{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,19]],"date-time":"2026-02-19T07:16:04Z","timestamp":1771485364474,"version":"3.50.1"},"reference-count":57,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"DOI":"10.13039\/501100000780","name":"European Commission","doi-asserted-by":"publisher","award":["n.952647 (AssureMOSS)"],"award-info":[{"award-number":["n.952647 (AssureMOSS)"]}],"id":[{"id":"10.13039\/501100000780","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100000780","name":"European Commission","doi-asserted-by":"publisher","award":["n.101120393 (Sec4AI4Sec)"],"award-info":[{"award-number":["n.101120393 (Sec4AI4Sec)"]}],"id":[{"id":"10.13039\/501100000780","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100003246","name":"Dutch Research Council","doi-asserted-by":"crossref","award":["n.NWA-1215.18.006 (Theseus)"],"award-info":[{"award-number":["n.NWA-1215.18.006 (Theseus)"]}],"id":[{"id":"10.13039\/501100003246","id-type":"DOI","asserted-by":"crossref"}]},{"DOI":"10.13039\/501100003246","name":"Dutch Research Council","doi-asserted-by":"crossref","award":["n.KICH1.VE01.20.004 (HEWSTI)"],"award-info":[{"award-number":["n.KICH1.VE01.20.004 (HEWSTI)"]}],"id":[{"id":"10.13039\/501100003246","id-type":"DOI","asserted-by":"crossref"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans.Inform.Forensic Secur."],"published-print":{"date-parts":[[2024]]},"DOI":"10.1109\/tifs.2024.3456960","type":"journal-article","created":{"date-parts":[[2024,9,10]],"date-time":"2024-09-10T18:44:49Z","timestamp":1725993889000},"page":"9419-9432","source":"Crossref","is-referenced-by-count":2,"title":["A Case-Control Study to Measure Behavioral Risks of Malware Encounters in Organizations"],"prefix":"10.1109","volume":"19","author":[{"ORCID":"https:\/\/orcid.org\/0009-0006-2966-5112","authenticated-orcid":false,"given":"Marcello","family":"Meschini","sequence":"first","affiliation":[{"name":"University of Trento, Trento, Italy"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8713-8197","authenticated-orcid":false,"given":"Giorgio Di","family":"Tizio","sequence":"additional","affiliation":[{"name":"University of Trento, Trento, Italy"}]},{"given":"Marco","family":"Balduzzi","sequence":"additional","affiliation":[{"name":"TRL, Trend Micro, Sesto San Giovanni, Italy"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1091-8486","authenticated-orcid":false,"given":"Fabio","family":"Massacci","sequence":"additional","affiliation":[{"name":"University of Trento, Trento, Italy"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-30215-3_18"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23522"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134022"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00019"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660330"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1145\/2590296.2590347"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/3565362"},{"key":"ref8","first-page":"1","article-title":"One size does not fit all: Quantifying the risk of malicious app encounters for different Android user profiles","volume-title":"Proc. USENIX","author":"Dambra"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1145\/3243734.3243779"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/2890509"},{"key":"ref11","first-page":"1","article-title":"Plug and prey? measuring the commoditization of cybercrime via online anonymous markets","volume-title":"Proc. USENIX","author":"van Wegberg"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00054"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1145\/3427228.3427256"},{"key":"ref14","first-page":"1","article-title":"When malware changed its mind: An empirical study of variable program behaviors in the real world","volume-title":"Proc. USENIX","author":"Avllazagaj"},{"key":"ref15","volume-title":"Sp 800\u201330: Guide for Conducting Risk Assessments","year":"2012"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.14236\/ewic\/HCI2017.48"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1136\/bmj.2.4682.739"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1145\/2630069"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00053"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSPW55150.2022.00021"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2015.2427847"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSPW51379.2020.00075"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1145\/2746194.2746202"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1145\/3291061"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/3429741"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2021.24475"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-47854-7_2"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3133971"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2021.3051804"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1145\/3366423.3380124"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1145\/3210311"},{"key":"ref32","volume-title":"Trend Micro Reports Earnings Results for Q2 2023 Marking 99th Quarter of Profitability","year":"2023"},{"key":"ref33","volume-title":"Trend Micro Blocks Over 94 Billion Threats in 2021","year":"2021"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1136\/bmj.i969"},{"key":"ref35","volume-title":"Modern Epidemiology","volume":"3","author":"Rothman","year":"2008"},{"key":"ref36","first-page":"1","article-title":"Replication: Why we still can\u2019t browse in peace: On the uniqueness and reidentifiability of web browsing histories","volume-title":"Proc. SOUPS","author":"Bird"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1191\/0962280202sm289ra"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.3238\/arztebl.2009.0335"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1145\/1135777.1135853"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2008.52"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-70542-0_11"},{"key":"ref42","volume-title":"Site Safety Center, TrendMicro"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23386"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516747"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2020.24161"},{"key":"ref46","article-title":"Symantec internet security threat report trends for 2010","volume":"24","author":"O\u2019Gorman","year":"2019"},{"key":"ref47","volume-title":"Wannacry Malware Profilemitre Attack Tactics","year":"2023"},{"key":"ref48","first-page":"1","article-title":"99% false positives: A qualitative study of SOC analysts\u2019 perspectives on security alarms","volume-title":"Proc. USENIX","author":"Alahmadi"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.48"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2022.3176674"},{"key":"ref51","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978313"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382284"},{"key":"ref53","article-title":"Security behavior observatory: Infrastructure for longterm monitoring of client machines","author":"Forget","year":"2014"},{"key":"ref54","first-page":"97","article-title":"Do or do not, there is no try: User engagement may not improve security outcomes","volume-title":"Proc. SOUPS","author":"Forget"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3133973"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1111\/risa.13732"},{"key":"ref57","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2008.33"}],"container-title":["IEEE Transactions on Information Forensics and Security"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/10206\/10319981\/10672526.pdf?arnumber=10672526","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,10,12]],"date-time":"2024-10-12T04:29:46Z","timestamp":1728707386000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10672526\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"references-count":57,"URL":"https:\/\/doi.org\/10.1109\/tifs.2024.3456960","relation":{},"ISSN":["1556-6013","1556-6021"],"issn-type":[{"value":"1556-6013","type":"print"},{"value":"1556-6021","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024]]}}}