Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
An educational experiment in discovering spear phishing attacks
Blekinge Institute of Technology, Faculty of Computing, Department of Computer Science.
Blekinge Institute of Technology, Faculty of Computing, Department of Computer Science.
2019 (English)Independent thesis Basic level (degree of Bachelor), 10 credits / 15 HE creditsStudent thesisAlternative title
Ett utbildningsexperiment för att upptäcka spear phishing attacker (Swedish)
Abstract [en]

Background: Spear phishing attacks uses social engineering targeting a specific person to steal credential information or infect the users computer with malware. It is often done through emails and it can be very hard to spot the difference between a legitimate email and a scam email. Cybercrime is a growing problem and there is many ways to inform and educate individuals on the subject.Objectives: This study intends to perform an experiment to see if an educationalsupport tool can be used to better identify phishing emails. Furthermore see if there is a difference in susceptibility between students from different university programs. Methods: A qualitative research study was used to get the necessary understanding how to properly develop a phishing educational tool. A Pretest-Posttest experiment is done to see if there is an improvement in result between an experimental group that received education and the control group that did not. Results: The result shows an overall higher score for the technical program compared to the non-technical. Comparing the pretest with the posttest shows an increase in score for the non-technical program and a decrease in score for the technical program. Furthermore 58% of the non-technical students who started the test did not complete it. Conclusions: There is a noticeable difference in susceptibility between the programs for detecting scam emails for students. However further research is needed in order to explore to what extent the education process had an impact.

Place, publisher, year, edition, pages
2019. , p. 38
Keywords [en]
Phishing, Spear-phishing, Experiment, Security awareness
National Category
Computer Sciences Learning
Identifiers
URN: urn:nbn:se:bth-18446OAI: oai:DiVA.org:bth-18446DiVA, id: diva2:1335895
Subject / course
DV1478 Bachelor Thesis in Computer Science
Educational program
DVGIS Security Engineering
Supervisors
Examiners
Available from: 2019-07-25 Created: 2019-07-08 Last updated: 2019-07-25Bibliographically approved

Open Access in DiVA

BTH2019FloderusRosenholm(1906 kB)2694 downloads
File information
File name FULLTEXT02.pdfFile size 1906 kBChecksum SHA-512
9a6bc0b3b4d4e365c9de75129ae5da80f8239b62e59cf9d28af20cbee3856d468311c75874f5c39bb99b7538a2f005450a1c3616477818b47ff6b9849d3483a2
Type fulltextMimetype application/pdf

By organisation
Department of Computer Science
Computer SciencesLearning

Search outside of DiVA

GoogleGoogle Scholar
Total: 2694 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 1475 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf