a cognitive vulnerability (noun), or may be a sequence of actions taken by a threat actor to induce actions or state changes in the cognitive system (verb).<br><br> <br />
Returning to the previous example outline under Cognitive Vulnerabilities <!-- [https://csi.wiki/home/index.php/Cognitive_Attack_Taxonomy#Cognitive_Vulnerabilities Cognitive Vulnerabilities]--> above which gave the example of the Reciprocity Norm, the threat actor ‘’exploits’’ the ‘’cognitive vulnerability’’ of the Reciprocity Norm by ‘’inducing reciprocity’’ through the action of giving a gift to the targeted individual. This is exploiting Reciprocity through an action (verb). Over the millennia threat actors in the forms of con artists, politicians, salespeople, marketers, propagandists, and others interested in manipulating people, have developed a broad catalog of tactics, techniques, and procedures (TTPs) designed with the intention of manipulating humans by exploiting cognitive vulnerabilities, in other words ‘’exploits’’ (as a noun). <br><br><br />
<br />
= '''Cognitive Tools | Tactics/Techniques | Procedures (T/TTPs)''' =<br />
Threat actors no longer need to develop cognitive exploits from scratch. In the first decade of the twenty-first century, the pick-up artist (PUA) community developed what they referred to as “technology”, as a series of techniques which enhanced their probability of success in “picking up” a prospective date. These techniques themselves were not particularly novel in themselves, as was the method of information sharing among the PUA community. This community co-evolved with the widespread adoption of the internet and early versions of social media (message boards). This meant that the community was able to compare notes, share successes or failures, and ‘’most importantly’’ develop a glossary of terms referring to highly specified tactics and techniques (exploits as a noun) which could be used to manipulate their prospective targets through ‘’cognitive vulnerabilities’’. Extending this concept into the larger cognitive security domain, it is possible to identify not only ‘’tactics’’ and ‘’techniques’’, but we may also extend the CAT to include available ‘’tools’’ and ‘’procedures’’.<br><br> <br />
The example of gift-giving was mentioned above as a means of exploiting the Reciprocity Norm cognitive vulnerability. Another example of an exploit (exploitation technique) which may be used against this cognitive vulnerability is the Door-In-The-Face technique which involves a threat actor initially presenting a large request that is anticipated to be denied, with the intention of following this up with a smaller request. This technique is effective because it manipulates the perceived sense of fairness between the actors and induces a sense of obligation in the target who now feels the need to cooperate with the threat actor out of a need to reciprocate and maintain the balance of fairness. The Door-In-The-Face technique is effective because it increases the likelihood that the second (less costly) option will be accepted, than if the threat actor presented that option initially.<br><br><br />
<br />
== '''Cognitive Attack Tools''' ==<br />
More to come...<br><br />
<br />
== '''Cognitive Attack Tactics/Techniques''' ==<br />
More to come...<br><br />
==== '''Scams, Cons, and Ruses''' ====<br />
More to come...<br><br />
<br />
== '''Cognitive Attack Procedures''' ==<br />
More to come...<br><br />
<br />
= '''The V-E-T Relationship''' =<br />
<br />
The CAT describes the interlocking relationships between cognitive '''''[[Cognitive Vulnerabilities|<big>Vulnerabilities</big>]]''''', '''''[[Cognitive_Exploits|<big>Exploits</big>]]''''', and '''''[[TTPs|<big>T/TTPs</big>]]'''''. These relationships can be used to anticipate attacks (and defenses), for research purposes, threat modeling, and other applications.<br><br />
The relationship between cognitive vulnerabilities, exploits, and TTPs should be thought of in terms of the cognitive vulnerabilities being opportunities or potentiality for exploitation, cognitive exploits being the mechanism of exploitation, and TTPs being the methodology that for implementing the exploit. <br />
<!-- [[File:2D-3D Printed Facial Prosthetics.jpg|thumb|right|alt=Exploiting biometrics with 3D printed facial prosthetics|Exploiting biometrics with 3D printed facial prosthetics]]--><br />
Adopting the physical analogy of the process of bolting pieces of metal together; the ''vulnerability'' would be a threaded hole in the metal, the ''exploit'' would be the bolt that fits within that threaded hole, and the wrench to tighten the bolt would be the ''TTP''.<br />
This relationship is key to understanding how the taxonomic classes work in concert, if no vulnerability exists, then there is no means to exploit it. For example, many migratory birds have the ability to sense magnetic fields, which they seem to use for navigation. While this ability provides several advantages it also presents a vulnerability which may be <!-- [https://en.wikipedia.org/wiki/File:Effect_of_RF_interference_on_Magnetoreception_in_Birds.svg exploited] --> through the projection of radio frequency interference. Humans lack the same level of magnetic sensitivity as migratory birds and therefor cannot be exploited using the same mechanism.<br />
<!-- [[File:SportsBallStopSign.jpg|thumb|left|alt=Stop sign misclassified as a "sports ball".|Stop sign misclassified as a "sports ball" using artistic exploit.]] --><br />
Cognitive vulnerabilities are highly context dependent. For example, humans less than 23 to 25 years old have the ability to hear higher frequency sounds than older adults. As a vulnerability, this feature has been exploited by the Mosquito sonic area denial system. The Mosquito emits a loud high-pitched humming sound (similar to the sound that a mosquito makes) which is nearly unbearable to those who can hear it, but inaudible to those who cannot. The Mosquito is thus used to prevent individuals within a specific age range from congregating in areas covered by the Mosquito's range. This same feature of hearing is leveraged as an exploit in itself by using the same sound frequency to create a ring tone which teenaged adults can hear but older adults (such as school teachers) cannot. This example illustrates how quickly the context for a cognitive vulnerability can shift.<br><br />
<!-- [[File:RoadPaintingNudge.jpg|thumb|right|alt=Road Painting Nudge|Exploiting drivers' through visual nudging]] --><br />
Any information processing system will have inherent cognitive vulnerabilities. These are endemic to a cognitive system and the system will usually cease functioning without them. These vulnerabilities tend to be highly specific to each system. For example, 3d printed facial prosthetics may allow threat actors to bypass biometric algorithms but will not deceive humans for an instant. Likewise, a painted graphic on a stop sign will not a human but may induce a computer vision algorithm to misclassify a stop sign as a "sports ball". By contrast, a perspective painting of a child chasing a ball into the street may deceive both a human driver and the computer vision algorithm controlling an autonomous vehicle, because these visual cues exploit similar information processing mechanisms in both cognitive systems. <br />
<br><br />
Understanding these relationships improves understanding how cognitive attacks are applied, how they function, and how they might be potentially be "tuned" to particular targets. For example: if a vulnerability is lacking in an individual target or population, then it will be impossible to attack using a specified exploit. <br />
<br />
== Examples of V-E-T relationships ==<br />
To more effectively clarify these relationships, here are a few examples of the relationships.<br />
<br />
<!-- [[File:CAT TEST 1.jpg|frameless|right|alt=CAT TEST 1|CAT TEST 1]] --><br />
<br />
Examples: <br />
<br />
'''Vulnerability:''' Affinity toward Neoteny (Youthful features).<br><br />
'''Exploit:''' Presentation or display of neotenic Features (Large eyes, large head).<br> <br />
'''TTP:''' Design a robot to look "cute" to lower suspicions by adding neotenic features (such as large eye & head).<br> <br />
<br />
'''Vulnerability:''' Ability to hear sound within a specified frequency range.<br><br />
'''Exploit:''' Playing sound within that specified frequency range in a aggravating manner.<br> <br />
'''TTP:''' "Mosquito" sonic area denial system.<br><br />
<br />
'''Vulnerability:''' Need for Commitment and Consistency<br><br />
'''Exploit:''' Ikea Effect<br><br />
'''TTP:''' Foot-in-the-Door technique<br><br />
<br />
'''Vulnerability:''' Need to Reciprocate<br><br />
'''Exploit:''' Inducing Reciprocity<br><br />
'''TTP:''' Door-in-the-Face technique (DITF technique is effective because of reciprocal concessions)<br><br />
<br />
= '''Applications of the CAT''' =<br />
<br />
== '''Examples of Cognitive Attacks''' ==<br />
<br />
=== '''Proof-of-Concept Examples of Cognitive Attacks''' ===<br />
<br />
<br />
=== '''Real-World Examples of Cognitive Attacks''' ===<br />
<br />
<br />
== '''Cognitive Attack Graphs''' ==<br />
Using the Cognitive Attack Taxonomy, it becomes possible to map attacks which have occurred or attack which may potentially occur in the future. The figure below depicts a SMSishing attack, a social engineering technique which uses SMS messaging to transmit a phishing message. In this example, the threat actors sent the target a SMS message impersonating the target's bank. This message threatened that the target would be locked out of their account within a short period of time due to a negative balance in their account. Using the '''''tactic''''' of SMSishing, these threat actors employed the '''''techniques''''' of ''Account Lockout'' and ''Negative Balance'' to launch the '''''exploits''''' of ''Scarcity'' and ''Fear Of Missing Out'' as a means to exploit the '''''cognitive vulnerability''''' of ''Loss Aversion''. This system for building Cognitive Attack Graphs is extensible and scalable to accommodate a broad range of cognitive attacks ranging from social engineering, to influence operations, to lawfare, to neuro-attacks, narrative warfare, and others.<br> <br />
<br />
<!-- [[File:SMSishing-Loss Aversion AttackGraph.jpg|frame|center|alt=Cognitive Attack Graph: SMSishing attack threatening account lockout due to a negative balance, employing the exploits of Scarcity and FOMO to exploit the Loss Aversion cognitive vulnerability.|Cognitive Attack Graph: SMSishing attack threatening account lockout due to a negative balance, employing the exploits of Scarcity and FOMO to exploit the Loss Aversion cognitive vulnerability.]] --><br />
<br />
<br />
<!-- [[File:SMSishing-Loss Aversion AttackGraph.png|thumb|alt=SMSishing Graph|SMSishing]] --><br />
<br />
== '''Open Systems Interconnection Model (OSI Model)''' ==<br />
<br />
=== '''Layer 1-7 (OSI Model)''' ===<br />
Introduction to the OSI Model...<br />
<br />
<br />
==== OSI Layer 1 ====<br />
<br />
==== OSI Layer 2 ====<br />
<br />
==== OSI Layer 3 ====<br />
<br />
==== OSI Layer 4 ====<br />
