Suspicion, Cognition, and Automaticity Model of Phishing Susceptibility

Vishwanath, Arun; Harrison, Brynne; Ng, Yu Jie

doi:10.1177/0093650215627483

Cited by 149 publications

(171 citation statements)

References 50 publications

Supporting

Mentioning

163

Contrasting

Order By: Relevance

“…Prior literature on email environment victimisation [22][23][24] has explored the effect of social network habits on predicting behaviour toward email phishing. In the virtual network setting, users tend to exhibit their trust by their degree of engagement in the network [25].…”

Section: Behaviour-related Attributesmentioning

confidence: 99%

User characteristics that influence judgment of social engineering attacks in social networks

Albladi

Weir

2018

Hum. Cent. Comput. Inf. Sci.

View full text Add to dashboard Cite

Social engineering is a growing source of information security concern. Exploits appear to evolve, with increasing levels of sophistication, in order to target multiple victims. Despite increased concern with this risk, there has been little research activity focused upon social engineering in the potentially rich hunting ground of social networks. In this setting, factors that influence users’ proficiency in threat detection need to be understood if we are to build a profile of susceptible users, develop suitable advice and training programs, and generally help address this issue for those individuals most likely to become targets of social engineering in social networks. To this end, the present study proposes and validates a user-centric framework based on four perspectives: socio-psychological, habitual, socio-emotional, and perceptual. Previous research tends to rely on selected aspects of these perspectives and has not combined them into a single model for a more cohesive understanding of user’s susceptibility.

show abstract

Section: Behaviour-related Attributesmentioning

confidence: 99%

User characteristics that influence judgment of social engineering attacks in social networks

Albladi

Weir

2018

Hum. Cent. Comput. Inf. Sci.

View full text Add to dashboard Cite

show abstract

“…These are personality traits that tend to be fairly stable independent of training (Parrish, Bailey, & Courtney, 2009;Vishwanath, Harrison, & Ng, 2016). Knowing an individual user's scores on a personality battery, training and technological interventions could adjust to optimize ratios of accepted and rejected messages, and on what bases.…”

Section: The Rise Of Information Systems and Information Theftmentioning

confidence: 99%

“…Parrish, Bailey, and Courtney (2009) proposed a framework using the Big-Five personality traits to explain why some people are more susceptible than others to phishing attacks. Other authors such as Vishwanath, Harrison, and Ng (2016) note that relatively suspicious individuals bias their message classification against compliance with the sorts of requests that phishing attack messages tend to include, such as to follow a link.…”

Section: Scenariomentioning

confidence: 99%

Exploratory lens model of decision-making in a potential phishing attack scenario

Tamborello¹,

Greene²

2017

View full text Add to dashboard Cite

“…However, certain populations, such as police officers, and certain contexts, such as sales environments, have been linked with a greater degree of suspicion (DePaulo & DePaulo, 1989;Garrido, Masip & Herrero, 2004). People's awareness of online risk, their degree of technical understanding and their perception of the potential threat are all likely to impact on trust decisions regarding online communications (Vishwanath, Harrison & Ng, 2016).…”

Section: Individual Differences In Susceptibilitymentioning

confidence: 99%

“…Frameworks for understanding differences in susceptibility to influence are currently being developed and expanded (e.g., Vishwanath et al, 2016;Wright & Marrett, 2014). However, these have focused predominantly on dispositional factors, such as personality, or experiential factors, such as knowledge and habits, and do not currently account for potential interactions with wider context or state-induced factors such as emotional state, cognitive capacity or relative position within wider technical, organisational and social systems.…”

Section: The Relationship With Contextmentioning

confidence: 99%

Fusing system design and social science to reduce susceptibility to online influence

Williams

Joinson

2016

Electronic Workshops in Computing

View full text Add to dashboard Cite

Spear phishing and other forms of online scams are having an increasing impact on society. This paper overviews our current work exploring individual differences in susceptibility to malicious influence online from a social science perspective and asks how fusion with adaptive and collaborative system approaches could be harnessed to reduce differential susceptibility across individuals via system design processes. Social influence, individual differences, online scams, phishing, human-computer interaction

show abstract

Suspicion, Cognition, and Automaticity Model of Phishing Susceptibility

Cited by 149 publications

References 50 publications

User characteristics that influence judgment of social engineering attacks in social networks

User characteristics that influence judgment of social engineering attacks in social networks

Exploratory lens model of decision-making in a potential phishing attack scenario

Fusing system design and social science to reduce susceptibility to online influence

Contact Info

Product

Resources

About