Policija i sigurnost, Vol. 32 No. 3, 2023.
Stručni rad
https://doi.org/10.59245/ps.32.3.4
The Recognition of an E-Mail Phishing Cyberattack in Business Organizations
Bernard Vukelić
; Veleučilište u Rijeci, Rijeka, Hrvatska
Alida Dina Zvonarić
; Veleučilište u Rijeci, Rijeka, Hrvatska
Nikola Protrka
; Ministarstvo unutarnjih poslova Republike Hrvatske, Policijska akademija "Prvi hrvatski redarstvenik", Veleučilište kriminalistike i javne sigurnosti, Zagreb, Hrvatska
Sažetak
Phishing is a form of social engineering and cybercrime which entails theft of confidential information (personal or official) for financial gain. That is one of the oldest cyber threats. There is a wide range of phishing attack techniques, and the most frequent one is performed via electronic mail. Due to major changes in conducting business in the last pandemic, which entail remote work, fast digital transformation and the increase of ICT technologies, the statistics show that phishing attacks are on the rise. Employees who lack developed awareness of phishing attacks, responsibility and knowledge represent a potential danger to the entire organisation. This paper describes the research on e-mail phishing recognition in business organisations in Primorje-Gorski kotar County. The research showed that employees are not aware of phishing attacks to a sufficient extent and that all the habits contributing to the IT security level regarding these attacks are not satisfying. To protect against such attacks, organisations should, in addition to implementing safety technical measures, actively educate employees and periodically implement testing.
Ključne riječi
phishing, cybercrime, cyber threat, social engineering, cybersecurity
Hrčak ID:
308836
URI
Datum izdavanja:
13.10.2023.
Posjeta: 1.069 *