Supporting the Design of Phishing Education, Training and Awareness interventions: an LLM-based approach

Giuseppe Desolda, Francesco Greco, Luca Viganò

Research output: Chapter in Book/Report/Conference proceedingConference paperpeer-review

42 Downloads (Pure)

Abstract

Phishing remains one of the most effective cyber threats in our digital world, affecting millions of organizations. Phishing education, training, and awareness programs are used to address employees’ lack of knowledge about phishing attacks. However, despite being very expensive, these interventions are not always effective, mainly due to the lack of customization of training materials based on the employees’ needs and profiles. In fact, creating customized training content for each employee and each context would require a huge effort from security practitioners and educators thus increasing costs even more. The proposal we present in this paper is to use Large Language Models to automate some steps in the design process of training content, which is tailored to the specific user profile.
Original languageEnglish
Title of host publication2nd International Workshop on CyberSecurity Education for Industry and Academia (CSE4IA 2024)
PublisherCEUR Workshop Proceedings
Number of pages14
Publication statusAccepted/In press - 1 May 2024

Fingerprint

Dive into the research topics of 'Supporting the Design of Phishing Education, Training and Awareness interventions: an LLM-based approach'. Together they form a unique fingerprint.

Cite this