@inproceedings{,
    author = {Gamisch, Laura; Pöhn, Daniela},
    title = {A Study of Different Awareness Campaigns in a Company},
    editor = {},
    booktitle = {ARES '23: Proceedings of the 18th International Conference on Availability, Reliability and Security},
    series = {},
    journal = {},
    address = {New York, NY, USA},
    publisher = {Association for Computing Machinery},
    edition = {},
    year = {2023},
    isbn = {979-8-4007-0772-8},
    volume = {},
    number =  {},
    pages = {68},
    url = {https://doi.org/10.1145/3600160.3605006},
    doi = {10.1145/3600160.3605006},
    keywords = {phishing ; Awareness ; social engineering ; case study},
    abstract = {Phishing is a major cyber threat to organizations that can cause financial and reputational damage, threatening their existence. The technical measures against phishing should be complemented by awareness training for employees. However, there is little validation of awareness measures. Consequently, organizations have an additional burden when integrating awareness training, as there is no consensus on which method brings the best success. This paper examines how awareness concepts can be successfully implemented and validated. For this purpose, various factors, such as requirements and possible combinations of methods, are taken into account in our case study at a small- and medium-sized enterprise (SME). To measure success, phishing exercises are conducted. The study suggests that pleasant campaigns result in better performance in the simulated phishing exercise. In addition, significant improvements and differences in the target groups could be observed. The implementation of awareness training with integrated key performance indicators can be used as a basis for other organizations.},
    note = {},
    institution = {Universität der Bundeswehr München, Fakultät für Informatik, INF 2 - Institut für Softwaretechnologie, Professur: Hommel, Wolfgang},
    
    
}