an investigation of phishing awareness and education over
play

An investigation of phishing awareness and education over time: When - PowerPoint PPT Presentation

Jan 24, 2023 •103 likes •175 views

An investigation of phishing awareness and education over time: When and how to best remind users? Benjamin Reinheimer, Lukas Aldag, Peter Mayer, Mattia Mossano, Reyhan Duezguen, Bettina Lofthouse, Tatiana von Landesberger, Melanie Volkamer

  1. An investigation of phishing awareness and education over time: When and how to best remind users? Benjamin Reinheimer, Lukas Aldag, Peter Mayer, Mattia Mossano, Reyhan Duezguen, Bettina Lofthouse, Tatiana von Landesberger, Melanie Volkamer COMPETENCE CENTER FOR APPLIED SECURITY TECHNOLOGY (KASTEL) RESEARCH GROUP SECURITY • USABILITY • SOCIETY (SECUSO) Feel free to add picture here 1 www.kit.edu KIT – The Research University in the Helmholtz Association

  2. Contribution Systematically measure retention Longitudinal field-study Reminder measures 1. 3. 4. 2. SOUPS 2020, Benjamin Reinheimer 21/07/2020 Research Group Security • Usability • Society (SECUSO)

  3. About the setting State Office for Geoinformation and State Survey (SOGSS) 2,200 employees Optional participation Mandatory tutorial on phishing in the study: 409 using a train-the-trainer approach participants Canova/Volkamer/Bergmann/Reinheimer: NoPhish app evaluation: lab and retention study. In USEC 2015 Neumann/Reinheimer/Volkamer: Don’t be deceived: the message might be fake. In TrutBus2017 Stockhardt/ Reinheimer/Volkamer/Mayer/Kunz/Rack/Lehmann: Teaching phishing-security: which way is best?. In IFIP Sec 2016 … SOUPS 2020, Benjamin Reinheimer 21/07/2020 Research Group Security • Usability • Society (SECUSO)

  4. Four Reminder Measures Short-Text Text Video Same content … (there is even more text) Interactive Email SOUPS 2020, Benjamin Reinheimer 21/07/2020 Research Group Security • Usability • Society (SECUSO)

  5. Study Design and Results Judge 20 email Study details for Control Questions & screenshots in role play Thanks random order SOUPS 2020, Benjamin Reinheimer 21/07/2020 Research Group Security • Usability • Society (SECUSO)

  6. Summary Systematically measure retention Longitudinal field-study Reminder necessary between 4 and 6 months Reminder measures 409 out of 2,200 employees Thanks for listening and thanks to my co-authors For further questions feel free to contact me via Video and Interactive Email Benjamin.Reinheimer@kit.edu example most effective https://s.kit.edu/soups2020 SOUPS 2020, Benjamin Reinheimer 21/07/2020 Research Group Security • Usability • Society (SECUSO)

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Retreat IT Presentation Rick OToole Phishing Awareness What is Phishing? Phishing is the

Retreat IT Presentation Rick OToole Phishing Awareness What is Phishing? Phishing is the

School of Fin ine Arts Retreat IT Presentation Rick OToole Phishing Awareness What is Phishing? Phishing is the attempt to obtain personal information such as passwords and logins for malicious purposes. By appearing to be legitimate the

255 views • 13 slides
Tech Briefing Email Security (Phishing) VPN File Storage Phishing Awareness What is Phishing?

Tech Briefing Email Security (Phishing) VPN File Storage Phishing Awareness What is Phishing?

Tech Briefing Email Security (Phishing) VPN File Storage Phishing Awareness What is Phishing? Phishing email messages, websites, and phone calls are designed to steal money or sensitive information. Cybercriminals can do this by installing

264 views • 24 slides
PHISHI PHISHING NG AWARENESS AWARENESS Feedback on a banks strategy PTS 2019 TABLE OF

PHISHI PHISHING NG AWARENESS AWARENESS Feedback on a banks strategy PTS 2019 TABLE OF

0 2 . 0 7 . 2 0 1 9 T L P : W H I T E P A S S T H E S A L T PHISHI PHISHING NG AWARENESS AWARENESS Feedback on a banks strategy PTS 2019 TABLE OF CONTENT 1. PRESENTATION 2. SWORDPHISH GENESIS 3. TOOL OVERVIEW 4. USAGE AT SOCIT

296 views • 28 slides
Federal Information Systems Security Education Association Spear Phishing Agenda Definition

Federal Information Systems Security Education Association Spear Phishing Agenda Definition

Federal Information Systems Security Education Association Spear Phishing Agenda Definition of spear phishing Why is spear phishing so valuable to attackers Spear phishing defenses / countermeasures Training concepts and delivery

