IDEAS home Printed from https://ideas.repec.org/a/gam/jftint/v15y2023i1p29-d1028361.html
   My bibliography  Save this article

Role of Attention and Design Cues for Influencing Cyber-Sextortion Using Social Engineering and Phishing Attacks

Author

Listed:
  • Brent Pethers

    (School of Social Sciences, Western Sydney University, Penrith, NSW 2751, Australia)

  • Abubakar Bello

    (School of Social Sciences, Western Sydney University, Penrith, NSW 2751, Australia)

Abstract

Cyber sextortion attacks are security and privacy threats delivered to victims online, to distribute sexual material in order to force the victim to act against their will. This continues to be an under-addressed concern in society. This study investigated social engineering and phishing email design and influence techniques in susceptibility to cyber sextortion attacks. Using a quantitative methodology, a survey measured susceptibility to cyber sextortion with a focus on four different email design cues. One-way repeated measures ANOVA, post hoc comparison tests, Friedman nonparametric test, and Spearman correlation tests were conducted with results indicating that attention to email source and title/subject line significantly increased individuals’ susceptibility, while attention to grammar and spelling, and urgency cues, had lesser influence. As such, the influence of these message-related factors should be considered when implementing effective security controls to mitigate the risks and vulnerabilities to cyber sextortion attacks.

Suggested Citation

  • Brent Pethers & Abubakar Bello, 2023. "Role of Attention and Design Cues for Influencing Cyber-Sextortion Using Social Engineering and Phishing Attacks," Future Internet, MDPI, vol. 15(1), pages 1-19, January.
  • Handle: RePEc:gam:jftint:v:15:y:2023:i:1:p:29-:d:1028361
    as

    Download full text from publisher

    File URL: https://www.mdpi.com/1999-5903/15/1/29/pdf
    Download Restriction: no

    File URL: https://www.mdpi.com/1999-5903/15/1/29/
    Download Restriction: no
    ---><---

    References listed on IDEAS

    as
    1. Michael Workman, 2008. "Wisecrackers: A theory‐grounded investigation of phishing and pretext social engineering threats to information security," Journal of the American Society for Information Science and Technology, Association for Information Science & Technology, vol. 59(4), pages 662-674, February.
    2. Johnson, Paul E. & Grazioli, Stefano & Jamal, Karim & Zualkernan, Imran A., 1992. "Success and failure in expert reasoning," Organizational Behavior and Human Decision Processes, Elsevier, vol. 53(2), pages 173-203, November.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Naci Akdemir & Serkan Yenal, 2021. "How Phishers Exploit the Coronavirus Pandemic: A Content Analysis of COVID-19 Themed Phishing Emails," SAGE Open, , vol. 11(3), pages 21582440211, July.
    2. Jingguo Wang & Yuan Li & H. Raghav Rao, 2017. "Coping Responses in Phishing Detection: An Investigation of Antecedents and Consequences," Information Systems Research, INFORMS, vol. 28(2), pages 378-396, June.
    3. Frank Kun-Yueh Chou & Abbott Po-Shun Chen & Vincent Cheng-Lung Lo, 2021. "Mindless Response or Mindful Interpretation: Examining the Effect of Message Influence on Phishing Susceptibility," Sustainability, MDPI, vol. 13(4), pages 1-25, February.
    4. Telmo Fernández De Barrena Sarasola & Ander García & Juan Luis Ferrando, 2024. "IIoT Protocols for Edge/Fog and Cloud Computing in Industrial AI: A High Frequency Perspective," International Journal of Cloud Applications and Computing (IJCAC), IGI Global, vol. 14(1), pages 1-30, January.
    5. Bruning, Patrick F. & Alge, Bradley J. & Lin, Hsin-Chen, 2020. "Social networks and social media: Understanding and managing influence vulnerability in a connected society," Business Horizons, Elsevier, vol. 63(6), pages 749-761.
    6. Enis, Charles R., 1995. "Expert-novive judgments and new cue sets: Process versus outcome," Journal of Economic Psychology, Elsevier, vol. 16(4), pages 641-662, December.
    7. Ryan T. Wright & Matthew L. Jensen & Jason Bennett Thatcher & Michael Dinger & Kent Marett, 2014. "Research Note ---Influence Techniques in Phishing Attacks: An Examination of Vulnerability and Resistance," Information Systems Research, INFORMS, vol. 25(2), pages 385-400, June.
    8. Matthew Canham & Clay Posey & Delainey Strickland & Michael Constantino, 2021. "Phishing for Long Tails: Examining Organizational Repeat Clickers and Protective Stewards," SAGE Open, , vol. 11(1), pages 21582440219, January.
    9. Stefano Grazioli, 2004. "Where Did They Go Wrong? An Analysis of the Failure of Knowledgeable Internet Consumers to Detect Deception Over the Internet," Group Decision and Negotiation, Springer, vol. 13(2), pages 149-172, March.
    10. Zhengyang Fan & Wanru Li & Kathryn Blackmond Laskey & Kuo-Chu Chang, 2024. "Investigation of Phishing Susceptibility with Explainable Artificial Intelligence," Future Internet, MDPI, vol. 16(1), pages 1-18, January.
    11. Pigola, Angélica & Da Costa, Priscila Rezende & Ferasso, Marcos & Cavalcanti da Silva, Luís Fabio, 2024. "Enhancing cybersecurity capability investments: Evidence from an experiment," Technology in Society, Elsevier, vol. 76(C).

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jftint:v:15:y:2023:i:1:p:29-:d:1028361. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.