Phishing threat avoidance behaviour: An empirical investigation |
| |
| Affiliation: | 1. Goethe University Frankfurt, Theodor-W.-Adorno-Platz 4, 60323 Frankfurt am Main, Germany;2. University of Queensland, Business Information Systems Discipline, St. Lucia Campus, Joyce Ackroyd Building, Brisbane, QLD 4072, Australia;1. College of Computer and Information Sciences, King Saud University, Riyadh, Saudi Arabia;2. King Abdulaziz City for Science and Technology, Riyadh, Saudi Arabia |
| |
| Abstract: | Phishing is an online identity theft that aims to steal sensitive information such as username, password and online banking details from its victims. Phishing education needs to be considered as a means to combat this threat. This paper reports on a design and development of a mobile game prototype as an educational tool helping computer users to protect themselves against phishing attacks. The elements of a game design framework for avoiding phishing attacks were used to address the game design issues. Our mobile game design aimed to enhance the users' avoidance behaviour through motivation to protect themselves against phishing threats. A think-aloud study was conducted, along with a pre- and post-test, to assess the game design framework though the developed mobile game prototype. The study results showed a significant improvement of participants' phishing avoidance behaviour in their post-test assessment. Furthermore, the study findings suggest that participants' threat perception, safeguard effectiveness, self-efficacy, perceived severity and perceived susceptibility elements positively impact threat avoidance behaviour, whereas safeguard cost had a negative impact on it. |
| |
| Keywords: | Usable security Security awareness Phishing threats Security education Mobile learning Game based learning |
| 本文献已被 ScienceDirect 等数据库收录! |
|
