UTSA study shows how phishing scams thrive on overconfidence
(Jan. 9, 2017) -- A new study by H.R. Rao, AT&T Distinguished Chair in Infrastructure Assurance and Security at The University of Texas at San Antonio (UTSA), examines overconfidence in detecting phishing e-mails. According to Rao, most people believe they're smarter than the criminals behind these schemes, which is why so many fall easily into a trap.
"A big advantage for phishers is self efficacy," Rao, a UTSA College of Business faculty member, said. "Many times, people think they know more than they actually do, and are smarter than someone trying to pull of a scam via an e-mail."
However, phishing has continued to evolve with the internet. It's no longer strangers posing as troubled Nigerian princes looking to cheat the average person out of their credit card information. Instead, phishing e-mails often look like messages from companies ordinary people recognize and trust.
"They're getting very good at mimicking the logos of popular companies," Rao said.
The researcher was actually nearly caught up in a phishing scam last year, when an e-mail that appeared to be from UPS informed him that there was a problem with a package he had sent. Even Rao, a highly experienced cybersecurity researcher, nearly fell for the scam, as he happened to have recently mailed a package via UPS.
"In any of these situations, overconfidence is always a killer," he said.
Rao's study, which he collaborated on with colleagues from The University of Texas at Arlington and Columbia College, utilized an experimental survey that had subjects choose between the genuine and the sinister e-mails that he and his colleagues had created for the project. Afterward, the subjects explained why they made their choices, which allowed Rao to classify which type of overconfidence was playing a role in their decision-making processes.
"Our study's focus on different types of over-confidence is unique, and allows us to understand why certain tactics appeal to different people," Rao said. "It helps us to figure out ways to teach people to guard against these kinds of methods."
According to Rao, people will continue to be victimized by phishing scams until the public becomes better educated and, subsequently, less overconfident. He suggested citizen workshops or even an online game that would inform people of the newer every day dangers of the internet.
"Thousands of e-mails are sent out every day with the aim of harming someone or gaining access to their financial information," Rao said. "Avoiding that kind of damage is entirely in our own hands."
UTSA is ranked among the top 400 universities in the world and among the top 100 in the nation, according to Times Higher Education.
Read H.R. Rao's study "Overconfidence in Phishing E-mail Detection."
Learn more about the UTSA Department of Information Systems and Cyber Security.
Learn more about cybersecurity at UTSA.
Now that some employees are back in the office, others may still be telecommuting. Meetings may be a combination of virtual and face-to-face. This situation can cause challenges within the work environment. Through presentation, scenarios and discussion participants will learn easy strategies to address incivility in their area.Virtual Event
October is Domestic Violence Prevention Month and PEACE Center is asking you to pledge to not use your hands for hitting by putting a handprint on our canvas! All supplies will be provided!McKinney Humanities Building Portico, Main Campus
Dr. Phillip W. Schnarrs is the founder of the UTSA Pride Faculty Staff Association. He is an Associate Professor of Population Health at The University of Texas Dell Medical School and was a 2017 to 2020 Interdisciplinary Research Leaders Fellow with the Robert Wood Johnson Foundation.Retama Auditorium, Student Union, 2.02.02, Main Campus
Work/home life has its stressors, but living in a multigenerational house can move the goal posts. Their discussion looks at how living with parents who may have health issues, your child and their children can create stress both at home and at work.Virtual Event
Dr. Yoojin Muhn and David Waterland conduct this concert. More details to come. The Fall 2021 concert schedule is subject to change. Please continue to monitor our website and social media for updates.This concert will be live-streamed via the UTSA Music Facebook page. https://www.facebook.com/UTSAMusicUTSA Recital Hall, Main Campus
This town hall will include remarks from campus leadership and a presentation of the Campus Climate survey results by Rich Boyer, founding partner of ModernThink, LLC. There will be time for faculty and staff to ask questions and learn more about how the survey data can inform strategies to promote a welcoming and inclusive environment for working, teaching and research at UTSA.Virtual Event
Thematic voice recitals featuring student performances from the Recital Hall stage and live-streamed via our Facebook page.Recital Hall, 1 UTSA Circle, Main Campus