Cargando…
“Alexa, What’s a Phishing Email?”: Training users to spot phishing emails using a voice assistant
This paper reports the findings from an empirical study investigating the effectiveness of using intelligent voice assistants, Amazon Alexa in our case, to deliver a phishing training to users. Because intelligent voice assistants can hardly utilize visual cues but provide for convenient interaction...
| Autores principales: | , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Springer International Publishing
2022
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9685029/ https://www.ncbi.nlm.nih.gov/pubmed/36466991 http://dx.doi.org/10.1186/s13635-022-00133-w |
| _version_ | 1784835416127438848 |
|---|---|
| author | Sharevski, Filipo Jachim, Peter |
| author_facet | Sharevski, Filipo Jachim, Peter |
| author_sort | Sharevski, Filipo |
| collection | PubMed |
| description | This paper reports the findings from an empirical study investigating the effectiveness of using intelligent voice assistants, Amazon Alexa in our case, to deliver a phishing training to users. Because intelligent voice assistants can hardly utilize visual cues but provide for convenient interaction with users, we developed an interaction-based phishing training focused on the principles of persuasion with examples on how to look for them in phishing emails. To test the effectiveness of this training, we conducted a between-subject study where 120 participants were randomly assigned in three groups: no training, interaction-based training with Alexa, and a facts-and-advice training and assessed a vignette of 28 emails. The results show that the participants in the interaction-based group statistically outperformed the others when detecting phishing emails that employed the following persuasion principles (and/or combinations of): authority, authority/scarcity, commitment, commitment/liking, and scarcity/liking. The paper discusses the implication of this result for future phishing training and anti-phishing efforts. |
| format | Online Article Text |
| id | pubmed-9685029 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2022 |
| publisher | Springer International Publishing |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-96850292022-11-28 “Alexa, What’s a Phishing Email?”: Training users to spot phishing emails using a voice assistant Sharevski, Filipo Jachim, Peter EURASIP J Inf Secur Research This paper reports the findings from an empirical study investigating the effectiveness of using intelligent voice assistants, Amazon Alexa in our case, to deliver a phishing training to users. Because intelligent voice assistants can hardly utilize visual cues but provide for convenient interaction with users, we developed an interaction-based phishing training focused on the principles of persuasion with examples on how to look for them in phishing emails. To test the effectiveness of this training, we conducted a between-subject study where 120 participants were randomly assigned in three groups: no training, interaction-based training with Alexa, and a facts-and-advice training and assessed a vignette of 28 emails. The results show that the participants in the interaction-based group statistically outperformed the others when detecting phishing emails that employed the following persuasion principles (and/or combinations of): authority, authority/scarcity, commitment, commitment/liking, and scarcity/liking. The paper discusses the implication of this result for future phishing training and anti-phishing efforts. Springer International Publishing 2022-11-22 2022 /pmc/articles/PMC9685029/ /pubmed/36466991 http://dx.doi.org/10.1186/s13635-022-00133-w Text en © The Author(s) 2022 https://creativecommons.org/licenses/by/4.0/Open AccessThis article is licensed under a Creative Commons Attribution 4.0 International License, which permits use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons licence, and indicate if changes were made. The images or other third party material in this article are included in the article's Creative Commons licence, unless indicated otherwise in a credit line to the material. If material is not included in the article's Creative Commons licence and your intended use is not permitted by statutory regulation or exceeds the permitted use, you will need to obtain permission directly from the copyright holder. To view a copy of this licence, visit http://creativecommons.org/licenses/by/4.0/ (https://creativecommons.org/licenses/by/4.0/) . |
| spellingShingle | Research Sharevski, Filipo Jachim, Peter “Alexa, What’s a Phishing Email?”: Training users to spot phishing emails using a voice assistant |
| title | “Alexa, What’s a Phishing Email?”: Training users to spot phishing emails using a voice assistant |
| title_full | “Alexa, What’s a Phishing Email?”: Training users to spot phishing emails using a voice assistant |
| title_fullStr | “Alexa, What’s a Phishing Email?”: Training users to spot phishing emails using a voice assistant |
| title_full_unstemmed | “Alexa, What’s a Phishing Email?”: Training users to spot phishing emails using a voice assistant |
| title_short | “Alexa, What’s a Phishing Email?”: Training users to spot phishing emails using a voice assistant |
| title_sort | “alexa, what’s a phishing email?”: training users to spot phishing emails using a voice assistant |
| topic | Research |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9685029/ https://www.ncbi.nlm.nih.gov/pubmed/36466991 http://dx.doi.org/10.1186/s13635-022-00133-w |
| work_keys_str_mv | AT sharevskifilipo alexawhatsaphishingemailtraininguserstospotphishingemailsusingavoiceassistant AT jachimpeter alexawhatsaphishingemailtraininguserstospotphishingemailsusingavoiceassistant |