<br />
==== OSI Layer 5 ====<br />
<br />
==== OSI Layer 6 ====<br />
<br />
==== OSI Layer 7 ====<br />
<br />
===== AI and Large Language Models =====<br />
Generative AI models, such as large language models (LLMs) reside at OSI Layer 7. According to Chat GPT4...<br><br>"Large Language Models (LLMs) like GPTs (Generative Pre-trained Transformers) operate at the Application Layer (Layer 7) of the OSI model. The Application Layer is the topmost layer that provides interfaces for applications to access network services and defines protocols that applications use to communicate over a network. LLMs and GPTs, being advanced software applications that provide natural language processing capabilities, interact with other software applications and services through the Application Layer. They use protocols defined at this layer to send and receive data over the network, offering services such as text generation, language translation, and content creation that are utilized by end-user applications."<br />
<br />
==== Attacks At Different OSI Layers ====<br />
<br />
[[File:OSI Attack Possibilities Table.jpg|none|center|alt=Attack Possibilities by OSI Layer (Layers 1 - 7)|OSI Attack Possibilities Table]]<ref>https://www.us-cert.gov/sites/default/files/publications/DDoS%20Quick%20Guide.pdf</ref><br />
<br />
== '''Human Interconnection Model (HIM)''' ==<br />
<br />
=== '''Layer 8 (HIM)''' ===<br />
<br />
=== '''Layer 9 (HIM)''' ===<br />
<br />
=== '''Layer 10 (HIM)''' ===<br />
<br />
== '''Scales of Operation''' ==<br />
<br />
=== '''Tactical''' ===<br />
<br />
=== '''Operational''' ===<br />
<br />
=== '''Strategic''' ===<br />
<br />
== '''Ethical Concerns''' ==<br />
There is a philosophical perspective that advocates against the dissemination of “dark knowledge”; knowledge about ways that evil might be perpetrated or facilitated. This leads to an open debate which should be explored by the CSI community about whether these aspects of cognitive manipulation should be openly explored. A strong argument in favor of exploring these issues is that those intent on committing evil will learn of these tools, tactics, techniques, procedures, and human vulnerabilities without the aid of this reference. If being forewarned is to be forearmed, and knowledge is power, then advocating for the exposure of these vulnerabilities, exploits, and tools to the public may empower the public to anticipate and avoid such attacks.<br />
<br />
= '''How To Understand the Cognitive Attack Taxonomy''' =<br />
<br />
<br />
'''<big>CAT Name:</big>''' This is the common name to describe the cognitive attack taxonomy (CAT) vulnerability, exploit, or T/TTP (VET).<br><br><br />
<br />
'''<big>Short Description:</big>''' This is a brief description of the CAT-VET is usually a two to three sentences maximum description of the entry.<br><br> <br />
<br />
'''<big>CAT ID:</big>''' Intended to be a unique identifier for the CAT-VET. The prefix "CAT" refers to the Cognitive Attack Taxonomy, followed by the year, and finally the serial number of the CAT-VET. For example, CAT-2021-005 identifies the fifth CAT-VET cataloged in calendar year 2021.<br><br> <br />
<br />
'''<big>Layer:</big>''' This refers to the interconnection layer that the CAT-VET operates through. The Open Systems Interconnection Model (OSI Model) refers to communication between information systems. Layer 1 refers to the physical layer (wires or radio waves) and Layer 7 refers to the application layer at which the connection interfaces with the human user. The Human Interconnection Model (HIM) refers to Layer 8 (human layer), Layer 9 (organizational layer), and Layer 10 (legal layer).<br> <br />
<br />
* '''Layer 7:''' This is the layer that AI operates through (according to ChatGPT4).<br> <br />
* '''Layer 8:''' The human layer at which heuristics, biases, and other psychological influence techniques operate. Social engineering or influence operations function at this layer.<br> <br />
* '''Layer 9:''' The organizational layer, manipulation techniques at this layer operate through policy functions. <br />
* '''Layer 10:''' The legal layer, manipulation at this layer occurs through legislative processes or court cases.<br><br> <br />
<br />
'''<big>Operational Scale:</big>''' This refers to the ''typical'' or ''expected'' scale this CAT-VET is deployed at. <br />
* '''Tactical:''' These are typically individual encounters with a single attacker and single target. <br />
* '''Operational:''' This level refers to multiple engagements over a period of time, typically involving multiple parties.<br />
* '''Strategic:''' Nation-state or nation-state level actors exercising multiple operations to exert strategic influence objectives.<br><br><br />
<br />
'''<big>Level of Maturity:</big>''' This header describes the degree to which a vulnerability, exploit, or T/TTPs has been vetted, validated, or established. V-E-Ts exist on a continuum from hypothetical ideas anchoring one extreme with very well established laws human nature occupying the other extreme with a spectrum of support for constructs in between. The Level of Maturity refers to the degree of empirical support that is documented for each V-E-T, and this designation may evolve over time. <br />
* '''Theoretical:''' Unproven CAT-VETs that are feasible but have not yet been proven through a proof-of-concept test nor has been documented in the wild. <br />
* '''Proof-of-Concept:''' Security researchers commonly discover and report on vulnerabilities, exploits, or techniques. These CAT-VETs have not yet been documented in the wild. <br />
* '''Observed in the Wild:''' CAT-VETs which have been reported as occurring in a non-laboratory or controlled setting. These reports usually result from criminals employing techniques during the commission of crimes. <br />
* '''In Common Use:''' These CAT-VETs are commonly encountered or exploited in uncontrolled environments and are commonly used by criminals and other threat actors.<br />
* '''Well-Established:''' CAT-VETs that are in common use ''and'' are well-documented to be effective.<br><br><br />
<br />
'''<big>Category:</big>''' The CAT-VET category informs whether an entry is a cognitive vulnerability, cognitive exploit, or is a tactic, technique, tool, or procedure. <br />
* '''Vulnerability:''' Cognitive Vulnerability <br />
* '''Exploit:''' Cognitive Exploit<br />
* '''TTP:''' Cognitive Attack Tactic/Technique, Tool, or Procedure<br><br><br />
<br />
'''<big>Subcategory:</big>''' The CAT-VET subcategory refers to the type of vulnerability, exploit, or T/TTP the entry falls within. The subcategory is intended to be expandable as new discoveries are made, while CAT-VET Categories are intended to be immutable.<br><br><br />
<br />
'''<big>Also Known As:</big>''' Identifies alternative names or adjacent terms and concepts to the entry.<br><br><br />
<br />
'''<big>Brief Description:</big>''' This description is intended to be a five words or less description of the entry.<br><br><br />
<br />
'''<big>Closely Related Concepts:</big>''' These are concepts which relate to the entry but are not alternative names.<br><br><br />
<br />
'''<big>Mechanism:</big>''' This describes the operation of the CAT-VET entry. If the entry is a vulnerability, then the mechanisms described will be exploits or T/TTPs. If the entry is an exploit, the mechanisms will include vulnerabilities the exploit may be applied to or T/TTPs which may take advantage of the exploit, alternatively, a T/TTP entry will list cognitive vulnerabilities which it may be applied against or exploits which might be leveraged T/TTP deployment.<br><br><br />
<br />
'''<big>Multiplier:</big>''' Describes adjacent phenomena which may enhance or degrade the entry. For example, decision fatigue (CAT-2022-050) is a cognitive vulnerability which describes the experience of increasing difficulty in resisting temptation as choices are made. This vulnerability may be enhanced by presenting more closely related alternatives when choosing between alternatives (increasing cognitive load), or degraded by presenting personally relevant information at the key decision point (increasing semantic relevance).<br><br> <br />
<br />
'''<big>Detailed Description:</big>''' This category provides a detailed description of the entry. This section can be as long as needed and is intended to be expandable to allow for new or updated information about the entry.<br><br><br />
<br />
'''<big>Use Case Example:</big>''' Examples of how the CAT-VET might be used in a hypothetical situation.<br><br><br />
<br />
'''<big>Example From The Wild:</big>''' Example of the CAT-VET has been used in a documented case.<br><br><br />
<br />
'''<big>Comments:</big>''' General commentary on the CAT entry. Community discussions may exist here in addition to the page discussion notes.<br><br><br />
<br />
'''<big>References:</big>''' All CAT entries are to be backed by references to the maximum practical extent. All entries should be backed by research and/or observations from the wild. The CAT is not intended to be a repository of fantasy or opinion.<br><br><br />
<br />
= '''References''' =</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Interpreting_the_Cognitive_Attack_Taxonomy&diff=485
Interpreting the Cognitive Attack Taxonomy
2024-11-17T23:27:47Z
<p>Info: Created page with "= '''<big>Introduction to the Cognitive Attack Taxonomy (CAT)</big>''' = “Hacking” refers to manipulating objects, systems, processes, or technologies in ways not originally intended to produce outcomes not otherwise achievable, or would be much more difficult to achieve, through conventional means. Extending the concept which was originally used within the model train community, then extended to the programming and software development community, then adapted to th..."</p>
<hr />
<div>= '''<big>Introduction to the Cognitive Attack Taxonomy (CAT)</big>''' =<br />
<br />
“Hacking” refers to manipulating objects, systems, processes, or technologies in ways not originally intended to produce outcomes not otherwise achievable, or would be much more difficult to achieve, through conventional means. Extending the concept which was originally used within the model train community, then extended to the programming and software development community, then adapted to the cybersecurity community, may be applied to human and artificial cognitive processes.<br> <br />
<br />
Cognitive “hacking” relies upon the ability to repurpose, extend, or misuse functions, which likely evolved or developed for one purpose, and apply these functions toward other purposes. For example, humans developed bi-pedal mobility (the ability to walk) because this provided some evolutionary adaptive advantage (likely hunting), but this ability to consistently balance on two feet can be applied in ways that extend beyond the original purpose. This ability to balance to on two feet can now be “hacked” to balance on a moving skateboard. Riding a skateboard was not the original intention of bipedal mobility, but the art of skateboarding would be much more limited if humans never developed the ability to stand up. While balancing on two feet is not what typically comes to mind when considering cognitive abilities, research in robotics demonstrates the enormous computational challenge of performing such an apparently simple function.<br> <br />
