An agent-based phishing attack model from a human-organizational- technical perspective
Loading...
Date
2023
Authors
Journal Title
Journal ISSN
Volume Title
Publisher
Thesis (Ph.D.) - Bogazici University. Institute for Graduate Studies in the Social Sciences, 2023.
Abstract
In the rapidly evolving digital landscape, cybersecurity has emerged as a significant concern for organizations. This thesis delves into the intricate dynamics of malware-based phishing attacks on enterprise computer networks. Utilizing the robust methodological tool of Agent-Based Modelling (ABM), the research is firmly rooted in socio-technical theory and the concept of complex adaptive systems (CAS). The study meticulously examines the pivotal role of human factors, particularly awareness training and the credibility of phishing emails, in determining susceptibility to phishing attacks. Also, it underscores the significant impact of technological countermeasures, including the strategic deployment of Endpoint Detection and Response (EDR) solutions and the implementation of a hybrid antivirus scan policy, in mitigating infection rates. By seamlessly integrating human behaviour with socio- technical dimensions, the research provides a nuanced, comprehensive understanding of cybersecurity threats. The findings underscore the necessity for a balanced, holistic approach that equally prioritizes human behaviour and technological measures. This approach is crucial to enhance organizational resilience against relentless cyber threats. The insights gained from this research offer invaluable guidance for organizations striving to navigate the complex cybersecurity challenges in today's increasingly digital age.