[HTML][HTML] Learning from safety science: A way forward for studying cybersecurity incidents in organizations
In the aftermath of cybersecurity incidents within organizations, explanations of their causes
often revolve around isolated technical or human events such as an Advanced Persistent …
often revolve around isolated technical or human events such as an Advanced Persistent …
Shaken to the core: trust trajectories in the aftermaths of adverse cyber events
Purpose Adverse cyber events, like death and taxes, have become inevitable. They are an
increasingly common feature of organisational life. Their aftermaths are a critical and under …
increasingly common feature of organisational life. Their aftermaths are a critical and under …
Finding grace in responses to adverse cybersecurity incidents
Purpose The purpose of this study was to investigate the role of grace in the aftermaths of
adverse cybersecurity incidents. Adverse incidents are an inescapable fact of life in …
adverse cybersecurity incidents. Adverse incidents are an inescapable fact of life in …
Beyond fear and frustration-towards a holistic understanding of emotions in cybersecurity
A Von Preuschen, MC Schuhmacher… - … Symposium on Usable …, 2024 - usenix.org
Employees play a pivotal role for organizational cybersecurity, making understanding the
human factor in the context of cybersecurity a critical necessity. While much is known about …
human factor in the context of cybersecurity a critical necessity. While much is known about …
“taking out the trash”: Why security behavior change requires intentional forgetting
J Hielscher, A Kluge, U Menges… - Proceedings of the 2021 …, 2021 - dl.acm.org
Security awareness is big business–virtually every organization in the Western world
provides some form of awareness or training, mostly bought from external vendors …
provides some form of awareness or training, mostly bought from external vendors …
The Effects of Group Discussion and Role-playing Training on Self-efficacy, Support-seeking, and Reporting Phishing Emails: Evidence from a Mixed-design …
Organizations rely on phishing interventions to enhance employees' vigilance and safe
responses to phishing emails that bypass technical solutions. While various resources are …
responses to phishing emails that bypass technical solutions. While various resources are …
Why IT security needs therapy
U Menges, J Hielscher, A Buckmann, A Kluge… - … on Research in …, 2021 - Springer
Over the past decade, researchers investigating IT security from a socio-technical
perspective have identified the importance of trust and collaboration between different …
perspective have identified the importance of trust and collaboration between different …
The Mundane Art of Cybersecurity: Living with Insecure IT in Danish Small-and Medium-Sized Enterprises
Small-and medium-sized enterprises (SMEs) are an essential part of the global economy
and paramount to local communities and employment markets. They are also considered to …
and paramount to local communities and employment markets. They are also considered to …
How do you Feel about Cybersecurity?–A Literature Review on Emotions in Cybersecurity
A von Preuschen, V Zimmermann… - International …, 2023 - research-collection.ethz.ch
Despite the relevance of emotions in explaining human behavior, emotions have
traditionally been neglected in models explaining cybersecurity behavior. In recent years …
traditionally been neglected in models explaining cybersecurity behavior. In recent years …
Trust and vulnerability in the cybersecurity context
Cybersecurity attacks offer a pertinent context within which to examine the currently under-
explored dynamics of trust and distrust and their consequences for organisations and their …
explored dynamics of trust and distrust and their consequences for organisations and their …