<br />
The Cognitive Attack Taxonomy (CAT) considers cognitive vulnerabilities, exploits, tactics/techniques, tools, and procedures, relative to cognitive processing in the broadest possible sense within biological (humans and animals) and artificial (embodied and virtual) cognitive systems at all levels. Cognition from this perspective refers to information processing systems, which may, or may not, include awareness, consciousness, or sentience.<br />
<br />
= '''Cognitive Vulnerabilities''' =<br />
The term ‘’cognitive vulnerabilities’’ is misleading in that it implies a weakness, but within the context of cognitive security, vulnerabilities should be considered as ‘’potentialities for misuse’’. A computer operating system that is capable of encrypting files for security purposes has an inherent ‘’vulnerability’’ in that this capability may also be weaponized by an adversary for malicious purposes. For example, if the file encryption (intended for enhancing security) is manipulated by a malicious threat actor, then that capability can be used to encrypt the owner’s files while the threat actor holds the decryption key. This activity is sometimes referred to as ‘’ransomware’’. This example demonstrates that beneficial features can often be misused to achieve malicious objectives, hence ‘’weaponized’’. <br><br />
<br />
An example of how this might apply to human cognition might be found in the Reciprocity Norm, which seems to be universal across all cultures (and may span several species <ref>Two Monkeys Were Paid Unequally: Excerpt from Frans de Waal's TED Talk, Apr 4, 2013. Available at: https://www.youtube.com/watch?v=meiU6TxysCg&pp=ygUcbW9ua2V5IGdyYXBlIGN1Y3VtYmVyIHVuZmFpcg%3D%3D</ref>, suggesting that this is a relatively ‘’hard-wired’’ cognitive function. The Reciprocity Norm dictates that one should reciprocate actions that another has taken toward oneself. In other words, if someone does something nice for you, you should do something nice for them; conversely, if they do something unkind to you, you have the implied right to be unkind to them. This norm is also consistent with several game theoretical simulations of the Prisoner’s Dilemma which demonstrate that a “tit-for-tat” is the optimal inter-agent relational strategy. <br> <br />
<br />
From the perspective of social cooperation, the Reciprocity Norm is fundamentally critical to building human culture and society would immediately dissolve without such a norm, thus from this perspective Reciprocity is both critical and extremely beneficial. From the cognitive security perspective, the Reciprocity Norm is viewed as a vulnerability because a threat actor (defined as anyone not being completely transparent in their intentions) may employ an action, such as gift giving to increase the likelihood of receiving something they want in return. In this way that threat actor is “exploiting” the Reciprocity Norm by taking an action to ‘’induce the reciprocity norm’’ within the targeted individual.<br><br />
<br />
<!-- Example vulnerability | Magnetoreception | https://en.wikipedia.org/wiki/Magnetoreception --><br />
<br />
= '''Cognitive Exploits''' =<br />
Within the field of cybersecurity, an exploit refers to a sequence of commands, a software bug, a “glitch” or malfunction, or maliciously written code, which can be used to cause the targeted system to behave in unprescribed ways, which may or may not lead to damage of the system. Within this context, “an exploit” (as a noun) refers to the specified mechanism the threat actor uses to affect the action of the exploitation, whereas “to exploit” (as a verb) refers to the action of launching the mechanism or taking an action, which sets the exploitation mechanism into action.<br><br> <br />
The CAT uses this term of exploitation in a very similar way as it is used in information security. A cognitive exploit is a mechanism to manipulate a cognitive vulnerability (noun), or may be a sequence of actions taken by a threat actor to induce actions or state changes in the cognitive system (verb).<br><br> <br />
Returning to the previous example outline under Cognitive Vulnerabilities <!-- [https://csi.wiki/home/index.php/Cognitive_Attack_Taxonomy#Cognitive_Vulnerabilities Cognitive Vulnerabilities]--> above which gave the example of the Reciprocity Norm, the threat actor ‘’exploits’’ the ‘’cognitive vulnerability’’ of the Reciprocity Norm by ‘’inducing reciprocity’’ through the action of giving a gift to the targeted individual. This is exploiting Reciprocity through an action (verb). Over the millennia threat actors in the forms of con artists, politicians, salespeople, marketers, propagandists, and others interested in manipulating people, have developed a broad catalog of tactics, techniques, and procedures (TTPs) designed with the intention of manipulating humans by exploiting cognitive vulnerabilities, in other words ‘’exploits’’ (as a noun). <br><br><br />
<br />
= '''Cognitive Tools | Tactics/Techniques | Procedures (T/TTPs)''' =<br />
Threat actors no longer need to develop cognitive exploits from scratch. In the first decade of the twenty-first century, the pick-up artist (PUA) community developed what they referred to as “technology”, as a series of techniques which enhanced their probability of success in “picking up” a prospective date. These techniques themselves were not particularly novel in themselves, as was the method of information sharing among the PUA community. This community co-evolved with the widespread adoption of the internet and early versions of social media (message boards). This meant that the community was able to compare notes, share successes or failures, and ‘’most importantly’’ develop a glossary of terms referring to highly specified tactics and techniques (exploits as a noun) which could be used to manipulate their prospective targets through ‘’cognitive vulnerabilities’’. Extending this concept into the larger cognitive security domain, it is possible to identify not only ‘’tactics’’ and ‘’techniques’’, but we may also extend the CAT to include available ‘’tools’’ and ‘’procedures’’.<br><br> <br />
The example of gift-giving was mentioned above as a means of exploiting the Reciprocity Norm cognitive vulnerability. Another example of an exploit (exploitation technique) which may be used against this cognitive vulnerability is the Door-In-The-Face technique which involves a threat actor initially presenting a large request that is anticipated to be denied, with the intention of following this up with a smaller request. This technique is effective because it manipulates the perceived sense of fairness between the actors and induces a sense of obligation in the target who now feels the need to cooperate with the threat actor out of a need to reciprocate and maintain the balance of fairness. The Door-In-The-Face technique is effective because it increases the likelihood that the second (less costly) option will be accepted, than if the threat actor presented that option initially.<br><br><br />
<br />
== '''Cognitive Attack Tools''' ==<br />
More to come...<br><br />
<br />
== '''Cognitive Attack Tactics/Techniques''' ==<br />
More to come...<br><br />
==== '''Scams, Cons, and Ruses''' ====<br />
More to come...<br><br />
<br />
== '''Cognitive Attack Procedures''' ==<br />
More to come...<br><br />
<br />
= '''The V-E-T Relationship''' =<br />
<br />
The CAT describes the interlocking relationships between cognitive '''''[[Cognitive Vulnerabilities|<big>Vulnerabilities</big>]]''''', '''''[[Cognitive_Exploits|<big>Exploits</big>]]''''', and '''''[[TTPs|<big>T/TTPs</big>]]'''''. These relationships can be used to anticipate attacks (and defenses), for research purposes, threat modeling, and other applications.<br><br />
The relationship between cognitive vulnerabilities, exploits, and TTPs should be thought of in terms of the cognitive vulnerabilities being opportunities or potentiality for exploitation, cognitive exploits being the mechanism of exploitation, and TTPs being the methodology that for implementing the exploit. <br />
<!-- [[File:2D-3D Printed Facial Prosthetics.jpg|thumb|right|alt=Exploiting biometrics with 3D printed facial prosthetics|Exploiting biometrics with 3D printed facial prosthetics]]--><br />
Adopting the physical analogy of the process of bolting pieces of metal together; the ''vulnerability'' would be a threaded hole in the metal, the ''exploit'' would be the bolt that fits within that threaded hole, and the wrench to tighten the bolt would be the ''TTP''.<br />
This relationship is key to understanding how the taxonomic classes work in concert, if no vulnerability exists, then there is no means to exploit it. For example, many migratory birds have the ability to sense magnetic fields, which they seem to use for navigation. While this ability provides several advantages it also presents a vulnerability which may be <!-- [https://en.wikipedia.org/wiki/File:Effect_of_RF_interference_on_Magnetoreception_in_Birds.svg exploited] --> through the projection of radio frequency interference. Humans lack the same level of magnetic sensitivity as migratory birds and therefor cannot be exploited using the same mechanism.<br />
<!-- [[File:SportsBallStopSign.jpg|thumb|left|alt=Stop sign misclassified as a "sports ball".|Stop sign misclassified as a "sports ball" using artistic exploit.]] --><br />
Cognitive vulnerabilities are highly context dependent. For example, humans less than 23 to 25 years old have the ability to hear higher frequency sounds than older adults. As a vulnerability, this feature has been exploited by the Mosquito sonic area denial system. The Mosquito emits a loud high-pitched humming sound (similar to the sound that a mosquito makes) which is nearly unbearable to those who can hear it, but inaudible to those who cannot. The Mosquito is thus used to prevent individuals within a specific age range from congregating in areas covered by the Mosquito's range. This same feature of hearing is leveraged as an exploit in itself by using the same sound frequency to create a ring tone which teenaged adults can hear but older adults (such as school teachers) cannot. This example illustrates how quickly the context for a cognitive vulnerability can shift.<br><br />
<!-- [[File:RoadPaintingNudge.jpg|thumb|right|alt=Road Painting Nudge|Exploiting drivers' through visual nudging]] --><br />
Any information processing system will have inherent cognitive vulnerabilities. These are endemic to a cognitive system and the system will usually cease functioning without them. These vulnerabilities tend to be highly specific to each system. For example, 3d printed facial prosthetics may allow threat actors to bypass biometric algorithms but will not deceive humans for an instant. Likewise, a painted graphic on a stop sign will not a human but may induce a computer vision algorithm to misclassify a stop sign as a "sports ball". By contrast, a perspective painting of a child chasing a ball into the street may deceive both a human driver and the computer vision algorithm controlling an autonomous vehicle, because these visual cues exploit similar information processing mechanisms in both cognitive systems. <br />
