{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,24]],"date-time":"2026-03-24T16:37:21Z","timestamp":1774370241745,"version":"3.50.1"},"reference-count":70,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"am","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"name":"NSF, a DoD UC2 Grant","award":["#2115134"],"award-info":[{"award-number":["#2115134"]}]},{"name":"Colorado State Bill 18-086"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2024]]},"DOI":"10.1109\/access.2024.3514603","type":"journal-article","created":{"date-parts":[[2024,12,11]],"date-time":"2024-12-11T02:00:53Z","timestamp":1733882453000},"page":"187512-187535","source":"Crossref","is-referenced-by-count":4,"title":["Quantifying Psychological Sophistication of Malicious Emails"],"prefix":"10.1109","volume":"12","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-9156-050X","authenticated-orcid":false,"given":"Theodore","family":"Tangie Longtchi","sequence":"first","affiliation":[{"name":"Department of Computer Science, University of Colorado Colorado Springs, Colorado Springs, CO, USA"}]},{"given":"Rosana","family":"Monta\u00f1ez Rodriguez","sequence":"additional","affiliation":[{"name":"Department of Computer Science, University of Texas at San Antonio, Sans Antonio, TX, USA"}]},{"given":"Kora","family":"Gwartney","sequence":"additional","affiliation":[{"name":"Department of Computer Science, University of Colorado Colorado Springs, Colorado Springs, CO, USA"}]},{"ORCID":"https:\/\/orcid.org\/0009-0000-5110-2371","authenticated-orcid":false,"given":"Ekzhin","family":"Ear","sequence":"additional","affiliation":[{"name":"Department of Computer Science, University of Colorado Colorado Springs, Colorado Springs, CO, USA"}]},{"given":"David P.","family":"Azari","sequence":"additional","affiliation":[{"name":"Department of Behavioral Sciences and Leadership, United States Air Force Academy, Colorado Springs, CO, USA"}]},{"given":"Christopher P.","family":"Kelley","sequence":"additional","affiliation":[{"name":"Department of Behavioral Sciences and Leadership, United States Air Force Academy, Colorado Springs, CO, USA"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8034-0942","authenticated-orcid":false,"given":"Shouhuai","family":"Xu","sequence":"additional","affiliation":[{"name":"Department of Computer Science, University of Colorado Colorado Springs, Colorado Springs, CO, USA"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1016\/s1361-3723(21)00061-0"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/CNS56114.2022.9947260"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/ISI49825.2020.9280539"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/ISI49825.2020.9280522"},{"key":"ref5","first-page":"773","article-title":"Towards measuring and mitigating social engineering software download attacks","volume-title":"Proc. 25th USENIX Secur. Symp.","author":"Nelms"},{"issue":"1","key":"ref6","first-page":"1","article-title":"The human factor in phishing","volume":"7","author":"Jakobsson","year":"2007","journal-title":"Privacy Secur. Consum. Inf."},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.17705\/1jais.00447"},{"issue":"3","key":"ref8","doi-asserted-by":"crossref","first-page":"576","DOI":"10.1016\/j.dss.2011.03.002","article-title":"Why do people get phished?","volume":"51","author":"Vishwanath","year":"2011","journal-title":"Decis. Support Syst."},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1002\/9781119644682"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/1124772.1124861"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/JPROC.2024.3379855"},{"key":"ref12","volume-title":"Phishing Activity Trends Report-Unifying the Global Response To Cybercrime","year":"2021"},{"key":"ref13","volume-title":"Phishing Activity Trends Report-Unifying the Global Response To Cybercrime","year":"2023"},{"key":"ref14","first-page":"1273","article-title":"Detecting and characterizing lateral phishing at scale","volume-title":"Proc. 28th USENIX Secur. Symp.","author":"Ho"},{"key":"ref15","first-page":"361","article-title":"Sunrise to sunset: Analyzing the end-to-end life cycle and effectiveness of phishing attacks at scale","volume-title":"Proc. 29th Secur. Symp.","author":"Oest"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-00470-5_4"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1016\/j.mex.2023.102545"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1213\/ane.0000000000002864"},{"key":"ref19","first-page":"1","article-title":"Computing krippendorff\u2019s alpha-reliability","volume":"2","author":"Krippendorff","year":"2011","journal-title":"Empty"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/MSEC.2019.2940952"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1108\/ICS-05-2014-0029"},{"key":"ref22","first-page":"1309","article-title":"Cognitive triaging of phishing attacks","volume-title":"Proc. 28th USENIX