Last week Dr. Zinaida Benenson, an information technology specialist, has a sharing session on how to use the most effective phishing email hacker and the reasons why those who know about these scams still fooled.
At the Black Hat security conference, Benenson presented her findings from two studies of phishing attacks via email. She found that those who received a phishing email containing hacker dangerous path regularly click on the link even if the sender does not know who it was.
Even people who know about computers, understand the dangers behind the link is unclear or know that your email address may be spoofed still click the link in the phishing email.
The study showed that all these factors are negligible.
"We know that people can be exploited and their losses in the same place you in a lot of different times," Benenson says.
Bennenson, a professor at the University of Erlangen-Nuremberg, who led the group to study the problem "Human Factors in Security and Privacy". The team conducted two separate studies involving phishing emails with students and colleagues. Email the first study that says something like this:
In the first study, 45% of people who received the email click on the link while in the second study only 20% of email recipients do that. The reason is, according to Benenson, emails in a second study did not name the recipient.
Most people are curious after clicking on the link they receive nothing, while others blindly trust in the ability of computer protection and the university.
"My computer will lock access path if this is a virus," one student said.
"I use Firefox and MacOS, so I'm not afraid of the virus," another student said.
Even Benenson also almost fooled by her curiosity. In one example she presented to the audience, she has received an email from a person claiming to be reporters of CNN and provide a path to his job. She was excited to talk to a reporter.
"You think I'm going to do?" She asked the audience. "I clicked on the link."
This is an email that a person experienced about phishing emails as well Benenson fooled:
Benenson's study highlights one of the biggest problems that people and firms face when trying to stay safe online. Over 90% of all targeted attacks began with phishing emails are successfully implemented, although we have seen many classic hack and trained cyber security awareness for decades.
She suggests companies reporting feature to flag the suspicious email or use a digital signature. Others have suggested that there must be a technical solution to determine curious about which research has shown Benenson.
"Users do not have a problem", Malcolm Harkins, director of Security and its Trust Cylance, share. "The main problem is the failure to protect the user and computing devices".