<br><br />
Understanding these relationships improves understanding how cognitive attacks are applied, how they function, and how they might be potentially be "tuned" to particular targets. For example: if a vulnerability is lacking in an individual target or population, then it will be impossible to attack using a specified exploit. <br />
<br />
== Examples of V-E-T relationships ==<br />
To more effectively clarify these relationships, here are a few examples of the relationships.<br />
<br />
<!-- [[File:CAT TEST 1.jpg|frameless|right|alt=CAT TEST 1|CAT TEST 1]] --><br />
<br />
Examples: <br />
<br />
'''Vulnerability:''' Affinity toward Neoteny (Youthful features).<br><br />
'''Exploit:''' Presentation or display of neotenic Features (Large eyes, large head).<br> <br />
'''TTP:''' Design a robot to look "cute" to lower suspicions by adding neotenic features (such as large eye & head).<br> <br />
<br />
'''Vulnerability:''' Ability to hear sound within a specified frequency range.<br><br />
'''Exploit:''' Playing sound within that specified frequency range in a aggravating manner.<br> <br />
'''TTP:''' "Mosquito" sonic area denial system.<br><br />
<br />
'''Vulnerability:''' Need for Commitment and Consistency<br><br />
'''Exploit:''' Ikea Effect<br><br />
'''TTP:''' Foot-in-the-Door technique<br><br />
<br />
'''Vulnerability:''' Need to Reciprocate<br><br />
'''Exploit:''' Inducing Reciprocity<br><br />
'''TTP:''' Door-in-the-Face technique (DITF technique is effective because of reciprocal concessions)<br><br />
<br />
= '''Applications of the CAT''' =<br />
<br />
== '''Examples of Cognitive Attacks''' ==<br />
<br />
=== '''Proof-of-Concept Examples of Cognitive Attacks''' ===<br />
<br />
<br />
=== '''Real-World Examples of Cognitive Attacks''' ===<br />
<br />
<br />
== '''Cognitive Attack Graphs''' ==<br />
Using the Cognitive Attack Taxonomy, it becomes possible to map attacks which have occurred or attack which may potentially occur in the future. The figure below depicts a SMSishing attack, a social engineering technique which uses SMS messaging to transmit a phishing message. In this example, the threat actors sent the target a SMS message impersonating the target's bank. This message threatened that the target would be locked out of their account within a short period of time due to a negative balance in their account. Using the '''''tactic''''' of SMSishing, these threat actors employed the '''''techniques''''' of ''Account Lockout'' and ''Negative Balance'' to launch the '''''exploits''''' of ''Scarcity'' and ''Fear Of Missing Out'' as a means to exploit the '''''cognitive vulnerability''''' of ''Loss Aversion''. This system for building Cognitive Attack Graphs is extensible and scalable to accommodate a broad range of cognitive attacks ranging from social engineering, to influence operations, to lawfare, to neuro-attacks, narrative warfare, and others.<br> <br />
<br />
<!-- [[File:SMSishing-Loss Aversion AttackGraph.jpg|frame|center|alt=Cognitive Attack Graph: SMSishing attack threatening account lockout due to a negative balance, employing the exploits of Scarcity and FOMO to exploit the Loss Aversion cognitive vulnerability.|Cognitive Attack Graph: SMSishing attack threatening account lockout due to a negative balance, employing the exploits of Scarcity and FOMO to exploit the Loss Aversion cognitive vulnerability.]] --><br />
<br />
<br />
<!-- [[File:SMSishing-Loss Aversion AttackGraph.png|thumb|alt=SMSishing Graph|SMSishing]] --><br />
<br />
== '''Open Systems Interconnection Model (OSI Model)''' ==<br />
<br />
=== '''Layer 1-7 (OSI Model)''' ===<br />
Introduction to the OSI Model...<br />
<br />
<br />
==== OSI Layer 1 ====<br />
<br />
==== OSI Layer 2 ====<br />
<br />
==== OSI Layer 3 ====<br />
<br />
==== OSI Layer 4 ====<br />
<br />
==== OSI Layer 5 ====<br />
<br />
==== OSI Layer 6 ====<br />
<br />
==== OSI Layer 7 ====<br />
<br />
===== AI and Large Language Models =====<br />
Generative AI models, such as large language models (LLMs) reside at OSI Layer 7. According to Chat GPT4...<br><br>"Large Language Models (LLMs) like GPTs (Generative Pre-trained Transformers) operate at the Application Layer (Layer 7) of the OSI model. The Application Layer is the topmost layer that provides interfaces for applications to access network services and defines protocols that applications use to communicate over a network. LLMs and GPTs, being advanced software applications that provide natural language processing capabilities, interact with other software applications and services through the Application Layer. They use protocols defined at this layer to send and receive data over the network, offering services such as text generation, language translation, and content creation that are utilized by end-user applications."<br />
<br />
==== Attacks At Different OSI Layers ====<br />
<br />
[[File:OSI Attack Possibilities Table.jpg|none|center|alt=Attack Possibilities by OSI Layer (Layers 1 - 7)|OSI Attack Possibilities Table]]<ref>https://www.us-cert.gov/sites/default/files/publications/DDoS%20Quick%20Guide.pdf</ref><br />
<br />
== '''Human Interconnection Model (HIM)''' ==<br />
<br />
=== '''Layer 8 (HIM)''' ===<br />
<br />
=== '''Layer 9 (HIM)''' ===<br />
<br />
=== '''Layer 10 (HIM)''' ===<br />
<br />
== '''Scales of Operation''' ==<br />
<br />
=== '''Tactical''' ===<br />
<br />
=== '''Operational''' ===<br />
<br />
=== '''Strategic''' ===<br />
<br />
== '''Ethical Concerns''' ==<br />
There is a philosophical perspective that advocates against the dissemination of “dark knowledge”; knowledge about ways that evil might be perpetrated or facilitated. This leads to an open debate which should be explored by the CSI community about whether these aspects of cognitive manipulation should be openly explored. A strong argument in favor of exploring these issues is that those intent on committing evil will learn of these tools, tactics, techniques, procedures, and human vulnerabilities without the aid of this reference. If being forewarned is to be forearmed, and knowledge is power, then advocating for the exposure of these vulnerabilities, exploits, and tools to the public may empower the public to anticipate and avoid such attacks.<br />
<br />
= '''How To Understand the Cognitive Attack Taxonomy''' =<br />
<br />
<br />
'''<big>CAT Name:</big>''' This is the common name to describe the cognitive attack taxonomy (CAT) vulnerability, exploit, or T/TTP (VET).<br><br><br />
<br />
'''<big>Short Description:</big>''' This is a brief description of the CAT-VET is usually a two to three sentences maximum description of the entry.<br><br> <br />
<br />
'''<big>CAT ID:</big>''' Intended to be a unique identifier for the CAT-VET. The prefix "CAT" refers to the Cognitive Attack Taxonomy, followed by the year, and finally the serial number of the CAT-VET. For example, CAT-2021-005 identifies the fifth CAT-VET cataloged in calendar year 2021.<br><br> <br />
<br />
'''<big>Layer:</big>''' This refers to the interconnection layer that the CAT-VET operates through. The Open Systems Interconnection Model (OSI Model) refers to communication between information systems. Layer 1 refers to the physical layer (wires or radio waves) and Layer 7 refers to the application layer at which the connection interfaces with the human user. The Human Interconnection Model (HIM) refers to Layer 8 (human layer), Layer 9 (organizational layer), and Layer 10 (legal layer).<br> <br />
<br />
* '''Layer 7:''' This is the layer that AI operates through (according to ChatGPT4).<br> <br />
* '''Layer 8:''' The human layer at which heuristics, biases, and other psychological influence techniques operate. Social engineering or influence operations function at this layer.<br> <br />
* '''Layer 9:''' The organizational layer, manipulation techniques at this layer operate through policy functions. <br />
* '''Layer 10:''' The legal layer, manipulation at this layer occurs through legislative processes or court cases.<br><br> <br />
<br />
'''<big>Operational Scale:</big>''' This refers to the ''typical'' or ''expected'' scale this CAT-VET is deployed at. <br />
* '''Tactical:''' These are typically individual encounters with a single attacker and single target. <br />
* '''Operational:''' This level refers to multiple engagements over a period of time, typically involving multiple parties.<br />
* '''Strategic:''' Nation-state or nation-state level actors exercising multiple operations to exert strategic influence objectives.<br><br><br />
<br />
'''<big>Level of Maturity:</big>''' This header describes the degree to which a vulnerability, exploit, or T/TTPs has been vetted, validated, or established. V-E-Ts exist on a continuum from hypothetical ideas anchoring one extreme with very well established laws human nature occupying the other extreme with a spectrum of support for constructs in between. The Level of Maturity refers to the degree of empirical support that is documented for each V-E-T, and this designation may evolve over time. <br />
* '''Theoretical:''' Unproven CAT-VETs that are feasible but have not yet been proven through a proof-of-concept test nor has been documented in the wild. <br />
* '''Proof-of-Concept:''' Security researchers commonly discover and report on vulnerabilities, exploits, or techniques. These CAT-VETs have not yet been documented in the wild. <br />
* '''Observed in the Wild:''' CAT-VETs which have been reported as occurring in a non-laboratory or controlled setting. These reports usually result from criminals employing techniques during the commission of crimes. <br />
* '''In Common Use:''' These CAT-VETs are commonly encountered or exploited in uncontrolled environments and are commonly used by criminals and other threat actors.<br />
* '''Well-Established:''' CAT-VETs that are in common use ''and'' are well-documented to be effective.<br><br><br />
<br />
'''<big>Category:</big>''' The CAT-VET category informs whether an entry is a cognitive vulnerability, cognitive exploit, or is a tactic, technique, tool, or procedure. <br />
* '''Vulnerability:''' Cognitive Vulnerability <br />
* '''Exploit:''' Cognitive Exploit<br />
* '''TTP:''' Cognitive Attack Tactic/Technique, Tool, or Procedure<br><br><br />
<br />
'''<big>Subcategory:</big>''' The CAT-VET subcategory refers to the type of vulnerability, exploit, or T/TTP the entry falls within. The subcategory is intended to be expandable as new discoveries are made, while CAT-VET Categories are intended to be immutable.<br><br><br />
<br />
'''<big>Also Known As:</big>''' Identifies alternative names or adjacent terms and concepts to the entry.<br><br><br />
<br />
'''<big>Brief Description:</big>''' This description is intended to be a five words or less description of the entry.<br><br><br />
