Stories of cyber attacks are becoming a routine in which cyber attackers show new levels of intention by sophisticated attacks on networks. Unfortunately, cybercriminals have figured out profitable business models and they take advantage of the online anonymity. A serious situation that needs to improve for networks’ defenders. Therefore, a paradigm shift is essential to the effectiveness of current techniques and practices. Since the majority of cyber incidents are human enabled, this shift requires expanding research to underexplored areas such as behavioral aspects of cybersecurity. It is more vital to focus on social and behavioral issues to improve the current situation. This paper is an effort to provide a review of relevant theories and principles, and gives insights including an interdisciplinary framework that combines behavioral cybersecurity, human factors, and modeling and simulation.

中文翻译：

---

审查和洞察网络安全的行为方面

网络攻击的故事正在成为一种例行公事，网络攻击者通过对网络的复杂攻击表现出新的意图。不幸的是，网络犯罪分子已经找到了有利可图的商业模式，他们利用了在线匿名性。网络防御者需要改善的严重情况。因此，范式转变对于当前技术和实践的有效性至关重要。由于大多数网络事件都是人为造成的，因此这种转变需要将研究扩展到未充分探索的领域，例如网络安全的行为方面。更重要的是关注社会和行为问题以改善当前状况。本文旨在对相关理论和原则进行回顾，