对鱼叉式网络钓鱼电子邮件的易感性：互联网用户人口统计学特征和电子邮件内容的影响。

Susceptibility to Spear-Phishing Emails: Effects of Internet User Demographics and Email Content.

作者信息

Lin Tian, Capecci Daniel E, Ellis Donovan M, Rocha Harold A, Dommaraju Sandeep, Oliveira Daniela S, Ebner Natalie C

机构信息

Department of Psychology, University of Florida, Gainesville, Florida, U. S. A.

Department of Electrical and Computer Engineering, University of Florida, Gainesville, Florida, U. S. A.

出版信息

ACM Trans Comput Hum Interact. 2019 Sep;26(5). doi: 10.1145/3336141.

DOI:10.1145/3336141

PMID:32508486

原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC7274040/

Abstract

Phishing is fundamental to cyber attacks. This research determined the effect of Internet user age and email content such as weapons of influence (persuasive techniques that attackers can use to lure individuals to fall for an attack) and life domains (a specific topic or aspect of an individual's life that attackers can focus an emails on) on spear-phishing (targeted phishing) susceptibility. One-hundred young and 58 older users received, without their knowledge, daily simulated phishing emails over 21 days. A browser plugin recorded their clicking on links in the emails as an indicator of their susceptibility. Forty-three percent of users fell for the simulated phishing emails, with older women showing the highest susceptibility. While susceptibility in young users declined across the study, susceptibility in older users remained stable. The relative effectiveness of the attacks differed by weapons of influence and life domains with age-group variability. In addition, older compared to young users reported lower susceptibility awareness. These findings support effects of Internet user demographics and email content on susceptibility to phishing and emphasize the need for personalization of the next generation of security solutions.

摘要

网络钓鱼是网络攻击的基础。本研究确定了互联网用户年龄以及电子邮件内容（如影响手段——攻击者可用于诱使个人陷入攻击的说服技巧）和生活领域（攻击者可在电子邮件中聚焦的个人生活的特定主题或方面）对鱼叉式网络钓鱼（针对性网络钓鱼）易感性的影响。100名年轻用户和58名年长用户在不知情的情况下，在21天内每天收到模拟网络钓鱼电子邮件。一个浏览器插件记录他们点击电子邮件中的链接情况，以此作为他们易感性的指标。43%的用户落入模拟网络钓鱼电子邮件的陷阱，其中老年女性的易感性最高。在整个研究过程中，年轻用户的易感性下降，而老年用户的易感性保持稳定。攻击的相对有效性因影响手段和生活领域以及年龄组差异而有所不同。此外，与年轻用户相比，老年用户报告的易感性意识较低。这些发现支持了互联网用户人口统计学特征和电子邮件内容对网络钓鱼易感性的影响，并强调了下一代安全解决方案个性化的必要性。

相似文献

Susceptibility to Spear-Phishing Emails: Effects of Internet User Demographics and Email Content.对鱼叉式网络钓鱼电子邮件的易感性：互联网用户人口统计学特征和电子邮件内容的影响。

ACM Trans Comput Hum Interact. 2019 Sep;26(5). doi: 10.1145/3336141.

Personalized persuasion: Quantifying susceptibility to information exploitation in spear-phishing attacks.个性化说服：量化鱼叉式网络钓鱼攻击中信息利用的易感性。

Appl Ergon. 2023 Apr;108:103908. doi: 10.1016/j.apergo.2022.103908. Epub 2022 Nov 17.

Assessment of Employee Susceptibility to Phishing Attacks at US Health Care Institutions.美国医疗机构中员工易受网络钓鱼攻击的评估。

JAMA Netw Open. 2019 Mar 1;2(3):e190393. doi: 10.1001/jamanetworkopen.2019.0393.

Creative Persuasion: A Study on Adversarial Behaviors and Strategies in Phishing Attacks.创造性说服：网络钓鱼攻击中的对抗行为与策略研究

Front Psychol. 2018 Feb 21;9:135. doi: 10.3389/fpsyg.2018.00135. eCollection 2018.

