Abstract:

Nowadays, cyber-attacks are becoming an increasingly significant threat to organizations and individuals. The most common cyber attacks nowadays are phishing attacks. The highest incidence of phishing attacks was reported especially during the COVID-19 pandemic, as shown by publicly available statistics. That’s why this article deals with phishing attacks and solutions for prevention and protection against them. A phishing attack is characterized by misusing people's trust to trick them into making security mistakes. So, it can be concluded that the key to the success of a phishing attack is the failure of the human factor. To reduce the chances of human error, various educational programs are used to educate people about how to detect phishing attacks. Therefore, this article aims to propose a universal framework for phishing training that can be implemented within self-education or various small or larger organizations. A properly designed and implemented phishing training framework can help in raising awareness of phishing attacks and eventually reduce the success rate of phishing attacks.

Keywords:

Phishing attack, cyber attack, phishing training, framework, prevention, protection, cyber security.