Abstract

Threats to private and public sector environments are increasing in sophistication and becoming increasingly difficult to identify proactively. While there is urgency to stay abreast of critical patches and protective measures to ensure that the technological risks are mitigated, the human element is a consistent group that attackers focus on from a social engineering standpoint. Not only are humans unpredictable, but they have varying perspectives, backgrounds, and levels of experience that influence their behaviors and motivations. While training is a recommended best practice for improving individuals’ capabilities for identifying illegitimate messages, there are still many phishing attacks that successful even with training in place. This research explores the element of suspicion and how suspicion could be invoked to influence behavior related to phishing message response.

Download

Share

COinS