Benchmarking the Robustness of Phishing Email Detection Systems

2023 | Americas Conference on Information Systems | Citations: 0

Authors: Ampel, Benjamin; Gao, Yang; Hu, James; Samtani, Sagar; Chen, Hsinchun

Abstract: Social engineering attacks are currently the most cited cybersecurity threat to ... Expand

Abstract: Social engineering attacks are currently the most cited cybersecurity threat to organizations. Phishing emails are the most salient form of social engineering attacks. Organizations are increasingly implementing AI-enabled systems to detect phishing emails. However, AI-enabled systems are often susceptible to textual perturbations, where an adversary makes a small change to cause a misclassification. In this study, we sought to identify the performance of prevailing phishing email detection systems (PEDS) against character, word, sentence, and multi-level adversarial text perturbations. Through a principled benchmarking framework, we quantitatively demonstrated the lack of robustness prevailing PEDS have to specific types of text-based adversarial perturbations (e.g., character, word, sentence, multi-level). The results of this study provide new insights into the robustness of AI-based PEDS and highlight the need for organizations to adopt a multi-layered approach to phishing protection. Additionally, organizations can implement our benchmark framework to test their PEDS against adversarial perturbations. Collapse

Topics: artificial intelligence electronic mail email phishing phishing IT security

Methods: word2vec random forest classification naïve bayes literature study pre-trained language model

The Interplay of Information Processing, Mindfulness, and Affective State in Phishing Detection

2023 | International Conference on Information Systems | Citations: 0

Authors: Bera, Debalina; Kim, Dan

Abstract: This study investigates the effect of individuals' information processing modes ... Expand

Abstract: This study investigates the effect of individuals' information processing modes on phishing email detection mechanisms and accuracy. Drawing on the heuristic-systematic model of processing, mindful decision-making, and affect-and-persuasion literature, this study examines the antecedents (i.e., heuristic, systematic processing, general and domain mindfulness, and affective state) and behavioral consequences (i.e., detection accuracy) in phishing identification. Using a scenario-based survey experiment this study shows mindfulness and affectivity navigate information processing mechanisms, thus influence phishing detection accuracy. It aims to contribute to information security literature by examining novel associations between general, domain mindfulness and its effect on online users' information processing strategy and phishing detection accuracy. Furthermore, this study contributes to phishing training and awareness by identifying the function of cognitive-affective (affective states, trait mindfulness) and cognitive-behavioral (domain mindfulness) factors on the choice of information processing modes and phishing detection accuracy. Finally, the affective states might help improve the efficacy of automatic filters. Collapse

Topics: phishing mindfulness electronic mail email phishing data security

Methods: experiment survey partial least squares regression machine learning laboratory experiment

Theories: protection motivation theory

Towards a thematic dimensional framework of online fraud: An exploration of fraudulent email attack tactics and intentions

2023 | Decision Support Systems | Citations: 1

Authors: Bera, Debalina; Ogbanufe, Obi; Kim, Dan J.

Abstract: Despite anti-phishing filters, social engineering-based cyber-attacks still resu ... Expand

Abstract: Despite anti-phishing filters, social engineering-based cyber-attacks still result in billions of dollars lost annually, significant personal identity theft, loss of corporate secrets, and espionage. We review the phishing literature on psychological attacks and design tactics employed for deception by attackers. The result reveals the need to continuously identify tactics embedded in fraudulent email content to understand why users still fall prey to phishing attacks. Using the literature as a backdrop, we identify and conceptualize a thematic dimensional framework of fraudulent phishing attacks. This study uses benchmark datasets of fraudulent email to empirically validate the proposed dimensional framework. Specifically, a combination of machine learning-based content analysis and topic modeling found a majority of the discovered topics were labeled against the proposed di­ mensions. Statistical analysis was employed to provide empirical evidence of the thematic dimensions of fraudulent email attacks. This study thus, not only extends the cybersecurity literature by identifying and vali­ dating eight dimensions that enrich our understanding of phishing and attack identification but stimulates cu­ mulative research endeavors to develop yet more comprehensive dimensional frameworks of phishing email attacks. Collapse

Topics: phishing email phishing electronic mail email spam personalization

Methods: term frequency–inverse document frequency natural language processing topic model discriminant analysis literature study

The effect of lockup and persuasion on online investment decisions: An experimental study in ICOs

2023 | Electronic Markets | Citations: 0

Authors: Bruckner, Moritz T.; Steininger, Dennis M.; Thatcher, Jason Bennett; Veit, Daniel J.