<br />
'''<big>Closely Related Concepts:</big>''' These are concepts which relate to the entry but are not alternative names.<br><br><br />
<br />
'''<big>Mechanism:</big>''' This describes the operation of the CAT-VET entry. If the entry is a vulnerability, then the mechanisms described will be exploits or T/TTPs. If the entry is an exploit, the mechanisms will include vulnerabilities the exploit may be applied to or T/TTPs which may take advantage of the exploit, alternatively, a T/TTP entry will list cognitive vulnerabilities which it may be applied against or exploits which might be leveraged T/TTP deployment.<br><br><br />
<br />
'''<big>Multiplier:</big>''' Describes adjacent phenomena which may enhance or degrade the entry. For example, decision fatigue (CAT-2022-050) is a cognitive vulnerability which describes the experience of increasing difficulty in resisting temptation as choices are made. This vulnerability may be enhanced by presenting more closely related alternatives when choosing between alternatives (increasing cognitive load), or degraded by presenting personally relevant information at the key decision point (increasing semantic relevance).<br><br> <br />
<br />
'''<big>Detailed Description:</big>''' This category provides a detailed description of the entry. This section can be as long as needed and is intended to be expandable to allow for new or updated information about the entry.<br><br><br />
<br />
'''<big>Use Case Example:</big>''' Examples of how the CAT-VET might be used in a hypothetical situation.<br><br><br />
<br />
'''<big>Example From The Wild:</big>''' Example of the CAT-VET has been used in a documented case.<br><br><br />
<br />
'''<big>Comments:</big>''' General commentary on the CAT entry. Community discussions may exist here in addition to the page discussion notes.<br><br><br />
<br />
'''<big>References:</big>''' All CAT entries are to be backed by references to the maximum practical extent. All entries should be backed by research and/or observations from the wild. The CAT is not intended to be a repository of fantasy or opinion.<br><br><br />
<br />
= '''References''' =<br />
<br />
<br />
<br />
<br />
== Using Media Wiki ==<br />
<br />
Consult the [https://www.mediawiki.org/wiki/Special:MyLanguage/Help:Contents User's Guide] for information on using the wiki software.<br />
* [[CAT HOW TO EDIT GUIDE]]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Configuration_settings Configuration settings list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:FAQ MediaWiki FAQ]<br />
* [https://lists.wikimedia.org/postorius/lists/mediawiki-announce.lists.wikimedia.org/ MediaWiki release mailing list]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Localisation#Translation_resources Localise MediaWiki for your language]<br />
* [https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Combating_spam Learn how to combat spam on your wiki]</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=CognitiveAttackTaxonomy&diff=484
CognitiveAttackTaxonomy
2024-11-16T21:19:35Z
<p>Info: </p>
<hr />
<div>{| class="wikitable sortable" <br />
|+ '''<br />
== Cognitive Attack Taxonomy ==<br />
'''<br><br> <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2024-010 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || || <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Phishing&diff=483
Phishing
2024-11-11T03:11:43Z
<p>Info: /* Description: */</p>
<hr />
<div>== '''Phishing ''' ==<br />
<br />
'''Short Description:''' Using email to deceive a target into downloading malware or revealing sensitive information. <br><br />
<br />
'''CAT ID:''' CAT-2022-132 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' TTP <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
Distraction: [[Distracted Approach-Distraction]] (CAT-2022-191) users who are distracted or who have their attention directed toward another task or object are more susceptible to phishing attempts. <br />
<br />
Mobile Device Usage: Research indicates that using a mobile device can make an individual MORE susceptible to clicking malicious links<ref>Zhuo, S., Biddle, R., Betts, L., Arachchilage, N. A. G., Koh, Y. S., Lottridge, D., & Russello, G. (2023). What You See is Not What You Get: The Role of Email Presentation in Phishing Susceptibility. https://arxiv.org/abs/2304.00664</ref> <br><br />
<br />
'''Detailed Description:''' Fraudulent attempt to obtain sensitive information from a target, or convince a target to download malware, by impersonating a trustworthy entity. This is typically carried out using email as the communication medium. <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
[[Authority]]: Impersonating an authority figure and imposing authoritarian tactics is among the most common phishing tactics because it is a very effective cognitive exploit. <br />
<br />
[[Reciprocation]]: Attempting to invoke reciprocity in the target of a phishing attempt has been documented in some phishing emails<ref>Zielinska, O. A., Welk, A. K., Mayhorn, C. B., & Murphy-Hill, E. (2016, September). A temporal analysis of persuasion principles in phishing emails. In Proceedings of the human factors and ergonomics society annual meeting (Vol. 60, No. 1, pp. 765-769). Sage CA: Los Angeles, CA: SAGE Publications. https://journals.sagepub.com/doi/abs/10.1177/1541931213601175</ref>.<br />
<br />
[[Excitement-Appeal to|Excitement]]: Scammers often appeal to excitement as a means of compelling a target to click a link or download malware. <br />
<br />
[[Misdirection-Distraction|Misdirection]]: Phishers commonly use logos or prominent features in emails as a means of misdirection as well as a means of establishing legitimacy.<br />
<br />
[[Pre-Suasion]]: Scammers can enhance the effectiveness of phishing emails by employing pre-suasion techniques such as the [[Unfinished-Magnetizer|Unfinished]], [[Mystery Magnetizer|Mystery]], or [[Self-Relevance-Magnetizer|Self-Relevance]] magnetizers<ref>Cialdini, R. (2016). Pre-suasion. Simon & Schuster.</ref>. <br />
<br />
[[Narrative Influence]]: Phishing emails can significantly enhance effectiveness by playing into a narrative. Some research suggests that when the narrative of a phishing email is highly aligned with user expectations, it may cause the receiver to ignore or explain away warning cues that an email might be malicious<ref>Greene, K. K., Steves, M., Theofanos, M., & Kostick, J. (2018, February). User context: an explanatory variable in phishing susceptibility. In in Proc. 2018 Workshop Usable Security. https://www.ndss-symposium.org/wp-content/uploads/2018/07/usec2018_01-2_Greene_paper.pdf</ref>.<br />
<br />
[[Assistance Ploy|Assistance]]: Phishing emails sometimes very effectively impersonate employees seeking assistance as the email pretext.<br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Phishing&diff=482
Phishing
2024-11-11T03:06:29Z
<p>Info: /* Description: */</p>
<hr />
<div>== '''Phishing ''' ==<br />
<br />
'''Short Description:''' Using email to deceive a target into downloading malware or revealing sensitive information. <br><br />
<br />
'''CAT ID:''' CAT-2022-132 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' TTP <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
Distraction: [[Distracted Approach-Distraction]] (CAT-2022-191) users who are distracted or who have their attention directed toward another task or object are more susceptible to phishing attempts. <br />
<br />
Mobile Device Usage: Research indicates that using a mobile device can make an individual MORE susceptible to clicking malicious links<ref>Zhuo, S., Biddle, R., Betts, L., Arachchilage, N. A. G., Koh, Y. S., Lottridge, D., & Russello, G. (2023). What You See is Not What You Get: The Role of Email Presentation in Phishing Susceptibility. https://arxiv.org/abs/2304.00664</ref> <br><br />
<br />
'''Detailed Description:''' Fraudulent attempt to obtain sensitive information from a target, or convince a target to download malware, by impersonating a trustworthy entity. This is typically carried out using email as the communication medium. <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
[[Authority]]: Impersonating an authority figure and imposing authoritarian tactics is among the most common phishing tactics because it is a very effective cognitive exploit. <br />
<br />
[[Reciprocation]]: Attempting to invoke reciprocity in the target of a phishing attempt has been documented in some phishing emails<ref>Zielinska, O. A., Welk, A. K., Mayhorn, C. B., & Murphy-Hill, E. (2016, September). A temporal analysis of persuasion principles in phishing emails. In Proceedings of the human factors and ergonomics society annual meeting (Vol. 60, No. 1, pp. 765-769). Sage CA: Los Angeles, CA: SAGE Publications. https://journals.sagepub.com/doi/abs/10.1177/1541931213601175</ref>.<br />
<br />
[[Excitement-Appeal to|Excitement]]: Scammers often appeal to excitement as a means of compelling a target to click a link or download malware. <br />
<br />
[[Misdirection-Distraction|Misdirection]]: Phishers commonly use logos or prominent features in emails as a means of misdirection as well as a means of establishing legitimacy.<br />
<br />
[[Pre-Suasion]]]: Scammers can enhance the effectiveness of phishing emails by employing pre-suasion techniques such as the [[Unfinished-Magnetizer|Unfinished]], [[Mystery Magnetizer|Mystery]], or [[Self-Relevance-Magnetizer|Self-Relevance]] magnetizers. <br />
<br />
[[Narrative Influence]]: Phishing emails can significantly enhance effectiveness by playing into a narrative. Some research suggests that when the narrative of a phishing email is highly aligned with user expectations, it may cause the receiver to ignore or explain away warning cues that an email might be malicious<ref>Greene, K. K., Steves, M., Theofanos, M., & Kostick, J. (2018, February). User context: an explanatory variable in phishing susceptibility. In in Proc. 2018 Workshop Usable Security. https://www.ndss-symposium.org/wp-content/uploads/2018/07/usec2018_01-2_Greene_paper.pdf</ref>.<br />
<br />
[[Assistance Ploy|Assistance]]: Phishing emails sometimes very effectively impersonate employees seeking assistance as the email pretext.<br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Phishing&diff=481
Phishing
2024-11-11T02:59:25Z
<p>Info: /* Description: */</p>
<hr />
<div>== '''Phishing ''' ==<br />
<br />
'''Short Description:''' Using email to deceive a target into downloading malware or revealing sensitive information. <br><br />
<br />
'''CAT ID:''' CAT-2022-132 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' TTP <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
Distraction: [[Distracted Approach-Distraction]] (CAT-2022-191) users who are distracted or who have their attention directed toward another task or object are more susceptible to phishing attempts. <br />
<br />
Mobile Device Usage: Research indicates that using a mobile device can make an individual MORE susceptible to clicking malicious links<ref>Zhuo, S., Biddle, R., Betts, L., Arachchilage, N. A. G., Koh, Y. S., Lottridge, D., & Russello, G. (2023). What You See is Not What You Get: The Role of Email Presentation in Phishing Susceptibility. https://arxiv.org/abs/2304.00664</ref> <br><br />
