{"title":"一所高等教育机构的网络钓鱼预防:以一所高等教育机构的学生为例研究","authors":"Eduardo Marques, C. Sousa","doi":"10.23919/CISTI58278.2023.10211824","DOIUrl":null,"url":null,"abstract":"Social Engineering attacks, in particular the phishing attack, have seen an increase and greater depth in the way users are approached to achieve their goals. Users of Higher Education Institutions are specific cases, and it is important to know their perception, in particular that of students about these actions. The use of controlled attacks has been widely used, if possible, on a regular basis, to know the reality of an organization and, in this way, ways of acting can be planned to better defend and prepare users for current and future engineering attacks. Social. This work sought, through this simulated attack approach and an awareness campaign, to assess the state of users in terms of awareness of phishing and to propose and evaluate preventive measures for its improvement. Among the results found, it is identified that the most vulnerable groups are younger students, and students from different areas of study do not present relevant differences in the perception of phishing. Furthermore, the use of simple documentation and information techniques for users did not significantly improve perception, making it necessary to explore new ways of preparing users for phishing.","PeriodicalId":121747,"journal":{"name":"2023 18th Iberian Conference on Information Systems and Technologies (CISTI)","volume":"37 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-06-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Phishing Preventing in one HEI : Case Study with Students in one Higher Education Institution\",\"authors\":\"Eduardo Marques, C. Sousa\",\"doi\":\"10.23919/CISTI58278.2023.10211824\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Social Engineering attacks, in particular the phishing attack, have seen an increase and greater depth in the way users are approached to achieve their goals. Users of Higher Education Institutions are specific cases, and it is important to know their perception, in particular that of students about these actions. The use of controlled attacks has been widely used, if possible, on a regular basis, to know the reality of an organization and, in this way, ways of acting can be planned to better defend and prepare users for current and future engineering attacks. Social. This work sought, through this simulated attack approach and an awareness campaign, to assess the state of users in terms of awareness of phishing and to propose and evaluate preventive measures for its improvement. Among the results found, it is identified that the most vulnerable groups are younger students, and students from different areas of study do not present relevant differences in the perception of phishing. Furthermore, the use of simple documentation and information techniques for users did not significantly improve perception, making it necessary to explore new ways of preparing users for phishing.\",\"PeriodicalId\":121747,\"journal\":{\"name\":\"2023 18th Iberian Conference on Information Systems and Technologies (CISTI)\",\"volume\":\"37 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-06-20\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2023 18th Iberian Conference on Information Systems and Technologies (CISTI)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.23919/CISTI58278.2023.10211824\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 18th Iberian Conference on Information Systems and Technologies (CISTI)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.23919/CISTI58278.2023.10211824","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Phishing Preventing in one HEI : Case Study with Students in one Higher Education Institution
Social Engineering attacks, in particular the phishing attack, have seen an increase and greater depth in the way users are approached to achieve their goals. Users of Higher Education Institutions are specific cases, and it is important to know their perception, in particular that of students about these actions. The use of controlled attacks has been widely used, if possible, on a regular basis, to know the reality of an organization and, in this way, ways of acting can be planned to better defend and prepare users for current and future engineering attacks. Social. This work sought, through this simulated attack approach and an awareness campaign, to assess the state of users in terms of awareness of phishing and to propose and evaluate preventive measures for its improvement. Among the results found, it is identified that the most vulnerable groups are younger students, and students from different areas of study do not present relevant differences in the perception of phishing. Furthermore, the use of simple documentation and information techniques for users did not significantly improve perception, making it necessary to explore new ways of preparing users for phishing.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
