. 2019 Sep;26(5):32.

doi: 10.1145/3336141.

Susceptibility to Spear-Phishing Emails: Effects of Internet User Demographics and Email Content

Tian Lin¹, Daniel E Capecci², Donovan M Ellis¹, Harold A Rocha¹, Sandeep Dommaraju³, Daniela S Oliveira², Natalie C Ebner¹

Affiliations

¹ Department of Psychology, University of Florida, Gainesville, Florida, U. S. A.
² Department of Electrical and Computer Engineering, University of Florida, Gainesville, Florida, U. S. A.
³ Department of Computer Science, University of Florida, Gainesville, Florida, U. S. A.

PMID: 32508486
PMCID: PMC7274040
DOI: 10.1145/3336141

Susceptibility to Spear-Phishing Emails: Effects of Internet User Demographics and Email Content

Tian Lin et al. ACM Trans Comput Hum Interact. 2019 Sep.

. 2019 Sep;26(5):32.

doi: 10.1145/3336141.

Authors

Tian Lin¹, Daniel E Capecci², Donovan M Ellis¹, Harold A Rocha¹, Sandeep Dommaraju³, Daniela S Oliveira², Natalie C Ebner¹

Affiliations

¹ Department of Psychology, University of Florida, Gainesville, Florida, U. S. A.
² Department of Electrical and Computer Engineering, University of Florida, Gainesville, Florida, U. S. A.
³ Department of Computer Science, University of Florida, Gainesville, Florida, U. S. A.

PMID: 32508486
PMCID: PMC7274040
DOI: 10.1145/3336141

Abstract

Phishing is fundamental to cyber attacks. This research determined the effect of Internet user age and email content such as weapons of influence (persuasive techniques that attackers can use to lure individuals to fall for an attack) and life domains (a specific topic or aspect of an individual's life that attackers can focus an emails on) on spear-phishing (targeted phishing) susceptibility. One-hundred young and 58 older users received, without their knowledge, daily simulated phishing emails over 21 days. A browser plugin recorded their clicking on links in the emails as an indicator of their susceptibility. Forty-three percent of users fell for the simulated phishing emails, with older women showing the highest susceptibility. While susceptibility in young users declined across the study, susceptibility in older users remained stable. The relative effectiveness of the attacks differed by weapons of influence and life domains with age-group variability. In addition, older compared to young users reported lower susceptibility awareness. These findings support effects of Internet user demographics and email content on susceptibility to phishing and emphasize the need for personalization of the next generation of security solutions.

Keywords: Aging; Emails; Life Domains; Phishing; Susceptibility; Weapons of Influence.

PubMed Disclaimer

Figures

**Figure 6.**
Phishing Internet Task (PHIT). A. Overall framework of PHIT. (1) Daily cron jobs invoked the phishing manager to (2) fetch participant, schedule, and spear-phishing emails from the database, and (3) send spear-phishing emails to the participants. B. Sample façade web-page created for the study to accompany the link embedded in the spear-phishing email. C. Overview of cron job implementation and triggered events in phishing manager.

**Figure 1.**
Predicted susceptibility to phishing in young and older men and women. Error bars represent 95% confidence intervals.

**Figure 2.**
Predicted susceptibility to phishing in young and older users as a function of time in study (in days). Error bars represent 95% confidence intervals.

**Figure 3.**
Predicted susceptibility to phishing as a function of weapons of influence in young and older users. Error bars represent 95% confidence intervals.

**Figure 4.**
Predicted susceptibility to phishing as a function of life domains in young and older users. Error bars represent 95% confidence intervals.

**Figure 5.**
Predicted susceptibility awareness to phishing as a function of (A) weapons of influence and (B) life domains in young and older users. 1 = not at all; 5 = very much. Error bars represent 95% confidence intervals.

See this image and copyright information in PMC

Cited by

Cybercrime victimisation among older adults: A probability sample survey in England and Wales.
Havers B, Tripathi K, Burton A, McManus S, Cooper C. Havers B, et al. PLoS One. 2024 Dec 18;19(12):e0314380. doi: 10.1371/journal.pone.0314380. eCollection 2024. PLoS One. 2024. PMID: 39693296 Free PMC article.
Age and intranasal oxytocin effects on trust-related decisions after breach of trust: Behavioral and brain evidence.
Frazier I, Lin T, Liu P, Skarsten S, Feifel D, Ebner NC. Frazier I, et al. Psychol Aging. 2021 Feb;36(1):10-21. doi: 10.1037/pag0000545. Psychol Aging. 2021. PMID: 33705182 Free PMC article.
New directions for studying the aging social-cognitive brain.
Ebner NC, Horta M, El-Shafie D. Ebner NC, et al. Curr Opin Psychol. 2024 Apr;56:101768. doi: 10.1016/j.copsyc.2023.101768. Epub 2023 Nov 29. Curr Opin Psychol. 2024. PMID: 38104362 Free PMC article. Review.
Financial Fraud and Deception in Aging.
Ebner NC, Pehlivanoglu D, Shoenfelt A. Ebner NC, et al. Adv Geriatr Med Res. 2023;5(3):e230007. doi: 10.20900/agmr20230007. Epub 2023 Sep 11. Adv Geriatr Med Res. 2023. PMID: 37990708 Free PMC article.
Novel methods for assessment of vulnerability to financial exploitation (FE).
Beach SR, Czaja SJ, Schulz R. Beach SR, et al. J Elder Abuse Negl. 2023 Aug-Oct;35(4-5):151-173. doi: 10.1080/08946566.2023.2281672. Epub 2023 Dec 10. J Elder Abuse Negl. 2023. PMID: 37952111 Free PMC article.

See all "Cited by" articles

References

1. Agarwal S, Driscoll JC, Gabaix X, & Laibson D (2009). The age of reason: Financial decisions over the life cycle and implications for regulation. Brookings Papers on Economic Activity, Fall, 51–117
1. Alves LM, & Wilson SR (2008). The effects of loneliness on telemarketing fraud vulnerability among older adults. Journal of Elder Abuse &Neglect, 20, 63–85. - PubMed
1. Bailey PE, Ruffman T, & Rendell P (2013), Age-related differences in social economic decision making: The ultimatum game, The Journals of Gerontology. Series B. Psychological Sciences and Social Sciences, 68, 356– 363. - PubMed
1. Bailey PE, Slessor G, Rieger M, Rendell PG, Moustafa AA, & Ruffman T (2015). Trust and trustworthiness in young and older adults. Psychology and Aging, 30, 977–986. - PubMed
1. Bailey PE, Szczap P, McLennan SN, Slessor G, Ruffman T, & Rendell PG (2016). Age-related similarities and differences in first impressions of trustworthiness. Cognition and Emotion, 30, 1017–1026. - PubMed

Grants and funding

R01 AG057764/AG/NIA NIH HHS/United States

LinkOut - more resources

Full Text Sources
- Europe PubMed Central
- PubMed Central
Other Literature Sources
- The Lens - Patent Citations Database

Save citation to file

Email citation

Add to Collections

Add to My Bibliography

Your saved search

Create a file for external citation management software

Your RSS Feed

Susceptibility to Spear-Phishing Emails: Effects of Internet User Demographics and Email Content

Affiliations

Susceptibility to Spear-Phishing Emails: Effects of Internet User Demographics and Email Content

Authors

Affiliations

Abstract

Figures

Similar articles

Cited by

References

Grants and funding

LinkOut - more resources

Full Text Sources

Other Literature Sources