<br />
'''Detailed Description:''' Fraudulent attempt to obtain sensitive information from a target, or convince a target to download malware, by impersonating a trustworthy entity. This is typically carried out using email as the communication medium. <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
[[Authority]]: Impersonating an authority figure and imposing authoritarian tactics is among the most common phishing tactics because it is a very effective cognitive exploit. <br />
<br />
[[Reciprocation]]: Attempting to invoke reciprocity in the target of a phishing attempt has been documented in some phishing emails<ref>Zielinska, O. A., Welk, A. K., Mayhorn, C. B., & Murphy-Hill, E. (2016, September). A temporal analysis of persuasion principles in phishing emails. In Proceedings of the human factors and ergonomics society annual meeting (Vol. 60, No. 1, pp. 765-769). Sage CA: Los Angeles, CA: SAGE Publications. https://journals.sagepub.com/doi/abs/10.1177/1541931213601175</ref>.<br />
<br />
[[Excitement-Appeal to|Excitement]]: Scammers often appeal to excitement as a means of compelling a target to click a link or download malware. <br />
<br />
[[Misdirection-Distraction|Misdirection]]: Phishers commonly use logos or prominent features in emails as a means of misdirection as well as a means of establishing legitimacy.<br />
<br />
[[Pre-Suasion]]]: Scammers can enhance the effectiveness of phishing emails by employing pre-suasion techniques such as the [[Unfinished-Magnetizer|Unfinished]], [[Mystery Magnetizer|Mystery]], or [[Self-Relevance-Magnetizer|Self-Relevance]] magnetizers. <br />
<br />
[[Narrative Influence]]: Phishing emails can significantly enhance effectiveness by playing into a narrative.<br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Phishing&diff=480
Phishing
2024-11-11T02:51:50Z
<p>Info: /* Description: */</p>
<hr />
<div>== '''Phishing ''' ==<br />
<br />
'''Short Description:''' Using email to deceive a target into downloading malware or revealing sensitive information. <br><br />
<br />
'''CAT ID:''' CAT-2022-132 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' TTP <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
Distraction: [[Distracted Approach-Distraction]] (CAT-2022-191) users who are distracted or who have their attention directed toward another task or object are more susceptible to phishing attempts. <br />
<br />
Mobile Device Usage: Research indicates that using a mobile device can make an individual MORE susceptible to clicking malicious links<ref>Zhuo, S., Biddle, R., Betts, L., Arachchilage, N. A. G., Koh, Y. S., Lottridge, D., & Russello, G. (2023). What You See is Not What You Get: The Role of Email Presentation in Phishing Susceptibility. https://arxiv.org/abs/2304.00664</ref> <br><br />
<br />
'''Detailed Description:''' Fraudulent attempt to obtain sensitive information from a target, or convince a target to download malware, by impersonating a trustworthy entity. This is typically carried out using email as the communication medium. <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
[[Authority]]: Impersonating an authority figure and imposing authoritarian tactics is among the most common phishing tactics because it is a very effective cognitive exploit. <br />
<br />
[[Reciprocation]]: Attempting to invoke reciprocity in the target of a phishing attempt has been documented in some phishing emails<ref>Zielinska, O. A., Welk, A. K., Mayhorn, C. B., & Murphy-Hill, E. (2016, September). A temporal analysis of persuasion principles in phishing emails. In Proceedings of the human factors and ergonomics society annual meeting (Vol. 60, No. 1, pp. 765-769). Sage CA: Los Angeles, CA: SAGE Publications. https://journals.sagepub.com/doi/abs/10.1177/1541931213601175</ref>.<br />
<br />
[[Excitement-Appeal to|Excitement]]: Scammers often appeal to excitement as a means of compelling a target to click a link or download malware. <br />
<br />
[[Misdirection-Distraction|Misdirection]]: Phishers commonly use logos or prominent features in emails as a means of misdirection as well as a means of establishing legitimacy.<br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=CognitiveAttackTaxonomy&diff=479
CognitiveAttackTaxonomy
2024-11-11T02:35:28Z
<p>Info: </p>
<hr />
<div>{| class="wikitable sortable" <br />
|+ '''Cognitive Attack Taxonomy'''<br> <br />
|- <br />
! CAT ID !! CAT Name !! Layer !! Category<br />
|- CAT ID CAT Name Layer Category <br />
| CAT-2024-01 || [[QRishing ]] || 8 || TTP <br />
|- <br />
| CAT-2024-007 || [[Need to Correct ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-006 || [[Regulatory Capture ]] || 10 || Exploit <br />
|- <br />
| CAT-2024-005 || [[Perjury_Trap ]] || 8, 10 || TTP <br />
|- <br />
| CAT-2024-004 || [[Stroop_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2024-003 || [[False_Feedback_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2024-002 || [[Sleeper_Agent_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-001 || [[Evil_Eve_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2024-008 || [[Positive_Test_Strategy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2024-010 || [[Hyperstition ]] || 8 || Vulnerability <br />
|-<br />
| CAT-2024-009 || [[Psychological_Chuting ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-018 || [[Repeated_Exposure ]] || 8 || Exploit <br />
|- <br />
| CAT-2023-017 || [[Model_Extraction_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-016 || [[Model_Theft ]] || 7 || TTP <br />
|- <br />
| CAT-2023-015 || [[Data_Reconstruction ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-014 || [[Model_Inversion_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-013 || [[Membership_Inference_Attack ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-012 || [[Adversarial_Examples ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-011 || [[Evasion_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-010 || [[Input_Manipulation_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-009 || [[Backdoor_Attacks ]] || 7 || TTP <br />
|- <br />
| CAT-2023-008 || [[Trigger_Based_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-007 || [[Training_Data_Poisoning_Attack ]] || 7 || TTP <br />
|- <br />
| CAT-2023-006 || [[Campbell’s_Law ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2023-005 || [[Training_Data_Poisoning ]] || 7 || Exploit <br />
|- <br />
| CAT-2023-004 || [[Suffix_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-003 || [[Sensitive_Information_Disclosure ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2023-002 || [[Prompt_Injection ]] || 7 || TTP <br />
|- <br />
| CAT-2023-001 || [[Overreliance_on_Automation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-321 || [[Impulsivity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-320 || [[Excessive_Agency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-319 || [[Emoji_Injection ]] || 7, 8 || TTP <br />
|- <br />
| CAT-2022-318 || [[Culture_Jamming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-317 || [[Chain-Of-Thought_Manipulation ]] || 7 || TTP <br />
|- <br />
| CAT-2022-316 || [[Network_Ambiance_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-315 || [[Maskarovka ]] || 8 || TTP <br />
|- <br />
| CAT-2022-314 || [[Reflexive_Control ]] || 8 || TTP <br />
|- <br />
| CAT-2022-313 || [[Zone_Flooding ]] || 8 || TTP <br />
|- <br />
| CAT-2022-312 || [[Incrementalism ]] || 8, 9 || Exploit <br />
|- <br />
| CAT-2022-311 || [[Compliance-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-310 || [[Yes-Ladder ]] || 8 || TTP <br />
|- <br />
| CAT-2022-309 || [[Wing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-308 || [[Whorfian_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-307 || [[Venue_Change ]] || 8 || TTP <br />
|- <br />
| CAT-2022-306 || [[Trance-Words ]] || 8 || TTP <br />
|- <br />
| CAT-2022-305 || [[Tainted_Leak ]] || 8 || TTP <br />
|- <br />
| CAT-2022-304 || [[Social_Engineering_Toolkit ]] || 8 || TTP <br />
|- <br />
| CAT-2022-303 || [[Slander_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-302 || [[Sandbagging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-301 || [[Reframing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-300 || [[Prop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-299 || [[Preloading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-298 || [[Pendant_Anchoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-297 || [[Open-Ended_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-296 || [[Negging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-295 || [[Multi-Channel_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-294 || [[Mirroring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-293 || [[Micro_Expression ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-292 || [[Maltego ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-291 || [[Leading_Question ]] || 8 || TTP <br />
|- <br />
| CAT-2022-290 || [[Journobaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-289 || [[Ice_Breaker ]] || 8 || TTP <br />
|- <br />
| CAT-2022-288 || [[Hot_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-287 || [[Honey_Channels ]] || 8 || TTP <br />
|- <br />
| CAT-2022-286 || [[Functional_Opener ]] || 8 || TTP <br />
|- <br />
| CAT-2022-285 || [[Forcing ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-284 || [[Firehose_of_Falsehood ]] || 8 || TTP <br />
|- <br />
| CAT-2022-283 || [[False_Time_Constraint ]] || 8 || TTP <br />
|- <br />
| CAT-2022-282 || [[False_Flag ]] || 8 || TTP <br />
|- <br />
| CAT-2022-281 || [[Eject_with_Explanation ]] || 8 || TTP <br />
|- <br />
| CAT-2022-280 || [[Double_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-279 || [[Deception-in-Depth ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-278 || [[Conversational_Threading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-277 || [[Cold_Reading ]] || 8 || TTP <br />
|- <br />
| CAT-2022-276 || [[Buscador ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-275 || [[Brushing ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-274 || [[Baiting-Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-273 || [[Anchor-NLP_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-272 || [[Active_Indicator_Probe ]] || 8 || TTP <br />
|- <br />
| CAT-2022-271 || [[Accomplished_Introduction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-270 || [[Operant_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-269 || [[Neoteny ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-268 || [[Need ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-267 || [[Need_&_Greed_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-266 || [[Fear ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-265 || [[Jolly_Roger_Bot ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2022-264 || [[eWhoring ]] || 8 || TTP <br />
|- <br />
| CAT-2022-263 || [[Synthetic_Media_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-262 || [[Deepfake_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-261 || [[Virus_Hoax ]] || 8 || TTP <br />
