What is it about?

Phishing attacks, in which criminals lure Internet users to websites that impersonate legitimate sites, are occurring with increasing frequency and are causing considerable harm to victims. In this paper we describe the design and evaluation of an embedded training email system that teaches people about phishing during their normal use of email. We conducted lab experiments contrasting the effectiveness of standard security notices about phishing with two embedded training designs we developed. We found that embedded training works better than the current practice of sending security notices. We also derived sound design principles for embedded training systems.

Featured Image

Read the Original

This page is a summary of: Protecting people from phishing, April 2007, ACM (Association for Computing Machinery),
DOI: 10.1145/1240624.1240760.
You can read the full text:

Read

Contributors

The following have contributed to this page