Hussain, Fahad and Rahman, Rayyanur and Mahmod Attar Bashi, Zainab Senan and Naser Fadaq, Wafa Hussein and Mustafa, Manar (2024) Understanding human behavior in phishing attacks across diverse user groups: an ethical hacking analysis. In: 1st Karachi Section Humanitarian Technology Conference (KHI-HTC 2024), 8th - 9th January 2024, Tandojam, Pakistan.
|
PDF (Full Paper)
- Published Version
Download (506kB) | Preview |
|
|
PDF (Scopus)
- Supplemental Material
Download (131kB) | Preview |
Abstract
In the face of increasingly advanced cyber threats employing different social engineering methods, there is a crucial need to comprehend how individuals respond to deceptive emails and messages. This research investigates the analysis of human behavior across various user groups by utilizing phishing emails and messages as testing tools. By employing ethical hacking methodologies, the study studies and executes realistic phishing attacks, aiming to observe and comprehend how individuals fall victim to social engineering tactics, resulting in financial losses and compromised passwords. In order to collect data, a survey was prepared together with a fake website (IIUM Wi-Fi login page) to provide insights into the vulnerabilities inherent in user interactions with phishing attempts. The findings highlight that a lot of people tend to click on unknown links out of curiosity, which can easily make them a victim of social engineering attack. The results suggest that around 84% of the targeted respondents consider whatsapp /messages to be very important in daily communication. However, 25.5% of them have clicked on the phisihing link via whatsapp message and inserted their login details. Findings uncovered potential vulnerabilities and a 28.6% impulsivity rate. A phishing experiment illustrated cybersecurity risks, underscoring the need for awareness and education.
| Item Type: | Proceeding Paper (Plenary Papers) |
|---|---|
| Uncontrolled Keywords: | Social Engineering, Human Behavior, Phishing Attack, Ethical Hacking |
| Subjects: | B Philosophy. Psychology. Religion > BJ Ethics > BJ1725 Ethics of social groups, classes, etc. Professional ethics L Education > LB Theory and practice of education > LB1044 Internet in Education |
| Kulliyyahs/Centres/Divisions/Institutes (Can select more than one option. Press CONTROL button): | Kulliyyah of Information and Communication Technology Kulliyyah of Information and Communication Technology Kulliyyah of Information and Communication Technology > Department of Computer Science Kulliyyah of Information and Communication Technology > Department of Computer Science |
| Depositing User: | Dr Zainab Senan Mahmod |
| Date Deposited: | 10 May 2024 12:14 |
| Last Modified: | 10 May 2024 14:51 |
| URI: | http://irep.iium.edu.my/id/eprint/112126 |
Actions (login required)
 |
View Item |
Download Statistics
Download Statistics