|- <br />
| CAT-2022-260 || [[Virtual_Kidnapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-259 || [[Telemarketing_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-258 || [[Tech_Support_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-257 || [[Romance_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-256 || [[Hoax_Virus ]] || 8 || TTP <br />
|- <br />
| CAT-2022-255 || [[Gift-Card_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-254 || [[Crab_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-253 || [[Cat_Fishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-252 || [[Business_Email_Compromise ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-251 || [[Advance_Fee_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-250 || [[War_Shipping ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-249 || [[Tailgating ]] || 8 || TTP <br />
|- <br />
| CAT-2022-248 || [[Snail_Mail_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-247 || [[Shoulder_Surfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-246 || [[Dumpster_Diving ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-245 || [[Baiting-Drop ]] || 8 || TTP <br />
|- <br />
| CAT-2022-244 || [[Assistance_Ploy ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-243 || [[Robot_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-242 || [[Dolphin_Attack ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-241 || [[Acoustic_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-240 || [[Robo_Calling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-239 || [[Spamigation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-238 || [[Strategic_Lawsuit_Against_Public_Participation ]] || 10 || TTP <br />
|- <br />
| CAT-2022-237 || [[Patent_Trolling ]] || 10 || TTP <br />
|- <br />
| CAT-2022-236 || [[Legal_Loophole ]] || 10 || Vulnerability <br />
|- <br />
| CAT-2022-235 || [[Lawfare ]] || 10 || Exploit <br />
|- <br />
| CAT-2022-234 || [[Supply_Chain_Attack ]] || 9 || Exploit <br />
|- <br />
| CAT-2022-233 || [[Shadow_Security ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-232 || [[Shadow_IT ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-231 || [[Shadow_AP ]] || 9 || Vulnerability <br />
|- <br />
| CAT-2022-230 || [[Escalation_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-229 || [[Cybersquatting ]] || 9 || TTP <br />
|- <br />
| CAT-2022-228 || [[Spectrum_of_Allies ]] || 8 || TTP <br />
|- <br />
| CAT-2022-227 || [[Unity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-226 || [[Social_Proof ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-225 || [[Scarcity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-224 || [[Reversing_Authority ]] || 8 || TTP <br />
|- <br />
| CAT-2022-223 || [[Reciprocity-Need_for ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-222 || [[Pawn-Pivot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-221 || [[Party_Crashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-220 || [[Liking ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-219 || [[Door-in-the-Face_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-218 || [[Commitment-Consistency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-217 || [[Bandwagon_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-216 || [[Authority-Deference_to ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-215 || [[Assistance-Need_to_Provide ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-214 || [[Network_Affect_Contagion ]] || 7, 8 || Vulnerability <br />
|- <br />
| CAT-2022-213 || [[Wall_Banging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-212 || [[Trolling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-211 || [[Trevor's_Axiom ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-210 || [[Sympathy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-209 || [[Streisand_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-208 || [[Stereotyping ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-207 || [[Social_Desirability_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-206 || [[Outgroup_Homogeneity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-205 || [[Network_Manipulated_Affect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-204 || [[Mass_Psychogenic_Illness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-203 || [[Ingroup_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-202 || [[Zombification ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-201 || [[Strobe_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-200 || [[Sonic_Area_Denial ]] || 8 || TTP <br />
|- <br />
| CAT-2022-199 || [[P300_Guilty_Knowledge_Test ]] || 8 || TTP <br />
|- <br />
| CAT-2022-198 || [[Interoceptive_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-197 || [[Tab-Napping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-196 || [[Prevalence_Paradox ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-195 || [[Noise_Injection ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-194 || [[Human_Buffer_Overflow ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-193 || [[Gray_Signal_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-192 || [[Focusing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-191 || [[Distracted_Approach-Distraction ]] || 8 || TTP <br />
|- <br />
| CAT-2022-190 || [[Boredom ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-189 || [[Automaticity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-188 || [[Video_Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-187 || [[Social_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-186 || [[Perceptual_Deception ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-185 || [[Like_Jacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-184 || [[IDN_Homograph_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-183 || [[Clickjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-182 || [[Traitor_Tracing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-181 || [[Ignorance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-180 || [[File_Masquerading ]] || 8, 9 || TTP <br />
|- <br />
| CAT-2022-179 || [[We_Know_All ]] || 8 || TTP <br />
|- <br />
| CAT-2022-178 || [[Silence ]] || 8 || TTP <br />
|- <br />
| CAT-2022-177 || [[Sensory_Matching ]] || 8 || TTP <br />
|- <br />
| CAT-2022-176 || [[Secret_Knowledge ]] || 8 || TTP <br />
|- <br />
| CAT-2022-175 || [[Rubber-Hose_Cryptanalysis ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-174 || [[Repetition ]] || 8 || TTP <br />
|- <br />
| CAT-2022-173 || [[Repeat-a-Word ]] || 8 || TTP <br />
|- <br />
| CAT-2022-172 || [[Rapid_Fire ]] || 8 || TTP <br />
|- <br />
| CAT-2022-171 || [[Quid_Pro_Quo ]] || 8 || TTP <br />
|- <br />
| CAT-2022-170 || [[Provocative_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-169 || [[Pride_and_Ego_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-168 || [[Oblique_Reference ]] || 8 || TTP <br />
|- <br />
| CAT-2022-167 || [[Neuro-Linguistic_Programming ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-166 || [[Naïve_Mentality ]] || 8 || TTP <br />
|- <br />
| CAT-2022-165 || [[Incentive_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-164 || [[Hour_Glass_Method ]] || 8 || TTP <br />
|- <br />
| CAT-2022-163 || [[Futility ]] || 8 || TTP <br />
|- <br />
| CAT-2022-162 || [[Flattery ]] || 8 || TTP <br />
|- <br />
| CAT-2022-161 || [[File_and_Dossier ]] || 8 || TTP <br />
|- <br />
| CAT-2022-160 || [[Fear-Up_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-159 || [[Fear-Down_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-158 || [[Ethical_Dilemma ]] || 8 || TTP <br />
|- <br />
| CAT-2022-157 || [[Establish_Your_Identity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-156 || [[Emotional_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-155 || [[Elicitation_of_Information ]] || 8 || TTP <br />
|- <br />
| CAT-2022-154 || [[Disbelief ]] || 8 || TTP <br />
|- <br />
| CAT-2022-153 || [[Direct_Approach ]] || 8 || TTP <br />
|- <br />
| CAT-2022-152 || [[Deliberate_False_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-151 || [[Criticism ]] || 8 || TTP <br />
|- <br />
| CAT-2022-150 || [[Complaining-Tendency ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-149 || [[Change_of_Scene ]] || 8 || TTP <br />
|- <br />
| CAT-2022-148 || [[Whaling ]] || 8 || TTP <br />
|- <br />
| CAT-2022-147 || [[Tailored_Messaging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-146 || [[Sniper_Ad_Targeting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-145 || [[Pluridentity_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-144 || [[Inference_Attack ]] || 7,8,9,10 || Exploit <br />
|- <br />
| CAT-2022-143 || [[Data_Vulnerability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-142 || [[Vishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-141 || [[Spear_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-140 || [[Sock-Puppetry ]] || 8 || TTP <br />
|- <br />
| CAT-2022-139 || [[SMSishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-138 || [[Shilling_Attack ]] || 9 || TTP <br />
|- <br />
| CAT-2022-137 || [[Shill ]] || 8 || TTP <br />
|- <br />
| CAT-2022-136 || [[Semantic_Attack ]] || 7, 8, 9 || Exploit <br />
|- <br />
| CAT-2022-135 || [[Scambaiting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-134 || [[Reverse_Social_Engineering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-133 || [[Pretext-Pretexting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-132 || [[Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-131 || [[Impersonation_Scam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-130 || [[Honey_Trap ]] || 8 || TTP <br />
|- <br />
| CAT-2022-129 || [[Honey_Token ]] || 8 || TTP <br />
|- <br />
| CAT-2022-128 || [[Honey_Pot ]] || 8 || TTP <br />
|- <br />
| CAT-2022-127 || [[Honey_Phish ]] || 8 || TTP <br />
|- <br />
| CAT-2022-126 || [[Greenwashing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-125 || [[Gaslighting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-124 || [[Cognitive_Malware_Injection ]] || 8 || TTP <br />
|- <br />
| CAT-2022-123 || [[Clone_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-122 || [[Astro-Turfing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-121 || [[Transmission_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-120 || [[Mis-Addressed_Email ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-119 || [[Loss_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-118 || [[Leakage_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-117 || [[Disposal_Errors ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-116 || [[Configuration_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-115 || [[Curiosity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-114 || [[Zeigarnik_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-113 || [[Whorfianism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-112 || [[von_Restorff_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-111 || [[Unfinished-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-110 || [[Suggestion ]] || 8 || TTP <br />
