magistrsko delo
Matic Virant (Author), Uroš Svete (Mentor), Tina Kogovšek (Co-mentor)

Abstract

V magistrski nalogi preverjam učinkovitost phishing kampanje v enem izmed slovenskih podjetij. Najprej je potrebno definirati kaj sploh phishing je, kakšen je proces phishing napada in kakšne posledice prinaša uspešen phishing napad. V magistrski nalogi navajam tudi nekatere podobne oblike phishing napadov, ki so potencialno lahko še bolj učinkovite in imajo tudi širše posledice. Omenjam tudi nekatere obrambne mehanizme, katerih implementacija in uporaba do neke mere varuje posameznike pred phishing napadi. Obrambnih mehanizmov je več, vendar implementacija in uporaba le enega pogosto ni dovolj za učinkovito obrambo pred phishing napadi, zato se za večjo varnost pred phishing napadi priporoča kombinacija več obrambnih mehanizmov. Pred izvedbo simuliranega phishing napada odkrivam kakšni so vzroki uspešnosti phishing kampanj in zakaj so phishing kampanje tako uspešne. Simulacija phishing napada je bila izvedena na vzorcu približno stotih zaposlenih v neimenovanem slovenskem podjetju. Zaposlene v podjetju sem na koncu razdelil po oddelkih. Kot hipotezi magistrske naloge sem si zadal, da bo simulacija phishing napada vsaj 10% uspešna, prav tako pa sem napovedal, da bo oddelek prodaje najbolj neuspešen pri prepoznavanju phishing napada.

Keywords

phishing;obrambni mehanizmi;phishing kampanje;

Data

Language: Slovenian
Year of publishing:
Typology: 2.09 - Master's Thesis
Organization: UL FDV - Faculty of Social Sciences
Publisher: [M. Virant]
UDC: 004.738.5:343.222.2(043.2)
COBISS: 93595907 Link will open in a new window
Views: 199
Downloads: 42
Average score: 0 (0 votes)
Metadata: JSON JSON-RDF JSON-LD TURTLE N-TRIPLES XML RDFA MICRODATA DC-XML DC-RDF RDF

Other data

Secondary language: English
Secondary title: Reasons for the success of phishing campaigns in companies
Secondary abstract: In my master's thesis I am checking the effectiveness of a phishing campaign in one of the Slovenian companies. First of all, it is necessary to define what phishing is, what the process of a phishing attack is and what the consequences of a successful phishing attack are. In my master's thesis, I also list some similar forms of phishing attacks, which can potentially be even more effective and also have wider consequences. I also mention some defense mechanisms, which through use and implementation are used to, some extent, protect individuals from phishing attacks. There are several defense mechanisms, but the implementation and use of just one is often not enough to effectively defend against phishing attacks, therefore a combination of several defense mechanisms is recommended for greater security against phishing attacks. Before carrying out a simulated phishing attack, I discover the reasons for the success of phishing campaigns and why phishing campaigns are so successful. The simulation of the phishing attack was performed on a sample of about a hundred employees in an unnamed Slovenian company. I divided the company’s employees by departments. As a master’s thesis hypothesis, I set the goal that a simulation of a phishing attack would be at least 10% successful, and I also predicted that the sales department would be most unsuccessful in recognizing a phishing attack.
Secondary keywords: phishing;defense mechanisms;phishing campaigns;Podjetja;Internet;Phishing prevare;Univerzitetna in visokošolska dela;
Type (COBISS): Master's thesis/paper
Study programme: 0
Thesis comment: Univ. v Ljubljani, Fak. za družbene vede
Pages: 77 str.
ID: 14283300