Abstract: Many firms use social media (SM) to solicit online investments. In this study, w ... Expand

Abstract: Many firms use social media (SM) to solicit online investments. In this study, we examine the interaction between SM attributes and online-investment attributes to determine how this interaction shapes users’ investment decisions. Specifically, we investigate initial coin offerings (ICOs) as an application domain of distributed ledger technology for peer-to-peer investment. We use signaling theory to develop a context-specific explanation for how the interplay of persuasion signals found in SM and technology-enforced lockups shapes individuals’ ICO investment decisions. To evaluate this interplay, we conducted a 2 × 2 factorial experiment with 473 participants. The results show that when an investment does not require a technology-enforced lockup, persuasion signals encourage investments in ICOs; however, when an investment requires a technology-enforced lockup, persuasion signals do not affect investments in ICOs. Furthermore, our analyses suggest that combining a technology-enforced lockup and persuasion signals reduces the ICO’s plausibility. This is the first study to investigate how the willingness to invest in ICOs is influenced by the relationship between technology-enforced lockups and persuasion signals. The findings have practical implications for individuals attempting to make sound decisions on ICO investments, policymakers regulating online investments, and firms seeking to attract investors. Collapse

Topics: internet technology crowdfunding crowdsourcing Facebook blockchain

Methods: experimental group parametric test repeated measures ANOVA experimental design cross sectional research

Theories: signaling theory

Barking Up the Wrong Tree? Reconsidering Policy Compliance as a Dependent Variable within Behavioral Cybersecurity Research

2023 | HICSS | Citations: 0

Authors: Cram, W. Alec; D'Arcy, John

Abstract: A rich body of research examines the cybersecurity behavior of employees, with a ... Expand

Abstract: A rich body of research examines the cybersecurity behavior of employees, with a particular focus on explaining the reasons why employees comply with (or violate) organizational cybersecurity policies. However, we posit that this emphasis on policy compliance is susceptible to several notable limitations that could lead to inaccurate research conclusions. In this commentary, we examine the limitations of using cybersecurity policy compliance as a dependent variable by presenting three assertions: (1) the link between policy compliance and organizational-level outcomes is ambiguous; (2) policies vary widely in terms of their clarity and completeness; and (3) employees have an inconsistent familiarity with their own organization’s cybersecurity policies. Taken together, we suggest that studying compliance with cybersecurity policies reveals only a partial picture of employee behavior. In response, we offer recommendations for future research. Collapse

Topics: IT security data breach computer data storage cybersecurity behavior top management support

Methods: survey linguistic analysis company material

Impact of Bot Involvement in an Incentivized Blockchain-Based Online Social Media Platform

2023 | Journal of Management Information Systems | Citations: 0

Authors: Delkhosh, Fatemeh; Gopal, Ram D.; Patterson, Raymond A.; Yaraghi, Niam

Abstract: Incentivized blockchain-based online social media (BOSM), where creators and cur ... Expand

Abstract: Incentivized blockchain-based online social media (BOSM), where creators and curators of popular content are paid in cryptocurrency, have recently emerged. Traditional social media ecosystems have experienced significant bot involvement in their platforms, which has often had a negative impact on both users and platforms. BOSM can provide additional direct financial incentives as motivation for both bots' and human users' engagement. Using the panel vector autoregression and regression discontinuity in time framework, we analyze two distinct data sets from Steemit, the largest and most popular BOSM, to study the impact of bot engagement on human users and the impact of changes in financial reward on user engagement. Interestingly, our findings demonstrate that while increased engagement by bots is positively associated with engagement by human users, the association between bot engagement and human user engagement decreases as the number of votes for a post increases. We also find that shifts in economic incentives significantly influence the behavior of both human users and bots. This research provides significant insights on how social media platforms can leverage economic incentives to influence user behavior and, more importantly, leverage bots' activity to increase the engagement of their human users. Collapse

Topics: social media user behavior application programming interface participatory design blockchain

Methods: longitudinal research theory development design methodology regression discontinuity design vector autoregression

How “What you think you know about cybersecurity” can help users make more secure decisions

2023 | Information & Management | Citations: 0

Authors: Fard Bahreini, Amir; Cavusoglu, Hasan; Cenfetelli, Ronald T.