|- <br />
| CAT-2022-109 || [[Subjective_Validation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-108 || [[Straw_Man-Argument ]] || 8 || TTP <br />
|- <br />
| CAT-2022-107 || [[Status_Quo_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-106 || [[Spotlight_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-105 || [[Spacing_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-104 || [[Source_Monitoring_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-103 || [[Serial_Position_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-102 || [[Self-Serving_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-101 || [[Self-Relevance_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-100 || [[Search_Engine_Manipulation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-099 || [[Satisficing ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-098 || [[Risk_Homeostasis ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-097 || [[Relativism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-096 || [[Probability_Blindness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-095 || [[Pre-Suasion ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-094 || [[Planning_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-093 || [[Peak-End_Rule ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-092 || [[Overconfidence ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-091 || [[Optimism_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-090 || [[Omission_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-089 || [[Next-In-Line-Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-088 || [[Neglect_of_Probability ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-087 || [[Negativity_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-086 || [[Narrative_Influence ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-085 || [[Mystery_Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-084 || [[Mother_Teresa_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-083 || [[Mood-Congruent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-082 || [[Mental_Set ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-081 || [[Malware-Induced_Misperception_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-080 || [[Self-Relevance-Magnetizer ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-079 || [[Loss_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-078 || [[Levels-of-Processing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-077 || [[Leveling_and_Sharpening ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-076 || [[Involuntary_Musical_Imagery ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-075 || [[Involuntary_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-074 || [[Inoculation_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-073 || [[Illusory_Correlation ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-072 || [[Illusion_of_Control ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-071 || [[IKEA_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-070 || [[Hyperbolic_Discounting ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-069 || [[Hindsight_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-068 || [[Halo_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-067 || [[Gambler's_Fallacy ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-066 || [[Fundamental_Attribution_Error ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-065 || [[Functional_Fixedness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-064 || [[Frequency_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-063 || [[Framing_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-062 || [[Foot-In-the-Door_Technique ]] || 8 || TTP <br />
|- <br />
| CAT-2022-061 || [[Fear_of_Missing_Out ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-060 || [[False_Uniqueness_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-059 || [[False_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-058 || [[False_Consensus_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-057 || [[Endowment_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-056 || [[Egocentric_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-055 || [[Ear_Worm ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-054 || [[Dunning–Kruger_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-053 || [[Dread_Aversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-052 || [[Default_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-051 || [[Decoy_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-050 || [[Decision_Fatigue ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-049 || [[Context_Dependent_Memory ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-048 || [[Confirmation_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-047 || [[Cognitive_Malware ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-046 || [[Cognitive_Dissonance ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-045 || [[Cognitive_Deception ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-044 || [[Clustering_Illusion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-043 || [[Classical_Conditioning ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-042 || [[Ben_Franklin_Effect ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-041 || [[Belief_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-040 || [[Base_Rate_Neglect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-039 || [[Barnum_Statement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-038 || [[Availability_Heuristic ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-037 || [[Anchoring ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-036 || [[Ambiguous_Self_Induced_Disinformation_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-035 || [[Ambient_Tactical_Deception_Attacks ]] || 8 || TTP <br />
|- <br />
| CAT-2022-034 || [[Actor-Observer_Bias ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-033 || [[Wikijacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-032 || [[Wi-Fi_Evil_Twin ]] || 8 || TTP <br />
|- <br />
| CAT-2022-031 || [[Water_Hole_Attack ]] || 8 || TTP <br />
|- <br />
| CAT-2022-030 || [[Typosquatting ]] || 8 || TTP <br />
|- <br />
| CAT-2022-029 || [[Social_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-028 || [[Lateral_Phishing ]] || 8 || TTP <br />
|- <br />
| CAT-2022-027 || [[Fluency_Effect ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-026 || [[Familiarity ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2022-025 || [[Brandjacking ]] || 8 || TTP <br />
|- <br />
| CAT-2022-024 || [[DELETED DUE TO REDUNDANCY ]] || || <br />
|- <br />
| CAT-2022-023 || [[Trick_Questions ]] || 8 || TTP <br />
|- <br />
| CAT-2022-022 || [[Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-021 || [[Sneak_into_Basket ]] || 8 || TTP <br />
|- <br />
| CAT-2022-020 || [[Scareware ]] || 8 || TTP <br />
|- <br />
| CAT-2022-019 || [[Roach_Motel ]] || 8 || TTP <br />
|- <br />
| CAT-2022-018 || [[Privacy_Zuckering ]] || 8 || TTP <br />
|- <br />
| CAT-2022-017 || [[Price_Comparison_Prevention ]] || 8 || TTP <br />
|- <br />
| CAT-2022-016 || [[Persuasive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-015 || [[Mouse-Trapping ]] || 8 || TTP <br />
|- <br />
| CAT-2022-014 || [[Misdirection-Distraction ]] || 8 || Exploit <br />
|- <br />
| CAT-2022-013 || [[Malvertisement ]] || 8 || TTP <br />
|- <br />
| CAT-2022-012 || [[Hidden_Costs ]] || 8 || TTP <br />
|- <br />
| CAT-2022-011 || [[Friend_Spam ]] || 8 || TTP <br />
|- <br />
| CAT-2022-010 || [[Forced_Continuity ]] || 8 || TTP <br />
|- <br />
| CAT-2022-009 || [[Disguised_Ads ]] || 8 || TTP <br />
|- <br />
| CAT-2022-008 || [[Dark_Design_Patterns ]] || 8 || TTP <br />
|- <br />
| CAT-2022-007 || [[Confirm_Shaming ]] || 8 || TTP <br />
|- <br />
| CAT-2022-006 || [[Click-Bait ]] || 8 || TTP <br />
|- <br />
| CAT-2022-005 || [[Bait_and_Switch ]] || 8 || TTP <br />
|- <br />
| CAT-2022-004 || [[Addictive_Technology ]] || 8 || TTP <br />
|- <br />
| CAT-2022-003 || [[Nudging ]] || 8 || TTP <br />
|- <br />
| CAT-2022-002 || [[Forcing_Function ]] || 8 || TTP <br />
|- <br />
| CAT-2022-001 || [[Fogg_Model_of_Behavior ]] || 8 || Tool / TTP <br />
|- <br />
| CAT-2021-010 || [[Excitement-Appeal_to ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-009 || [[Low_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-008 || [[Low_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-007 || [[Low_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-012 || [[Reciprocation ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-011 || [[Authority ]] || 8 || Exploit <br />
|- <br />
| CAT-2021-006 || [[Low_Openness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-005 || [[High_Neuroticism ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-004 || [[High_Agreeableness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-003 || [[High_Extraversion ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-002 || [[High_Conscientiousness ]] || 8 || Vulnerability <br />
|- <br />
| CAT-2021-001 || [[High_Openness]] || 8 || Vulnerability <br />
|-<br />
|}</div>
Info
https://cognitiveattacktaxonomy.org/index.php?title=Phishing&diff=478
Phishing
2024-11-11T02:31:14Z
<p>Info: /* Description: */</p>
<hr />
<div>== '''Phishing ''' ==<br />
<br />
'''Short Description:''' Using email to deceive a target into downloading malware or revealing sensitive information. <br><br />
<br />
'''CAT ID:''' CAT-2022-132 <br><br />
<br />
'''Layer:''' 8 <br><br />
<br />
'''Operational Scale:''' Tactical <br><br />
<br />
'''Level of Maturity:''' Well-Established <br><br />
<br />
'''Category:''' TTP <br><br />
<br />
'''Subcategory:''' <br><br />
<br />
'''Also Known As:''' <br><br />
<br />
== '''Description:''' ==<br />
<br />
'''Brief Description:''' <br><br />
<br />
'''Closely Related Concepts:''' <br><br />
<br />
'''Mechanism:''' <br><br />
<br />
'''Multipliers:''' <br><br />
Distraction: [[Distracted Approach-Distraction]] (CAT-2022-191) users who are distracted or who have their attention directed toward another task or object are more susceptible to phishing attempts. <br />
<br />
Mobile Device Usage: Research indicates that using a mobile device can make an individual MORE susceptible to clicking malicious links<ref>Zhuo, S., Biddle, R., Betts, L., Arachchilage, N. A. G., Koh, Y. S., Lottridge, D., & Russello, G. (2023). What You See is Not What You Get: The Role of Email Presentation in Phishing Susceptibility. https://arxiv.org/abs/2304.00664</ref> <br><br />
<br />
'''Detailed Description:''' Fraudulent attempt to obtain sensitive information from a target, or convince a target to download malware, by impersonating a trustworthy entity. This is typically carried out using email as the communication medium. <br><br />
<br />
'''INTERACTIONS''' [VETs]: <br><br />
<br />
== '''Examples:''' ==<br />
<br />
'''Use Case Example(s):''' <br><br />
<br />
'''Example(s) From The Wild:''' <br><br />
<br />
== '''Comments:''' ==<br />
<br />
== '''References:''' ==</div>
Info