Objective Experience Asia’s Blog

  • Eye-Tracking Phishing E-mails

    Eye-Tracking Phishing E-mails Queensland University of Technology’s Nir Mazor put phishing to the test with eye tracking. Using Tobii eye trackers, Mazor set out to identify how where we look when we evaluate an e-mail relates to our susceptibility to falling for these phishing traps.Social engineering attacks are more prevalent than ever and the fiscal damage which they cause is of enormous proportion. The most prevalent of such attacks is phishing – an attack (usually in a form of an e-mail) which aims at compromising the victim’s personal information by means of psychological manipulation (such as authoritative and urgent tone of persuasion) in conjunction with an interaction with a malicious link. Developed solutions are mostly technical rather than human-oriented ones. Unfortunately, these solutions do little to eliminate or at least reduce the rate of and damage caused by phishing e-mails. This study focuses on examining the visual way in which users interact with phishing e-mails to try and establish a recommended visual pattern of e-mail inspection. This understanding may contribute to insights on how to improve inbox UI design in a way which will effectively highlight informative components. To achieve such an insight, the study employed an eye-tracker named Tobii Glasses 2, which[…]