CAE Tech Talk: “Assessment of Audio and Visual Warnings to Mitigate Risk of Phishing Attacks” and “SEAL Team Transition and What That Means to You”

Posted on 3/19/20 7:06 PM

Mark your calendar and come join us for CAE Forum! CAE Forum is a live, real-time, online, academic forum where members of the CAE community give non-technical presentations on topics of value to the CAE community. CAE Forum is about sharing your ideas, knowledge, and expertise to empower and strengthen our community. It's that simple.

CAE Forum presentations are normally held on the first Wednesday of each month during the fall and spring semesters.

Topic: "Assessment of Audio and Visual Warnings to Mitigate Risk of Phishing Attacks"

Date: April 1, 2020

Time:1:10-1:50 p.m. ET

Location:Zoom Meeting
Just log in as "Guest" and enter your name. No password required.

Audience:Students, professors, government

Presenter(s):Molly Cooper and Yair Levy, Nova Southeastern University

Description:Phishing attacks target significant volume of Americans per year, and costs American organizations in the millions of dollars annually. Phishing is a cyber-attack using social engineering. Social engineering is the psychological manipulation of individuals in order to gain access to computer system(s) that the attacker is not authorized to use. Phishing can be presented in many ways: an email, link, website, text message, and other means. Phishing emails present a threat to both personal and organizational data loss. About 94 percent of cyber-security incidents are due to phishing and/or social engineering.

Significant volume of prior literature documented that end users are continuing to click on phishing links in emails, even after phishing awareness training, and it appears that there is a strong need for creative ways to warn and alert endusers to signs of phishing in emails. Understanding a more aware state of mind, System 2 Thinking Mode (S2) describes an individual in a more aware and alert state that s/he can utilize when making important decisions. End users have tendency to be more deliberate with their choices in S2, as opposed to System 1 Thinking Mode (S1). S1 is moreroutine and not as deliberate. Some ways to trigger S2 include audio alerts, visual alerts, and vibrations. Assisting theend user in noticing signs of phishing in emails could possibly be studied through the delivery of audio and visual alertsand warnings.

This study proposes to design and develop a method for a phishing alert and warning system that warns and alerts usersto the signs of phishing in emails. The main goal of this work-in-progress research is to obtain Subject Matter Experts(SMEs) opinion to develop preliminary ranking of the top 10 signs of phishing in emails, and pair the signs of phishing with corresponding audio and visual warnings to be later used towards a phishing alert and warning system.

Topic: "SEAL Transition and What that Means to You"

Date:April 1, 2020

Time:2:00-2:40 p.m. ET

Location:Zoom Meeting
Just log in as "Guest" and enter your name. No password required.

Audience:Students, professors, government

Presenter(s):Jill Curcio, CAE Program Office

Description:Recently, the CAE Program Office transitioned ownership of the CAE SEAL Program to a different area of NSA. This talk will discuss what that transition means to you as an institution and how we expect the future of the relationship to be adjusted going forward.

CAE Tech Talks are recorded;view them here.

Contact us at CAETechTalk@nsa.gov.

IUP Institute for Cyber Security