Security warnings do better if they use scammers' tricks, research finds

  • 0 Replies

Offline Bugbatter

  • Microsoft® MVP
  • Administrator
  • Diamond Member
  • 10660

There's been much fiddling around with security warnings to see which versions work best: should they be passive and not require users to do anything? (Not so good.) Active? (Better.) Where should the dialogue boxes be positioned? What about the amount of text, message length or extent of technical gnarliness?

Now, in a systematic attempt to determine what gets people to comply with warning messages, two researchers at the University of Cambridge's Computer Laboratory actually modeled their security warnings on scammers' messages in their research.

Microsoft MVP Consumer Security 2006-2016
Microsoft Windows Insider MVP 2016-