Uncovering Susceptibility Risk to Online Deception in Aging.揭示老龄化人群在网络欺骗中的易感性风险

J Gerontol B Psychol Sci Soc Sci. 2020 Feb 14;75(3):522-533. doi: 10.1093/geronb/gby036.

So Many Phish, So Little Time: Exploring Email Task Factors and Phishing Susceptibility.这么多网络钓鱼，时间太少了：探索电子邮件任务因素和网络钓鱼易感性。

Hum Factors. 2022 Dec;64(8):1379-1403. doi: 10.1177/0018720821999174. Epub 2021 Apr 9.

Understanding Phishing Email Processing and Perceived Trustworthiness Through Eye Tracking.通过眼动追踪理解网络钓鱼邮件处理与感知可信度

Front Psychol. 2020 Jul 28;11:1756. doi: 10.3389/fpsyg.2020.01756. eCollection 2020.

Effectiveness of and user preferences for security awareness training methodologies.安全意识培训方法的有效性及用户偏好

Heliyon. 2019 Jun 28;5(6):e02010. doi: 10.1016/j.heliyon.2019.e02010. eCollection 2019 Jun.

An intelligent cyber security phishing detection system using deep learning techniques.一种使用深度学习技术的智能网络安全网络钓鱼检测系统。

Cluster Comput. 2022;25(6):3819-3828. doi: 10.1007/s10586-022-03604-4. Epub 2022 May 14.

How Good Are We at Detecting a Phishing Attack? Investigating the Evolving Phishing Attack Email and Why It Continues to Successfully Deceive Society.我们在检测网络钓鱼攻击方面有多出色？调查不断演变的网络钓鱼攻击电子邮件及其持续成功欺骗社会的原因。

SN Comput Sci. 2022;3(2):170. doi: 10.1007/s42979-022-01069-1. Epub 2022 Feb 23.

引用本文的文献

Cybercrime victimisation among older adults: A probability sample survey in England and Wales.老年人网络犯罪受害情况：英格兰和威尔士的概率抽样调查

PLoS One. 2024 Dec 18;19(12):e0314380. doi: 10.1371/journal.pone.0314380. eCollection 2024.

Phishing vulnerability compounded by older age, apolipoprotein E e4 genotype, and lower cognition.网络钓鱼漏洞因年龄较大、载脂蛋白E e4基因型和认知能力较低而加剧。

PNAS Nexus. 2024 Aug 1;3(8):pgae296. doi: 10.1093/pnasnexus/pgae296. eCollection 2024 Aug.

New directions for studying the aging social-cognitive brain.研究老龄化社会认知大脑的新方向。

Curr Opin Psychol. 2024 Apr;56:101768. doi: 10.1016/j.copsyc.2023.101768. Epub 2023 Nov 29.

Financial Fraud and Deception in Aging.老年群体中的金融欺诈与欺骗行为

Adv Geriatr Med Res. 2023;5(3). doi: 10.20900/agmr20230007. Epub 2023 Sep 11.

Novel methods for assessment of vulnerability to financial exploitation (FE).评估金融剥削（FE）易感性的新方法。

J Elder Abuse Negl. 2023 Aug-Oct;35(4-5):151-173. doi: 10.1080/08946566.2023.2281672. Epub 2023 Dec 10.

The development of phishing during the COVID-19 pandemic: An analysis of over 1100 targeted domains.新冠疫情期间网络钓鱼的发展：对1100多个目标域名的分析

Comput Secur. 2023 May;128:103158. doi: 10.1016/j.cose.2023.103158. Epub 2023 Feb 25.

"Alexa, What's a Phishing Email?": Training users to spot phishing emails using a voice assistant.“Alexa，什么是网络钓鱼邮件？”：使用语音助手训练用户识别网络钓鱼邮件。

EURASIP J Inf Secur. 2022;2022(1):7. doi: 10.1186/s13635-022-00133-w. Epub 2022 Nov 22.

Association between internet use and successful aging of older Chinese women: a cross-sectional study.互联网使用与中国老年女性成功老龄化的关系：一项横断面研究。

BMC Geriatr. 2022 Jun 28;22(1):536. doi: 10.1186/s12877-022-03199-w.

