This study explores the potential of gamification as an effective method to simulate social engineering attacks and enhance cybersecurity awareness among employees. Given the increasing sophistication of social engineering tactics, traditional security training needs to be improved, prompting a need for innovative approaches. The objective of this research is to develop guidelines for using gamification to simulate social engineering attacks, focusing on methods that increase employee engagement and improve their ability to recognize and respond to these threats. This study employed a systematic literature review to examine current gamification techniques and lay the groundwork for developing these guidelines. The search criteria initially identified 232 papers and after screening, only 12 papers were reviewed. Findings indicate that gamification techniques, such as simulations, challenges, and reward systems, hold substantial promise in enhancing cybersecurity awareness.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Gamified Defence: Practical Guidelines for Combating Social Engineering Attacks

  • Amandla Mpanza,
  • Tapiwa Gundu,
  • Lynn Futcher

摘要

This study explores the potential of gamification as an effective method to simulate social engineering attacks and enhance cybersecurity awareness among employees. Given the increasing sophistication of social engineering tactics, traditional security training needs to be improved, prompting a need for innovative approaches. The objective of this research is to develop guidelines for using gamification to simulate social engineering attacks, focusing on methods that increase employee engagement and improve their ability to recognize and respond to these threats. This study employed a systematic literature review to examine current gamification techniques and lay the groundwork for developing these guidelines. The search criteria initially identified 232 papers and after screening, only 12 papers were reviewed. Findings indicate that gamification techniques, such as simulations, challenges, and reward systems, hold substantial promise in enhancing cybersecurity awareness.