434 views • 8 slides
The Art of Phishing : What you should know Arvind Vishwakarma 05/24/2019 Agenda 1. Phishing

The Art of Phishing : What you should know Arvind Vishwakarma 05/24/2019 Agenda 1. Phishing

The Art of Phishing : What you should know Arvind Vishwakarma 05/24/2019 Agenda 1. Phishing In a Nutshell 2. Phishing Types & Techniques 3. Phishing Stats & Modern Trends 4. Case-Study 5. Stay Safe 2 Speaker ABOUT ME

478 views • 24 slides
Phishing Fishing or Phishing? Definition Phishing: an attempt to trick victims into sharing

Phishing Fishing or Phishing? Definition Phishing: an attempt to trick victims into sharing

Phishing Fishing or Phishing? Definition Phishing: an attempt to trick victims into sharing sensitive information such as passwords, usernames, and credit card details for malicious reasons. Phishing can be in the form of emails, social

530 views • 20 slides
KnowBe4 is the worlds largest security awareness training and simulated phishing platform

KnowBe4 is the worlds largest security awareness training and simulated phishing platform

KnowBe4 is the worlds largest security awareness training and simulated phishing platform that helps you manage the ongoing problem of social engineering. About Us Over 28,000 The worlds largest integrated Security Awareness

977 views • 16 slides
VECTOR Table of Content Bio What phishing is? Types of Phishing Anatomy of

VECTOR Table of Content Bio What phishing is? Types of Phishing Anatomy of

THE STATE OF PHISHING ATTACK VECTOR Table of Content Bio What phishing is? Types of Phishing Anatomy of Phishing Counter Measures Reports on Phishing Isaac K. Acheampong Facilities Manager BSc IT, Dip. IT, Sec+ STATE OF

711 views • 34 slides
PHISHING IN DEPTH (ATTACKS & MITIGATIONS) Table of Content 1.0 Introduction 2.0 Phishing

PHISHING IN DEPTH (ATTACKS & MITIGATIONS) Table of Content 1.0 Introduction 2.0 Phishing

PHISHING IN DEPTH (ATTACKS & MITIGATIONS) Table of Content 1.0 Introduction 2.0 Phishing 3.0 Phishing kit 4.0 Types of Phishing 5.0 Avoidance Techniques 6.0 Effect of Phishing on Businesses 7.0 Demos & Practical INTRODUCTION

565 views • 27 slides
Fraud Awareness May 2018 Unrestricted Prevalent Frauds types 1. Social Engineering Phishing,

Fraud Awareness May 2018 Unrestricted Prevalent Frauds types 1. Social Engineering Phishing,

Fraud Awareness May 2018 Unrestricted Prevalent Frauds types 1. Social Engineering Phishing, Vishing 2. Payment Fraud CEO Impersonation, Invoice Fraud. 3. Online / Cyber Fraud Malware & Trojans, Security Software, Social

448 views • 13 slides
InfoSec Training and Awareness Program Training & Employee InfoSec Yearly In-person

InfoSec Training and Awareness Program Training & Employee InfoSec Yearly In-person

InfoSec Training and Awareness Program Training & Employee InfoSec Yearly In-person Whitepapers, InfoSec Spear Awareness Comms Intranet Site Security Security Brochures E-mailbox Phishing Awareness Awareness Exercises

389 views • 36 slides
Training employees to recognise and avoid phishing threats Agenda Today, we will be exploring:

Training employees to recognise and avoid phishing threats Agenda Today, we will be exploring:

Training employees to recognise and avoid phishing threats Agenda Today, we will be exploring: What is phishing? How phishing can damage a business What are the difgerent types of phishing? How to spot a phishing email What to do if

159 views • 12 slides
of Sandboxed Phishing Kits Summary Motivation Sandboxed phishing kits Implementation Results

of Sandboxed Phishing Kits Summary Motivation Sandboxed phishing kits Implementation Results

PhishEye: Xiao Han Nizar Kheir Live Monitoring Davide Balzarotti of Sandboxed Phishing Kits Summary Motivation Sandboxed phishing kits Implementation Results [APWG Phishing Activity Trends Report 2 nd Quarter 2016] All time high record

921 views • 59 slides
INFORMATION SECURITY AWARENESS Information Security Education & Awareness Team C-DAC

INFORMATION SECURITY AWARENESS Information Security Education & Awareness Team C-DAC

Leading a Secured Digital Life. INFORMATION SECURITY AWARENESS Information Security Education & Awareness Team C-DAC Hyderabad keeping yourself and your family safe in a tech driven world Toll Free No : 1800 425 6235 Ministry of

291 views • 10 slides
INFORMATION SECURITY AWARENESS Information Security Education & Awareness Team C-DAC

INFORMATION SECURITY AWARENESS Information Security Education & Awareness Team C-DAC

