Educational Phishing: An Awareness Campaign to Learn How to Detect Phishing

Matias Greco; Rodrigo Chang; Patricio Galdames

doi:10.1109/SCCC63879.2024.10767670

Educational Phishing: An Awareness Campaign to Learn How to Detect Phishing

Matias Greco
, Rodrigo Chang
, Patricio Galdames

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

One of the most frequent attacks on the Internet is phishing, in which an attacker impersonates the identity of a trusted person or institution. Because students spend a large part of their university life connected and interacting on the Internet, for social, educational, or personal reasons, it is essential that students acquire the skills to detect these threats. In this article, we show the educational phishing experience at the Faculty of Engineering, Architecture, and Design of the Universidad San Sebastian, in which 1,970 students from three different regions of Chile were sent a communication impersonating the university and asked to update their personal information. The results showed that 18 % of the students did not detect phishing. The idea was taken from companies where information security is critical. To our knowledge, this is the first experience applied in a Latin-American university and can be replicated at many levels of education.

Original language	English
Title of host publication	2024 43rd International Conference of the Chilean Computer Science Society, SCCC 2024
Publisher	IEEE Computer Society
ISBN (Electronic)	9798331527891
DOIs	https://doi.org/10.1109/SCCC63879.2024.10767670
State	Published - 2024
Externally published	Yes
Event	43rd International Conference of the Chilean Computer Science Society, SCCC 2024 - Temuco, Chile Duration: 28 Oct 2024 → 30 Oct 2024

Publication series

Name	Proceedings - International Conference of the Chilean Computer Science Society, SCCC
ISSN (Print)	1522-4902

Conference

Conference	43rd International Conference of the Chilean Computer Science Society, SCCC 2024
Country/Territory	Chile
City	Temuco
Period	28/10/24 → 30/10/24

Access to Document

10.1109/SCCC63879.2024.10767670

Cite this

@inproceedings{52cedee8282e462680574af459c230f8,

title = "Educational Phishing: An Awareness Campaign to Learn How to Detect Phishing",

abstract = "One of the most frequent attacks on the Internet is phishing, in which an attacker impersonates the identity of a trusted person or institution. Because students spend a large part of their university life connected and interacting on the Internet, for social, educational, or personal reasons, it is essential that students acquire the skills to detect these threats. In this article, we show the educational phishing experience at the Faculty of Engineering, Architecture, and Design of the Universidad San Sebastian, in which 1,970 students from three different regions of Chile were sent a communication impersonating the university and asked to update their personal information. The results showed that 18 \% of the students did not detect phishing. The idea was taken from companies where information security is critical. To our knowledge, this is the first experience applied in a Latin-American university and can be replicated at many levels of education.",

author = "Matias Greco and Rodrigo Chang and Patricio Galdames",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 43rd International Conference of the Chilean Computer Science Society, SCCC 2024 ; Conference date: 28-10-2024 Through 30-10-2024",

year = "2024",

doi = "10.1109/SCCC63879.2024.10767670",

language = "English",

series = "Proceedings - International Conference of the Chilean Computer Science Society, SCCC",

publisher = "IEEE Computer Society",

booktitle = "2024 43rd International Conference of the Chilean Computer Science Society, SCCC 2024",

}

Greco, M, Chang, R & Galdames, P 2024, Educational Phishing: An Awareness Campaign to Learn How to Detect Phishing. in 2024 43rd International Conference of the Chilean Computer Science Society, SCCC 2024. Proceedings - International Conference of the Chilean Computer Science Society, SCCC, IEEE Computer Society, 43rd International Conference of the Chilean Computer Science Society, SCCC 2024, Temuco, Chile, 28/10/24. https://doi.org/10.1109/SCCC63879.2024.10767670

Educational Phishing: An Awareness Campaign to Learn How to Detect Phishing. / Greco, Matias; Chang, Rodrigo; Galdames, Patricio.
2024 43rd International Conference of the Chilean Computer Science Society, SCCC 2024. IEEE Computer Society, 2024. (Proceedings - International Conference of the Chilean Computer Science Society, SCCC).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Educational Phishing

T2 - 43rd International Conference of the Chilean Computer Science Society, SCCC 2024

AU - Greco, Matias

AU - Chang, Rodrigo

AU - Galdames, Patricio

PY - 2024

Y1 - 2024

N2 - One of the most frequent attacks on the Internet is phishing, in which an attacker impersonates the identity of a trusted person or institution. Because students spend a large part of their university life connected and interacting on the Internet, for social, educational, or personal reasons, it is essential that students acquire the skills to detect these threats. In this article, we show the educational phishing experience at the Faculty of Engineering, Architecture, and Design of the Universidad San Sebastian, in which 1,970 students from three different regions of Chile were sent a communication impersonating the university and asked to update their personal information. The results showed that 18 % of the students did not detect phishing. The idea was taken from companies where information security is critical. To our knowledge, this is the first experience applied in a Latin-American university and can be replicated at many levels of education.

AB - One of the most frequent attacks on the Internet is phishing, in which an attacker impersonates the identity of a trusted person or institution. Because students spend a large part of their university life connected and interacting on the Internet, for social, educational, or personal reasons, it is essential that students acquire the skills to detect these threats. In this article, we show the educational phishing experience at the Faculty of Engineering, Architecture, and Design of the Universidad San Sebastian, in which 1,970 students from three different regions of Chile were sent a communication impersonating the university and asked to update their personal information. The results showed that 18 % of the students did not detect phishing. The idea was taken from companies where information security is critical. To our knowledge, this is the first experience applied in a Latin-American university and can be replicated at many levels of education.

UR - https://www.scopus.com/pages/publications/85213547903

U2 - 10.1109/SCCC63879.2024.10767670

DO - 10.1109/SCCC63879.2024.10767670

M3 - Conference contribution

AN - SCOPUS:85213547903

T3 - Proceedings - International Conference of the Chilean Computer Science Society, SCCC

BT - 2024 43rd International Conference of the Chilean Computer Science Society, SCCC 2024

PB - IEEE Computer Society

Y2 - 28 October 2024 through 30 October 2024

ER -

Educational Phishing: An Awareness Campaign to Learn How to Detect Phishing

Abstract

Publication series

Conference

Access to Document

Fingerprint

Cite this