Eyes on the Phish(er): Towards Understanding Users' Email Processing Pattern and Mental Models in Phishing Detection

arXiv - CS - Human-Computer Interaction Pub Date : 2024-09-12 DOI:arxiv-2409.07717

Sijie Zhuo, Robert Biddle, Jared Daniel Recomendable, Giovanni Russello, Danielle Lottridge

{"title":"Eyes on the Phish(er): Towards Understanding Users' Email Processing Pattern and Mental Models in Phishing Detection","authors":"Sijie Zhuo, Robert Biddle, Jared Daniel Recomendable, Giovanni Russello, Danielle Lottridge","doi":"arxiv-2409.07717","DOIUrl":null,"url":null,"abstract":"Phishing emails typically masquerade themselves as reputable identities to\ntrick people into providing sensitive information and credentials. Despite\nadvancements in cybersecurity, attackers continuously adapt, posing ongoing\nthreats to individuals and organisations. While email users are the last line\nof defence, they are not always well-prepared to detect phishing emails. This\nstudy examines how workload affects susceptibility to phishing, using\neye-tracking technology to observe participants' reading patterns and\ninteractions with tailored phishing emails. Incorporating both quantitative and\nqualitative analysis, we investigate users' attention to two phishing\nindicators, email sender and hyperlink URLs, and their reasons for assessing\nthe trustworthiness of emails and falling for phishing emails. Our results\nprovide concrete evidence that attention to the email sender can reduce\nphishing susceptibility. While we found no evidence that attention to the\nactual URL in the browser influences phishing detection, attention to the text\nmasking links can increase phishing susceptibility. We also highlight how email\nrelevance, familiarity, and visual presentation impact first impressions of\nemail trustworthiness and phishing susceptibility.","PeriodicalId":501541,"journal":{"name":"arXiv - CS - Human-Computer Interaction","volume":"49 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2024-09-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"arXiv - CS - Human-Computer Interaction","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/arxiv-2409.07717","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Phishing emails typically masquerade themselves as reputable identities to trick people into providing sensitive information and credentials. Despite advancements in cybersecurity, attackers continuously adapt, posing ongoing threats to individuals and organisations. While email users are the last line of defence, they are not always well-prepared to detect phishing emails. This study examines how workload affects susceptibility to phishing, using eye-tracking technology to observe participants' reading patterns and interactions with tailored phishing emails. Incorporating both quantitative and qualitative analysis, we investigate users' attention to two phishing indicators, email sender and hyperlink URLs, and their reasons for assessing the trustworthiness of emails and falling for phishing emails. Our results provide concrete evidence that attention to the email sender can reduce phishing susceptibility. While we found no evidence that attention to the actual URL in the browser influences phishing detection, attention to the text masking links can increase phishing susceptibility. We also highlight how email relevance, familiarity, and visual presentation impact first impressions of email trustworthiness and phishing susceptibility.

查看原文本刊更多论文

盯着 "钓鱼网站"：了解用户的电子邮件处理模式和网络钓鱼检测中的心理模型

网络钓鱼电子邮件通常伪装成信誉良好的身份，诱使人们提供敏感信息和凭证。尽管网络安全取得了进步，但攻击者仍在不断调整，对个人和组织造成持续威胁。虽然电子邮件用户是最后一道防线，但他们并不总是做好了检测网络钓鱼电子邮件的充分准备。本研究使用眼睛跟踪技术来观察参与者的阅读模式以及与定制的网络钓鱼电子邮件的互动，从而研究工作量如何影响对网络钓鱼的易感性。通过定量和定性分析，我们调查了用户对电子邮件发件人和超链接 URL 这两个网络钓鱼指标的关注程度，以及他们评估电子邮件可信度和上当受骗的原因。我们的研究结果提供了具体证据，证明对电子邮件发件人的关注可以降低网络钓鱼的易感性。虽然我们没有发现任何证据表明关注浏览器中的实际 URL 会影响网络钓鱼的检测，但关注文本屏蔽链接会增加网络钓鱼的易感性。我们还强调了电子邮件的相关性、熟悉程度和视觉呈现如何影响对电子邮件可信度的第一印象和网络钓鱼的易感性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

arXiv - CS - Human-Computer Interaction

自引率

0.00%

发文量