{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:08:33Z","timestamp":1750219713106,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":27,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,10,16]],"date-time":"2023-10-16T00:00:00Z","timestamp":1697414400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"German Federal Ministry of Education and Research","award":["16KIS1113"],"award-info":[{"award-number":["16KIS1113"]}]},{"name":"Methods for Engineering Secure Systems, of the Helmholtz Association (HGF) and KASTEL Security Research Labs","award":["46.23.01"],"award-info":[{"award-number":["46.23.01"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,10,16]]},"DOI":"10.1145\/3617072.3617101","type":"proceedings-article","created":{"date-parts":[[2023,10,13]],"date-time":"2023-10-13T17:47:04Z","timestamp":1697219224000},"page":"312-317","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Vision: What the hack is going on? A first look at how website owners became aware that their website was hacked"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-6964-589X","authenticated-orcid":false,"given":"Anne","family":"Hennig","sequence":"first","affiliation":[{"name":"SECUSO \/ AIFB, Karlsruhe Institute of Technology, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0007-3030-1612","authenticated-orcid":false,"given":"Nhu Thi Thanh","family":"Vuong","sequence":"additional","affiliation":[{"name":"Karlsruhe Institute of Technology, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6267-4874","authenticated-orcid":false,"given":"Peter","family":"Mayer","sequence":"additional","affiliation":[{"name":"University of Southern Denmark, Denmark"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2023,10,16]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"crossref","unstructured":"Davide Canali Davide Balzarotti and Aur\u00e9lien Francillon. 2013. The role of web hosting providers in detecting compromised websites. (2013) 177\u2013188.","DOI":"10.1145\/2488388.2488405"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICComm.2016.7528327"},{"key":"e_1_3_2_1_3_1","volume-title":"The Matter of Heartbleed. IMC \u201914","author":"Durumeric Zakir","year":"2014","unstructured":"Zakir Durumeric, Frank Li, James Kasten, Johanna Amann, Jethro Beekman, Mathias Payer, Nicolas Weaver, David Adrian, Vern Paxson, Michael Bailey, and J\u00a0Alex Halderman. 2014. The Matter of Heartbleed. IMC \u201914 (2014), 475\u2013488."},{"key":"e_1_3_2_1_4_1","volume-title":"Fogg and Hsiang Tseng","author":"J.","year":"1999","unstructured":"B.\u00a0J. Fogg and Hsiang Tseng. 1999. The elements of computer credibility. CHI \u201999 (1999), 80\u201387."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-12172-2_17"},{"key":"e_1_3_2_1_6_1","volume-title":"Standing out among the daily spam: How to catch website owners","author":"Hennig Anne","year":"2022","unstructured":"Anne Hennig, Fabian Neusser, Aleksandra\u00a0Alicja Pawelek, Dominik Herrmann, and Peter Mayer. 2022. Standing out among the daily spam: How to catch website owners\u2019 attention by means of vulnerability notifications. CHI \u201922 (2022), 1\u20138."},{"key":"e_1_3_2_1_7_1","unstructured":"Sucuri Inc.2023. 2022 Website Threat Research Report. https:\/\/sucuri.net\/wp-content\/uploads\/2023\/04\/Sucuri_2022-Website-Threat-Research-Report.pdf"},{"key":"e_1_3_2_1_8_1","first-page":"161","article-title":"Mistrust Plugins You Must: A Large-Scale Study Of Malicious Plugins In WordPress Marketplaces","volume":"22","author":"Kasturi Ranjita\u00a0Pai","year":"2022","unstructured":"Ranjita\u00a0Pai Kasturi, Jonathan Fuller, Yiting Sun, Omar Chabklo, Andres Rodriguez, Jeman Park, and Brendan Saltaformaggio. 2022. Mistrust Plugins You Must: A Large-Scale Study Of Malicious Plugins In WordPress Marketplaces. USENIX Security 22 (2022), 161\u2013178.","journal-title":"USENIX Security"},{"key":"e_1_3_2_1_9_1","first-page":"111","article-title":"Exit from Hell? Reducing the Impact of Amplification DDoS Attacks","volume":"14","author":"K\u00fchrer Marc","year":"2014","unstructured":"Marc K\u00fchrer, Thomas Hupperich, Christian Rossow, and Thorsten Holz. 2014. Exit from Hell? Reducing the Impact of Amplification DDoS Attacks. USENIX Security 14 (2014), 111\u2013125.","journal-title":"USENIX Security"},{"key":"e_1_3_2_1_10_1","volume-title":"You\u2019ve Got Vulnerability: Exploring Effective Vulnerability Notifications. USENIX Security 16","author":"Li Frank","year":"2016","unstructured":"Frank Li, Zakir Durumeric, Jakub Czyz, Mohammad Karami, Michael Bailey, Damon McCoy, Stefan Savage, and Vern Paxson. 2016. You\u2019ve Got Vulnerability: Exploring Effective Vulnerability Notifications. USENIX Security 16 (2016)."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/2872427.2883039"},{"key":"e_1_3_2_1_12_1","volume-title":"Snail Mail Beats Email Any Day: On Effective Operator Security Notifications in the Internet. ARES 2021","author":"Maass Max","year":"2021","unstructured":"Max Maass, Marc-Pascal Clement, and Matthias Hollick. 2021. Snail Mail Beats Email Any Day: On Effective Operator Security Notifications in the Internet. ARES 2021 (2021), 1\u201313."