Role of awareness to prevent personal disasters: Reducing the risks of falling for phishing by strengthening user awareness

Bettina Iser, Roman Brandtweiner

Publication: Chapter in book/Conference proceedingContribution to conference proceedings

Abstract

Phishing still represents a main security threat in the digital world. Attackers primarily by means of e-mail try to gain access to user’s sensitive personal credentials. By using these credentials, attackers cause disasters on the individual level by inflicting e.g. severe economic losses or reputational damage due to identity theft. Awareness is one important factor to increase resilience. This paper based on recent literature first gives a general overview on social engineering as mean for phishing and then evaluates how awareness as preventive measure is considered effective in the selected literature. Information on phishing is one measure to raise awareness, others are trainings and phishing test campaigns to evaluate risk exposure and increase awareness. With regards on information sharing a case study, focusing on portals and homepages of selected Austrian financial institutions was conducted. In this case, study we emphasis on content and eventual differences in the presentation of information concerning prevention and mitigation.

Keywords: Disaster prevention and mitigation, social engineering, phishing, risk awareness, security management
Original languageEnglish
Title of host publicationWIT Transactions On The Built Environment: Disaster Management 2021 - Seventh International Conference on Disaster Management and Human Health Risk: Reducing Risk, Improving Outcomes
Editors Passerini, G., Garzia, F., Lombardi, M.
Place of PublicationSouthhampton, Boston
PublisherWITPress
Pages79 - 88
ISBN (Print)978-1-78466-445-9
Publication statusPublished - 2021

Austrian Classification of Fields of Science and Technology (ÖFOS)

  • 502052 Business administration
  • 508
  • 502050 Business informatics
  • 508009 Media research

Cite this