Leading a Secured Digital Life. INFORMATION SECURITY AWARENESS Information Security Education & Awareness Team C-DAC Hyderabad keeping yourself and your family safe in a tech driven world Toll Free No : 1800 425 6235 Ministry of

460 views • 8 slides
Anti-Phishing Security Strategy Angelo P. E. Rosiello Agenda 1. Brief introduction to phishing

Anti-Phishing Security Strategy Angelo P. E. Rosiello Agenda 1. Brief introduction to phishing

Anti-Phishing Security Strategy Angelo P. E. Rosiello Agenda 1. Brief introduction to phishing 2. Strategic defense techniques 3. A new client based solution: DOMAntiPhish 4. Conclusions Nature of Phishing Statistics from the Anti

536 views • 31 slides
Calculating Correct Compilers Patrick Bahr 1 Graham Hutton 2 1 University of Copenhagen,

Calculating Correct Compilers Patrick Bahr 1 Graham Hutton 2 1 University of Copenhagen,

u n i v e r s i t y o f c o p e n h a g e n d e p a r t m e n t o f c o m p u t e r s c i e n c e Faculty of Science Calculating Correct Compilers Patrick Bahr 1 Graham Hutton 2 1 University of Copenhagen, Department of Computer Science

524 views • 24 slides
NMRG Status Report 2006 J urgen Sch onw alder j.schoenwaelder@iu-bremen.de

NMRG Status Report 2006 J urgen Sch onw alder j.schoenwaelder@iu-bremen.de

NMRG Status Report 2006 J urgen Sch onw alder j.schoenwaelder@iu-bremen.de International University Bremen Campus Ring 1 28725 Bremen, Germany http://www.ibr.cs.tu-bs.de/projects/nmrg/ slides.tex NMRG Status Report 2006

470 views • 10 slides
Typing-by-encoding A reductionistic approach to building type systems Fran cois Pottier

Typing-by-encoding A reductionistic approach to building type systems Fran cois Pottier

Typing-by-encoding A reductionistic approach to building type systems Fran cois Pottier Francois.Pottier@inria.fr Fran cois Pottier July 2000 Overview What is typing-by-encoding? Encoding exceptions into sums

653 views • 23 slides
Fourth Workshop on Dependable and Secure Nanocomputing Organizers: Jean Arlat, LAAS- CNRS

Fourth Workshop on Dependable and Secure Nanocomputing Organizers: Jean Arlat, LAAS- CNRS

The 40th Annual IEEE/IFIP International Conference on Dependable Systems and Networks June 28-July 1, 2010 Chicago, IL, USA Fourth Workshop on Dependable and Secure Nanocomputing Organizers: Jean Arlat, LAAS- CNRS Cristian

198 views • 9 slides
Towards a formally verified obfuscating compiler Sandrine Blazy joint work with Roberto Giacobazzi

Towards a formally verified obfuscating compiler Sandrine Blazy joint work with Roberto Giacobazzi

Towards a formally verified obfuscating compiler Sandrine Blazy joint work with Roberto Giacobazzi and Alix Trieu IFIP WG 1.9/2.15, 2015-07-16 1 Background: verifying a compiler Compiler + proof that the compiler does not introduce bugs

553 views • 24 slides
Zooms for Effects Dominique Duval Udine, September 11., 2009 IFIP W.G.1.3. meeting Outline

Zooms for Effects Dominique Duval Udine, September 11., 2009 IFIP W.G.1.3. meeting Outline

Zooms for Effects Dominique Duval Udine, September 11., 2009 IFIP W.G.1.3. meeting Outline Introduction Diagrammatic logics Parameterization Sequential product Conclusion Motivations Wanted. A framework for the semantics of effects.

599 views • 30 slides
How cryptographic benchmarking goes wrong Daniel J. Bernstein Thanks to NIST 60NANB12D261 for

How cryptographic benchmarking goes wrong Daniel J. Bernstein Thanks to NIST 60NANB12D261 for

1 How cryptographic benchmarking goes wrong Daniel J. Bernstein Thanks to NIST 60NANB12D261 for funding this work, and for not reviewing these slides in advance. PRESERVE, ending 2015.06.30, was a European project Preparing Secure

491 views • 32 slides
Distance Bounding for RFID Prof. Gildas Avoine Universit e catholique de Louvain, Belgium

Distance Bounding for RFID Prof. Gildas Avoine Universit e catholique de Louvain, Belgium

Distance Bounding for RFID Prof. Gildas Avoine Universit e catholique de Louvain, Belgium Information Security Group SUMMARY Relay Attacks Distance Bounding Protocols Discussion RELAY ATTACKS Relay Attacks Distance Bounding Protocols

330 views • 28 slides

More recommend