Sixteen years of phishing user studies: What have we learned?
Several previous studies have investigated user susceptibility to phishing attacks. A
thorough meta-analysis or systematic review is required to gain a better understanding of …
thorough meta-analysis or systematic review is required to gain a better understanding of …
Cognition in social engineering empirical research: a systematic literature review
The interdisciplinarity of the Social Engineering (SE) domain creates crucial challenges for
the development and advancement of empirical SE research, making it particularly difficult to …
the development and advancement of empirical SE research, making it particularly difficult to …
An investigation of phishing awareness and education over time: When and how to best remind users
Security awareness and education programmes are rolled out in more and more
organisations. However, their effectiveness over time and, correspondingly, appropriate …
organisations. However, their effectiveness over time and, correspondingly, appropriate …
Predicting susceptibility to social influence in phishing emails
K Parsons, M Butavicius, P Delfabbro, M Lillie - International Journal of …, 2019 - Elsevier
To reduce the threat caused by phishing attacks, it is vital to investigate why some phishing
attacks are successful, and why some people are more susceptible to them than others. To …
attacks are successful, and why some people are more susceptible to them than others. To …
Covid-19 and phishing: Effects of human emotions, behavior, and demographics on the success of phishing attempts during the pandemic
Phishing is an online scam where criminals trick users with various strategies, with the goal
of obtaining sensitive information or compromising accounts, systems, and/or other personal …
of obtaining sensitive information or compromising accounts, systems, and/or other personal …
Exploring role of moral disengagement and counterproductive work behaviours in information security awareness.
As security breaches in organisations are on the rise, developing an understanding of
factors enabling and preventing such breaches is crucial. Even though previous studies …
factors enabling and preventing such breaches is crucial. Even though previous studies …
Users really do respond to smishing
Text phish messages, referred to as Smishing (SMS+ phishing) is a type of social
engineering attack where fake text messages are created, and used to lure users into …
engineering attack where fake text messages are created, and used to lure users into …
When believing in technology leads to poor cyber security: Development of a trust in technical controls scale
M Butavicius, K Parsons, M Lillie, A McCormac… - Computers & …, 2020 - Elsevier
While technical controls can reduce vulnerabilities to cyber threats, no technology provides
absolute protection and we hypothesised that people may act less securely if they place …
absolute protection and we hypothesised that people may act less securely if they place …
Developing a measure of information seeking about phishing
EJ Williams, AN Joinson - Journal of Cybersecurity, 2020 - academic.oup.com
Phishing e-mails are fraudulent e-mails used to gain access to sensitive information or
secure computer systems. They persuade users to click on malicious links, download …
secure computer systems. They persuade users to click on malicious links, download …
Why They Ignore English Emails: The Challenges of {Non-Native} Speakers in Identifying Phishing Emails
Prior work in cybersecurity and risk management has shown that non-native speakers of the
language used in phishing emails are more susceptible to such attacks. Despite much …
language used in phishing emails are more susceptible to such attacks. Despite much …