No Cover Image

Journal article 46 views 6 downloads

How Good Are We at Detecting a Phishing Attack? Investigating the Evolving Phishing Attack Email and Why It Continues to Successfully Deceive Society

Fiona Carroll Orcid Logo, John Ayooluwa Adejobi, Reza Montasari Orcid Logo

SN Computer Science, Volume: 3, Issue: 2

Swansea University Author: Reza Montasari Orcid Logo

  • 61874.pdf

    PDF | Version of Record

    © The Author(s) 2022. This article is licensed under a Creative Commons Attribution 4.0 International License

    Download (962.4KB)

Abstract

Phishing attacks are on the increase. The fact that our ways of living, studying and working have drastically changed as a result of the COVID pandemic (i.e., almost everything being done online) has created many new cyber security concerns. In particular, with the move to remote working, the number...

Full description

Published in: SN Computer Science
ISSN: 2662-995X 2661-8907
Published: Springer Science and Business Media LLC 2022
Online Access: Check full text

URI: https://cronfa.swan.ac.uk/Record/cronfa61874
Tags: Add Tag
No Tags, Be the first to tag this record!
Abstract: Phishing attacks are on the increase. The fact that our ways of living, studying and working have drastically changed as a result of the COVID pandemic (i.e., almost everything being done online) has created many new cyber security concerns. In particular, with the move to remote working, the number of phishing emails threatening employees has increased. The 2020 Phishing Attack Landscape Report (Greathorn: 2020 Phishing attack landscape. https://info.greathorn.com/report-2020-phishing-attack-landscape/, 2020) highlights a sharp increase in the frequency of attempted phishing attacks. In this paper, we are interested in how the phishing email attack has evolved to this very threatening state. In detail, we explore the current phishing attack characteristics especially the growing challenges that have emerged as a result of the COVID-19 pandemic. The paper documents a study that presented test participants with five different categories of emails (including phishing and non phishing) . The findings from the study show that participants, generally, found it difficult to detect modern phishing email attacks. Saying that, participants were alert to the spelling mistakes of the older phishing email attacks, sensitive information being requested from them and any slight change to what they were normally used to from an email. Moreover, we have found that people were not confident, worried and often dissatisfied with the current technologies available to protect them against phishing emails. In terms of trust, these feelings alerted us to the increasing severity of the phishing attack situation and just how vulnerable society has become/ still is.
Keywords: Phishing email attack; COVID-19; Cyber security; Human factors
College: Faculty of Humanities and Social Sciences
Issue: 2