Social media websites such as Instagram, Twitter, and TikTok do not merely provide a means for sharing photos or staying connected; they also act as portals for collecting unlimited amounts of personal data.

Those interested in the characteristics of each platform to acquire sound information regarding how Instagram uses the data it collects from users can find a significant amount of information in an in-depth guide. Although social media appears to be informal, everything posted, liked, or commented on by users could expose them to cyber threats if they are not cautious when utilizing these platforms.

The Psychology Behind Oversharing

There are many reasons why people post information on the internet. Some of these reasons include looking for confirmation from others, wanting to meet new friends, or even just having the habit of posting. Cyber thieves use our desire to post online as a way to perpetrate fraud against us. For example, posting pictures of what we do daily, where we are located, giving hints about our passwords, and hobbies can give the fraudsters an opportunity to use social engineering tactics and manipulate us into falling for their tricks.

It is crucial to have a good mental state of trust and familiarity with the person or company you are interacting with online. Cyber criminals create fake Facebook and Twitter accounts impersonating our friends or authorities and develop the sense of trust needed to manipulate us into taking action on their behalf or providing them with information that could ultimately lead to even more serious issues down the road.

Algorithmic Amplification

Social media algorithms give priority to content that generates user engagement. However, this means posts containing personal details get more visibility and can be widely disseminated. A photo posted from a location or a casual mention of buying something can be seen by more people than intended. Cheats keep a tab on such patterns using automated tools to identify potential targets. Social media algorithms inadvertently increase the reach of sensitive information, making internet users' digital footprints accessible to cyber attackers.

Exploiting Social Validation

Likes, shares, and comments are simple ways to interact with others socially, but they also give the individual confidence that the information shared is true because others are also engaging with it. A scammer creates a fake profile (or account) that seems to be popular and credible to exploit this behaviour based upon social proof, and once they have created their fake profile, they will use social proof to manipulate the person who does not know the account is fake. The more trustworthy social proof you have of someone's account, the more likely you are to fall for their social engineering attack.

Microtargeting Vulnerabilities

Social media platforms gather vast amounts of data, including demographics and behavior. Cyber fraudsters can use this information for targeted advertising, creating highly personal messages that appear to be genuine. Unlike general phishing emails, the information in these messages is based on the individual’s areas of interest, recent activities, or connections. Even a message about a common interest or friend can create doubts of suspicion and prompt a user to take action without thinking.

Real-World Examples

• Impersonating​‍​‌‍​‍‌​‍​‌‍​‍‌ friends, family members, or public figures

• Fake giveaways or promotional scams

• Malicious links sent through private messages

• Manipulative surveys or quizzes are intended to gather personal information

• Using location-sharing features to monitor someone's daily ​‍​‌‍​‍‌​‍​‌‍​‍‌activities

The Role of Emotional Manipulation

Fraudsters rely heavily on emotional triggers. Fear, curiosity, excitement, and empathy are all strong motivators. For example, a message suggesting a serious security threat can create feelings of panic and lead to hasty actions. Similar posts offering financial incentives or giving access to "inside" information can encourage the victims to provide sensitive details. Social media provides good opportunities to create emotionally charged content that can be related to personal experiences, increasing the chances of successful scams.

Why Awareness Isn’t Enough

There are many ways that even a savvy user can suffer from manipulative practices. Because social media sites are built to create an illusion of comfort and trust, they can reduce our ability to think critically. For example, posts designed to target a narrow audience can appear authentic and trustworthy enough to provoke a response from a more careful user. Simply being aware of these methods is not enough to prevent being subject to manipulation. Instead, users need to have implemented successful methods for identifying manipulative tactics and responding to unexpected requests, even when they come from a legitimately credible source.

Navigating the Social Media Minefield

Although many people connect through social networks using their own unique identities, they might be putting themselves at risk of becoming victims of cybercrime. To safely navigate these sites, it’s important to consider not only how your psychological behaviour and activity are being affected by the algorithms and other data you provide, but also what type of social interaction you are having with people online. By being conscious of the types of content you are sharing with others, any potential identity theft occurring from suspicious interactions, and by following proper practices regarding your online privacy and security, you can reduce your chances of becoming a target for cybercrime and therefore continue to benefit from all that social media networks offer.

2,3%