UTSA study shows how phishing scams thrive on overconfidence
(Jan. 9, 2017) -- A new study by H.R. Rao, AT&T Distinguished Chair in Infrastructure Assurance and Security at The University of Texas at San Antonio (UTSA), examines overconfidence in detecting phishing e-mails. According to Rao, most people believe they're smarter than the criminals behind these schemes, which is why so many fall easily into a trap.
"A big advantage for phishers is self efficacy," Rao, a UTSA College of Business faculty member, said. "Many times, people think they know more than they actually do, and are smarter than someone trying to pull of a scam via an e-mail."
However, phishing has continued to evolve with the internet. It's no longer strangers posing as troubled Nigerian princes looking to cheat the average person out of their credit card information. Instead, phishing e-mails often look like messages from companies ordinary people recognize and trust.
"They're getting very good at mimicking the logos of popular companies," Rao said.
The researcher was actually nearly caught up in a phishing scam last year, when an e-mail that appeared to be from UPS informed him that there was a problem with a package he had sent. Even Rao, a highly experienced cybersecurity researcher, nearly fell for the scam, as he happened to have recently mailed a package via UPS.
"In any of these situations, overconfidence is always a killer," he said.
Rao's study, which he collaborated on with colleagues from The University of Texas at Arlington and Columbia College, utilized an experimental survey that had subjects choose between the genuine and the sinister e-mails that he and his colleagues had created for the project. Afterward, the subjects explained why they made their choices, which allowed Rao to classify which type of overconfidence was playing a role in their decision-making processes.
"Our study's focus on different types of over-confidence is unique, and allows us to understand why certain tactics appeal to different people," Rao said. "It helps us to figure out ways to teach people to guard against these kinds of methods."
According to Rao, people will continue to be victimized by phishing scams until the public becomes better educated and, subsequently, less overconfident. He suggested citizen workshops or even an online game that would inform people of the newer every day dangers of the internet.
"Thousands of e-mails are sent out every day with the aim of harming someone or gaining access to their financial information," Rao said. "Avoiding that kind of damage is entirely in our own hands."
UTSA is ranked among the top 400 universities in the world and among the top 100 in the nation, according to Times Higher Education.
Read H.R. Rao's study "Overconfidence in Phishing E-mail Detection."
Learn more about theUTSA Department of Information Systems and Cyber Security.
Learn more aboutcybersecurity at UTSA.
Dr. Gaye Theresa Johnson, associate professor of Chicana and Chicano Studies, and African American Studies, at the University of California at Los Angeles is the guest speaker at this free, open event. Johnson is also the author of "Spaces of Conflict Sounds of Solidarity: Music, Race, and Spacial Entitlement in Los Angeles" and "Futures of Black Radicalism."University Center, Denman Room (UC 02.01.28), Main Campus
The UTSA Consortium for Social Transformation; African American Studies Program presents guest speaker Dr. Gaye Theresa Johnson, associate professor of Chicana and Chicano Studies, and African American Studies, University of California at Los Angelesand author of "Spaces of Conflict Sounds of Solidarity: Music, Race, and Spacial Entitlement in Los Angeles" and "Futures of Black Radicalism." The event is free and open to the public.University Center, Denman Room (UC 2.01.28), Main Campus
The UTSA Honors College hosts a sneak CineFestival preview of the documentary Somos Lengua, a new documentary about the Mexican hip hop scene. Jim Mendiola, the CineFestival Director, will screen the movie and present a festival overview.University Center, Bexar Room (UC 1.102), Main Campus
Grab your friends, family, kids and dog for this annual fun run on the UTSA Main Campus benefititng the UTSA Alumni Association.Convocation Center, Main Campus
Join the Department of Interdisciplinary Learning and Teaching for the 13th annual Storytelling Festival. The festival will feature keynote speaker Carolina Quiroga-Stultz, a Colombian Storyteller and journalist. This event is free and open to the public.Main Building, ground floor, Main Campus
The IDS Colloquium showcases the excellent scholarship done by the IDS students in the College of Education and Human Development at UTSA. In addition, this event also honors the legacy of Dr. Marian Martinello.Business Building, University Room (BB 2.06.04), Main Campus
The Department of Biology and the Be the Match Team will collaborate to engage and educate our students in the importance of a life saving donation through peripheral blood stem cells and a marrow harvest.UC Paseo and Central Plaza, Main Campus
UTSA welcomes the Italian-born duo Bandini-Chiacchiaretta. They've toured the world performing Argentine Tango music on guitar and bandoneon, the instrument of Astor Piazzolla. Tickets are $10 or free with UTSA Student I.D.Arts Building, Recital Hall (ARTS 2.03.02), Main Campus