Research trends in cybercrime victimization during 2010-2020: a bibliometric analysis.2010 - 2020年网络犯罪受害情况的研究趋势：文献计量分析

SN Soc Sci. 2022;2(1):4. doi: 10.1007/s43545-021-00305-4. Epub 2022 Jan 6.

The role of analytical reasoning and source credibility on the evaluation of real and fake full-length news articles.分析推理和来源可信度对真实和虚假完整新闻文章评估的作用。

Cogn Res Princ Implic. 2021 Mar 31;6(1):24. doi: 10.1186/s41235-021-00292-3.

本文引用的文献

Empirical Analysis of Weapons of Influence, Life Domains, and Demographic-Targeting in Modern Spam - An Age-Comparative Perspective.现代垃圾邮件中影响力手段、生活领域及人口统计学定位的实证分析——一个年龄比较视角

Crime Sci. 2019;8. doi: 10.1186/s40163-019-0098-8. Epub 2019 Apr 1.

Email fraud: The search for psychological predictors of susceptibility.电子邮件欺诈：易感性的心理预测因子研究。

PLoS One. 2019 Jan 16;14(1):e0209684. doi: 10.1371/journal.pone.0209684. eCollection 2019.

Credulity rather than general trust may increase vulnerability to fraud in older adults: a moderated mediation model.轻信而非普遍信任可能会增加老年人易受欺诈的脆弱性：一个有调节的中介模型。

J Elder Abuse Negl. 2019 Mar-May;31(2):146-162. doi: 10.1080/08946566.2018.1564105. Epub 2019 Jan 7.

Uncovering Susceptibility Risk to Online Deception in Aging.揭示老龄化人群在网络欺骗中的易感性风险

J Gerontol B Psychol Sci Soc Sci. 2020 Feb 14;75(3):522-533. doi: 10.1093/geronb/gby036.

Do You Love Me? Psychological Characteristics of Romance Scam Victims.你爱我吗？恋爱诈骗受害者的心理特征。

Cyberpsychol Behav Soc Netw. 2018 Feb;21(2):105-109. doi: 10.1089/cyber.2016.0729. Epub 2017 Jun 28.

How the twain can meet: Prospect theory and models of heuristics in risky choice.二者如何结合：前景理论与风险选择中的启发式模型

Cogn Psychol. 2017 Mar;93:44-73. doi: 10.1016/j.cogpsych.2017.01.001. Epub 2017 Feb 9.

The Older Adult Positivity Effect in Evaluations of Trustworthiness: Emotion Regulation or Cognitive Capacity?老年人在可信度评估中的积极效应：情绪调节还是认知能力？

PLoS One. 2017 Jan 6;12(1):e0169823. doi: 10.1371/journal.pone.0169823. eCollection 2017.

Cognitive, social, and neural determinants of diminished decision-making and financial exploitation risk in aging and dementia: A review and new model.衰老和痴呆症中决策能力下降及金融剥削风险的认知、社会和神经决定因素：综述与新模型

J Elder Abuse Negl. 2016 Aug-Dec;28(4-5):320-344. doi: 10.1080/08946566.2016.1237918. Epub 2016 Sep 20.

Psychological and Functional Vulnerability Predicts Fraud Cases in Older Adults: Results of a Longitudinal Study.心理和功能脆弱性预示老年人的欺诈案件：一项纵向研究的结果

Clin Gerontol. 2016;39(1):48-63. doi: 10.1080/07317115.2015.1101632. Epub 2015 Oct 9.

Persistent Reliance on Facial Appearance Among Older Adults When Judging Someone's Trustworthiness.老年人在判断某人的可信度时，仍然依赖于面部外观。

J Gerontol B Psychol Sci Soc Sci. 2018 Apr 16;73(4):573-583. doi: 10.1093/geronb/gbw034.

文献AI研究员

20分钟写一篇综述，助力文献阅读效率提升50倍。

立即体验

用中文搜PubMed

大模型驱动的PubMed中文搜索引擎

马上搜索

文档翻译

学术文献翻译模型，支持多种主流文档格式。