Journal of Management and Strategy

Phishing is the use of electronic media, like emails and SMS messages, to fraudulently elicit private information or obtain money under false pretence. Though there is considerable interest in phishing as a security problem, there is little previous research from the human factors perspective and in particular very little empirical support for what makes phishing effective or successful and therefore how best to defend people from it. In this paper, we report findings of an experimental lab study to investigate individuals' strategies dealing with mobile phishing attacks.