},{"key":"e_1_3_2_1_13_1","first-page":"2489","article-title":"Effective notification campaigns on the web: A matter of Trust, Framing, and Support","volume":"21","author":"Maass Max","year":"2021","unstructured":"Max Maass, Alina St\u00f6ver, Henning Prid\u00f6hl, Sebastian Bretthauer, Dominik Herrmann, Matthias Hollick, and Indra Spiecker. 2021. Effective notification campaigns on the web: A matter of Trust, Framing, and Support. USENIX Security 21 (2021), 2489\u20132506.","journal-title":"USENIX Security"},{"key":"e_1_3_2_1_14_1","volume-title":"Best Practices for Notification Studies for Security and Privacy Issues on the Internet. ARES 2021","author":"Maa\u00df Max","year":"2021","unstructured":"Max Maa\u00df, Henning Prid\u00f6hl, Dominik Herrmann, and Matthias Hollick. 2021. Best Practices for Notification Studies for Security and Privacy Issues on the Internet. ARES 2021 (2021), 1\u201310."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICCIC.2014.7238337"},{"key":"e_1_3_2_1_16_1","unstructured":"Marina Pasquali. 2023. E-commerce worldwide - statistics & facts. https:\/\/www.statista.com\/topics\/871\/online-shopping\/"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1177\/1525822x08317085"},{"key":"e_1_3_2_1_18_1","volume-title":"Didn\u2019t You Hear Me? - Towards More Successful Web Vulnerability Notifications. NDSS \u201918","author":"Stock Ben","year":"2018","unstructured":"Ben Stock, Giancarlo Pellegrino, Frank Li, Michael Backes, and Christian Rossow. 2018. Didn\u2019t You Hear Me? - Towards More Successful Web Vulnerability Notifications. NDSS \u201918 (2018), 1 \u2013 15."},{"key":"e_1_3_2_1_19_1","first-page":"1015","article-title":"Hey, You Have a Problem: On the Feasibility of Large-Scale Web Vulnerability Notification","volume":"16","author":"Stock Ben","year":"2016","unstructured":"Ben Stock, Giancarlo Pellegrino, Christian Rossow, Martin Johns, and Michael Backes. 2016. Hey, You Have a Problem: On the Feasibility of Large-Scale Web Vulnerability Notification. USENIX Security 16 (2016), 1015\u20131032.","journal-title":"USENIX Security"},{"key":"e_1_3_2_1_20_1","volume-title":"Compromised Websites: An Owner\u2019s Perspective.","author":"Commtouch StopBadware","year":"2012","unstructured":"StopBadware and Commtouch. 2012. Compromised Websites: An Owner\u2019s Perspective. (2012), 1 \u2013 15. https:\/\/www.stopbadware.org\/files\/compromised-websites-an-owners-perspective.pdf"},{"key":"e_1_3_2_1_21_1","unstructured":"W3Techs\u00a0Web Technology. 2023. Usage statistics of content management systems. https:\/\/w3techs.com\/technologies\/overview\/content_management"},{"key":"e_1_3_2_1_22_1","volume-title":"Do Malware Reports Expedite Cleanup? An Experimental Study. CSET \u201912","author":"Vasek Marie","year":"2012","unstructured":"Marie Vasek and Tyler Moore. 2012. Do Malware Reports Expedite Cleanup? An Experimental Study. CSET \u201912 (2012), 1 \u2013 8."},{"key":"e_1_3_2_1_23_1","volume-title":"WEIS 2019","author":"Zeng Eric","year":"2019","unstructured":"Eric Zeng, Frank Li, Emily Stark, Adrienne\u00a0Porter Felt, and Parisa Tabriz. 2019. Fixing HTTPS Miscon\ufb01gurations at Scale: An Experiment with Security Noti\ufb01cations. WEIS 2019 (2019), 1 \u2013 19."},{"key":"e_1_3_2_1_24_1","unstructured":"F.\u00a0O. \u00c7etin C.\u00a0Hernandez Ganan M.\u00a0T. Korczynski and M.\u00a0J. G.\u00a0van Eeten. 2017. Make notifications great again: learning how to notify in the age of large-scale vulnerability scanning. (2017) 1\u201323."},{"key":"e_1_3_2_1_25_1","volume-title":"SOUPS 2018","author":"\u00c7etin Or\u00e7un","year":"2018","unstructured":"Or\u00e7un \u00c7etin, Lisette Altena, Carlos Ga\u00f1\u00e1n, and Michel\u00a0van Eeten. 2018. Let Me Out! Evaluating the Effectiveness of Quarantining Compromised Users in Walled Gardens. SOUPS 2018 (2018)."},{"key":"e_1_3_2_1_26_1","first-page":"326","article-title":"Tell Me You Fixed It: Evaluating Vulnerability Notifications via Quarantine Network","volume":"2019","author":"\u00c7etin Or\u00e7un","year":"2019","unstructured":"Or\u00e7un \u00c7etin, Carlos Ga\u00f1\u00e1n, Lisette Altena, Samaneh Tajalizadehkhoob, and Michel\u00a0van Eeten. 2019. Tell Me You Fixed It: Evaluating Vulnerability Notifications via Quarantine Network. EuroS&P 2019 (2019), 326\u2013339.","journal-title":"EuroS&P"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1093\/cybsec\/tyw005"}],"event":{"name":"EuroUSEC 2023: The 2023 European Symposium on Usable Security","acronym":"EuroUSEC 2023","location":"Copenhagen Denmark"},"container-title":["Proceedings of the 2023 European Symposium on Usable Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3617072.3617101","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3617072.3617101","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T16:36:06Z","timestamp":1750178166000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3617072.3617101"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,10,16]]},"references-count":27,"alternative-id":["10.1145\/3617072.3617101","10.1145\/3617072"],"URL":"https:\/\/doi.org\/10.1145\/3617072.3617101","relation":{},"subject":[],"published":{"date-parts":[[2023,10,16]]},"assertion":[{"value":"2023-10-16","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}