Abstract: The increasing use of information technology artifacts in daily life makes secur ... Expand

Abstract: The increasing use of information technology artifacts in daily life makes security a shared responsibility of both users and companies. In recent years, increasing a user’s objective (i.e., actual) security knowledge and providing applications with more secure default settings appear among the most ubiquitous tools companies use to broaden their efforts to help users make more secure decisions. Examining both solutions matters because they are widely used, cost effective, and understood by many security practitioners. Additionally, default settings and users’ objective knowledge provide anchors for decision-making. However, human errors and insecure default settings are increasing and raising further questions about the efficacy of such efforts. Using the theory of bounded ra­ tionality, we investigated the role of objective, subjective (i.e., self-assessed) security knowledge, and default settings security level on the overall decision security. We found that objective security knowledge can lead to secure decisions when paired with high subjective security knowledge. In the absence of the latter, objective security knowledge is unable to lead to better security decisions. Furthermore, subjective security knowledge reduces the extent to which users fully accept default security settings, thereby mitigating bias toward insecure default settings. Collapse

Topics: mobile application data security decision making self efficacy mobile application market

Methods: survey descriptive statistic structural equation modeling literature study post-hoc analysis

Theories: theory of bounded rationality

Managing Organizational Cyber Security – The Distinct Role of Internalized Responsibility

2023 | HICSS | Citations: 0

Authors: Faltermaier, Stefan; Strunk, Kim; Obermeier, Michaela; Fiedler, Marina

Abstract: Desirable user behavior is key to cyber security in organizations. However, a co ... Expand

Abstract: Desirable user behavior is key to cyber security in organizations. However, a comprehensive overview on how to manage user behavior effectively, in order to support organizational cyber security, is missing. Building on extant research to identify central components of organizational cyber security management and on a qualitative analysis based on 20 semi-structured interviews with users and IT-Managers of a European university, we present an integrated model on this issue. We contribute to understanding the interrelations of namely user awareness, user IT-capabilities, organizational IT, user behavior, and especially internalized responsibility and relation to organizational cyber security. Collapse

Topics: IT security user behavior information technology capability IT security defense password

Methods: qualitative interview personal interview qualitative coding grounded theory case study

Unraveling the behavioral influence of social media on phishing susceptibility: A Personality-Habit-Information Processing model

2023 | Information & Management | Citations: 0

Authors: Frauenstein, Edwin Donald; Flowerday, Stephen; Mishi, Syden; Warkentin, Merrill

Abstract: Frequent and habitual engagement with social media can reinforce certain activit ... Expand

Abstract: Frequent and habitual engagement with social media can reinforce certain activities such as sharing, clicking hyperlinks, and liking, which may be performed with insufficient cognition. In this study, we aimed to examine the associations between personality traits, habits, and information processing to identify social media users who are susceptible to phishing attacks. Our experimental data consisted of 215 social media users. The results revealed two important findings. First, users who scored high on the personality traits of extraversion, agree­ ableness, and neuroticism were more likely to engage in habitual behaviors that increase their susceptibility to phishing attacks, whereas those who scored high on conscientiousness were less likely. Second, users who habitually react to social media posts were more likely to apply heuristic processing, making them more sus­ ceptible to phishing attacks than those who applied systematic processing. Collapse

Topics: phishing Facebook personality social media electronic mail

Methods: survey structural equation modeling survey design theory development self reported survey

Theories: big five model Maslow motivation theory uses and gratifications theory technology acceptance model theory of planned behavior

Determinants of Gamification Effectiveness: Gamification Affordances and Coping Responses in the Context of Gamified ERP Training

2023 | Americas Conference on Information Systems | Citations: 0

Authors: John, Asher; Patwary, Md Masum Ikbal; Park, Soomin; Zhao, Yu; Kwak, Dong-Heon

Abstract: Gamified training is often used to facilitate the adoption of complex informati ... Expand

Abstract: Gamified training is often used to facilitate the adoption of complex information systems in organizations. However, little research has focused on the factors that influence the effective use of gamified training. This study investigates the determinants of effective use of the enterprise resource planning simulation game, ERPsim. The study proposes that ERPsim affordances, such as collaboration and competition, affect coping responses, including task-oriented, emotion-oriented, and avoidance, which in turn impact the effective use of the game. The data were collected from 255 graduate students enrolled in an ERP course at a public university in the United States. The results show that collaboration affordance significantly affects all three coping responses, while competition affordance only affects task-oriented coping. Additionally, task-, and emotion-oriented coping are found to influence the effective use of ERPsim, but avoidance coping does not. The study highlights the importance of affordances and coping responses in gamified training design and implementation towards effective use. Collapse

Topics: affordance user experience usability enterprise resource planning gamification

Methods: structural equation modeling survey simulation psychometrics data transformation

Theories: theory of affordance