Eye tracking study to analyze context encoding during phishing decision making

Open Access
Article
Conference Proceedings
Authors: Tianhao XuPrashanth Rajivan
Abstract

Phishing and spear-phishing remain among the most persistent cybersecurity threats. This study examines end-user decision-making in spear-phishing contexts by modelling the relationship between visual attention and responses using eye-tracking measures. Forty-eight university students completed an email management task while eye movements were recorded with a Tobii Nano Pro tracker. Participants classified 50 emails (phishing, spear-phishing, promotional, legitimate) drawn from a corpus of 481 messages. Cognitive load was manipulated via concurrent puzzle solving and validated using NASA-TLX. To minimize bias, participants assumed fictional personas and made realistic decisions without explicit phishing instructions. Cognitive load and fatigue showed no significant effect on phishing susceptibility, though later trials exhibited a marginal increase in response bias. In contrast, eye-tracking metrics strongly predicted decisions. Logistic regression revealed that longer first fixation durations and higher saccade counts increased likelihood of responding, while larger pupil diameters were negatively associated with responses. Beyond results from the experiment, the study proposes attention-based representations integrating eye-tracking with natural language processing to improve cognitive models.

Keywords: Phishing, Attention, Decision Making

DOI: 10.54941/ahfe1007409

Cite this paper
Downloads
0
Visits
1
Download PDF

More from this volume

Cognitive Load and Compliance: A Human-Centric Framework for NIS2 in Latvian SMEsEnhancing Cybersecurity Learning Through Online Platforms and Gamified Approaches
View all articles in Human Factors in Cybersecurity