Phil makes anti-phishing education child's play

Posted by   Virus Bulletin on   Oct 1, 2007

Researchers create game to raise awareness.

Researchers at Carnegie Mellon University have created an interactive game designed to teach players how to identify phishing URLs and how to be aware of phishing dangers and fraudulent websites when navigating the Internet.

The phishy game features, appropriately enough, a fish called Phil, who lives in 'Interweb Bay' and whose task is to identify URLs (represented by swimming worms) as good (edible) or bad (non-edible). The game's developers claim that, in tests, people who spent 15 minutes playing 'Anti-phishing Phil' were better able to identify phony websites than those who spent 15 minutes participating in more traditional anti-phishing tutorials.

The Nemo-esque Phil and friends will certainly appeal to younger web users, although the game's developers pitch their product as an entertaining way to educate employees or customers - and one wonders exactly how employees and customers will feel being asked to participate in a somewhat pedestrian game whose graphics resemble a child's cartoon. However, the use of the game in schools could certainly prove to be a successful strategy.

A preview version of Anti-Phishing Phil is available at http://cups.cs.cmu.edu/antiphishing_phil/ and, in collaboration with Portugal Telecom, a Portuguese version of the game ('Anti-Phishing Ze' - which appears to feature a bright green frog in place of the fish) is also available.

Anti-Phishing Phil

Posted on 01 October 2007 by Virus Bulletin

twitter.png
fb.png
linkedin.png
hackernews.png
reddit.png

 

Latest posts:

VBSpam tests to be executed under the AMTSO framework

VB is excited to announce that, starting from the Q3 test, all VBSpam tests of email security products will be executed under the AMTSO framework.

In memoriam: Prof. Ross Anderson

We were very sorry to learn of the passing of Professor Ross Anderson a few days ago.

In memoriam: Dr Alan Solomon

We were very sorry to learn of the passing of industry pioneer Dr Alan Solomon earlier this week.

New paper: Nexus Android banking botnet – compromising C&C panels and dissecting mobile AppInjects

In a new paper, researchers Aditya K Sood and Rohit Bansal provide details of a security vulnerability in the Nexus Android botnet C&C panel that was exploited in order to gather threat intelligence, and present a model of mobile AppInjects.

New paper: Collector-stealer: a Russian origin credential and information extractor

In a new paper, F5 researchers Aditya K Sood and Rohit Chaturvedi present a 360 analysis of Collector-stealer, a Russian-origin credential and information extractor.

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.