TY - JOUR
T1 - Cybersecurity Awareness
T2 - A Critical Analysis of Education and Law Enforcement Methods
AU - Baadel, Said
AU - Thabtah, Fadi
AU - Lu, Joan
PY - 2021/9/1
Y1 - 2021/9/1
N2 - According to the international Anti-Phishing Work Group (APWG), phishing activities have abruptly risen over the last few years, and users are becoming more susceptible to online and mobile fraud. Machine Learning techniques have potential for building technical anti-phishing models, with a handful already implemented in the real time environment. However, majority of them have yet to be applied in a real time environment and require domain experts to interpret the results. This gives conventional techniques a vital role as supportive tools for a wider audience, especially novice users. This paper reviews in-depth, common, phishing countermeasures including legislation, law enforcement, hands-on training, and education among others. A complete prevention layer based on the aforementioned approaches is suggested to increase awareness and report phishing to different stakeholders, including organizations, novice users, researchers, and computer security experts. Therefore, these stakeholders can understand the upsides and downsides of the current conventional approaches and the ways forward for improving them.
AB - According to the international Anti-Phishing Work Group (APWG), phishing activities have abruptly risen over the last few years, and users are becoming more susceptible to online and mobile fraud. Machine Learning techniques have potential for building technical anti-phishing models, with a handful already implemented in the real time environment. However, majority of them have yet to be applied in a real time environment and require domain experts to interpret the results. This gives conventional techniques a vital role as supportive tools for a wider audience, especially novice users. This paper reviews in-depth, common, phishing countermeasures including legislation, law enforcement, hands-on training, and education among others. A complete prevention layer based on the aforementioned approaches is suggested to increase awareness and report phishing to different stakeholders, including organizations, novice users, researchers, and computer security experts. Therefore, these stakeholders can understand the upsides and downsides of the current conventional approaches and the ways forward for improving them.
KW - Cybersecurity Awareness
KW - education
KW - law enforcement
KW - anti-phishing
KW - cyber security
KW - embedded training
KW - spear phishing
UR - http://www.scopus.com/inward/record.url?scp=85119099467&partnerID=8YFLogxK
U2 - 10.31449/inf.v45i3.3328
DO - 10.31449/inf.v45i3.3328
M3 - Article
VL - 45
SP - 335
EP - 345
JO - Informatica
JF - Informatica
SN - 0868-4952
IS - 3
ER -