Secur. Symp.","author":"Heijden"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/STAST.2015.10"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1145\/3407023.3409179"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2023.103671"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2021.102259"},{"key":"ref27","first-page":"407","article-title":"The fog of warnings: How non-essential notifications blur with security warnings","volume-title":"Proc. 15th Symp. Usable Privacy Secur. (SOUPS)","author":"Vance"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/STAST.2014.12"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3051633"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2020.101862"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1108\/ICS-04-2017-0022"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-20376-8_4"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1109\/TPC.2012.2208392"},{"key":"ref34","first-page":"1","article-title":"Characterizing the evolution of psychological factors exploited by malicious emails","volume-title":"Proc. Int. Conf. Sci. Cyber Secur.","author":"Longtchi"},{"key":"ref35","first-page":"1","article-title":"Characterizing the evolution of psychological tactics and techniques exploited by malicious emails","volume-title":"Proc. Int. Conf. Sci. Cyber Secur.","author":"Longtchi"},{"key":"ref36","volume-title":"MITRE ATT&CK","year":"2023"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-17551-0_32"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1080\/0144929X.2019.1583769"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1016\/j.chb.2016.12.044"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.3389\/fpsyg.2020.01755"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-75961-1_5"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1145\/1897852.1897872"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1037\/h0023552"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1109\/CIT.2010.182"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1177\/0956797611436349"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1145\/1290958.1290968"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1016\/B978-0-323-90570-1.00012-7"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.14722\/eurousec.2016.23002"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.2991\/aebmr.k.220307.287"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1016\/j.copsyc.2018.03.001"},{"key":"ref51","doi-asserted-by":"publisher","DOI":"10.23919\/SEEDA-CECNSM.2018.8544934"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2023.103600"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.3389\/fpsyg.2018.00135"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1145\/3415231"},{"key":"ref55","first-page":"1298","article-title":"Is real-time phishing eliminated with FIDO? Social engineering downgrade attacks against FIDO Protocols","volume":"2020","author":"Ulqinaku","year":"2020","journal-title":"IACR Cryptol. ePrint Arch."},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1016\/j.compedu.2020.103894"},{"key":"ref57","doi-asserted-by":"publisher","DOI":"10.1186\/s12874-016-0200-9"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.20982\/tqmp.08.1.p023"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.3389\/fpsyg.2021.637547"},{"key":"ref60","volume-title":"{Anti-Phishing Working Group (APWG)","year":"2024"},{"key":"ref61","volume-title":"U.S.-CERT Federal Incident Notification Guidelines","year":"2024"},{"key":"ref62","volume-title":"Where Does the 10% Condition Come From?","year":"2024"},{"key":"ref63","volume-title":"Approximating Independence With the 10 Percent Rule","author":"Boddie","year":"2024"},{"key":"ref64","volume-title":"Scamdoc.com","year":"2023"},{"key":"ref65","doi-asserted-by":"publisher","DOI":"10.1109\/ICSECS58457.2023.10256280"},{"key":"ref66","volume-title":"Krippendorff\u2019s Alpha Basic Concepts","author":"Zaiontz","year":"2023"},{"key":"ref67","volume-title":"Inter-rater Reliability Metrics: An Introduction To Krippendorff\u2019s Alpha","author":"Mauboussin","year":"2024"},{"key":"ref68","doi-asserted-by":"publisher","DOI":"10.1017\/cbo9781139026086.003"},{"key":"ref69","doi-asserted-by":"publisher","DOI":"10.4108\/cc.1.1.e3"},{"key":"ref70","doi-asserted-by":"publisher","DOI":"10.11613\/BM.2012.031"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"https:\/\/ieeexplore.ieee.org\/ielam\/6287639\/10380310\/10788677-aam.pdf","content-type":"application\/pdf","content-version":"am","intended-application":"syndication"},{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/6287639\/10380310\/10788677.pdf?arnumber=10788677","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,12,18]],"date-time":"2024-12-18T19:44:56Z","timestamp":1734551096000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10788677\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"references-count":70,"URL":"https:\/\/doi.org\/10.1109\/access.2024.3514603","relation":{},"ISSN":["2169-3536"],"issn-type":[{"value":"2169-3536","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024]]}}}