Professional paper
https://doi.org/10.59245/ps.32.3.4
The Recognition of an E-Mail Phishing Cyberattack in Business Organizations
Bernard Vukelić
; Polytechnic of Rijeka, Rijeka, Croatia
Alida Dina Zvonarić
; Polytechnic of Rijeka, Rijeka, Croatia
Nikola Protrka
; Ministry of the Interior of the Republic of Croatia, Police Academy – The First Croatian Police Officer, University of Applied Sciences in Criminal Investigation and Public Security, Zagreb, Croatia
Abstract
Phishing is a form of social engineering and cybercrime which entails theft of confidential information (personal or official) for financial gain. That is one of the oldest cyber threats. There is a wide range of phishing attack techniques, and the most frequent one is performed via electronic mail. Due to major changes in conducting business in the last pandemic, which entail remote work, fast digital transformation and the increase of ICT technologies, the statistics show that phishing attacks are on the rise. Employees who lack developed awareness of phishing attacks, responsibility and knowledge represent a potential danger to the entire organisation. This paper describes the research on e-mail phishing recognition in business organisations in Primorje-Gorski kotar County. The research showed that employees are not aware of phishing attacks to a sufficient extent and that all the habits contributing to the IT security level regarding these attacks are not satisfying. To protect against such attacks, organisations should, in addition to implementing safety technical measures, actively educate employees and periodically implement testing.
Keywords
phishing, cybercrime, cyber threat, social engineering, cybersecurity
Hrčak ID:
308836
URI
Publication date:
13.10.2023.
Visits: 392 *