Skip to Main content Skip to Navigation
Conference papers

Phishing and Organisational Learning

Abstract : The importance of addressing the human aspect in information security has grown over the past few years. One of the most frequent techniques used to obtain private or confidential information from humans is phishing. One way to combat these phishing scams is to have proper security awareness programs in place. In order to enhance the awareness and educational value of information security awareness programs, it is suggested that an organisational learning model, characterised by so called single-loop and double-loop learning, be considered. This paper describes a practical phishing experiment that was conducted at a large organisation and shows how a learning process was initiated and how security incidents such as phishing can be used successfully for both single and double-loop learning.
Document type :
Conference papers
Complete list of metadata

Cited literature [20 references]  Display  Hide  Download
Contributor : Hal Ifip <>
Submitted on : Thursday, February 9, 2017 - 5:24:15 PM
Last modification on : Thursday, February 9, 2017 - 5:37:19 PM
Long-term archiving on: : Wednesday, May 10, 2017 - 2:53:34 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Wayne Kearney, Hennie Kruger. Phishing and Organisational Learning. 28th Security and Privacy Protection in Information Processing Systems (SEC), Jul 2013, Auckland, New Zealand. pp.379-390, ⟨10.1007/978-3-642-39218-4_28⟩. ⟨hal-01463839⟩



Record views


Files downloads