-
Survey Unveils Cyber Vulnerabilities: Age No Barrier to AI Phishing Risks – Image Credit Unsplash+
Global Survey Reveals Widespread Vulnerability to AI-Driven Phishing Scams
A recent global survey highlights a significant challenge in distinguishing between AI-generated phishing messages and authentic emails. Conducted by Talker Research on behalf of Yubico, the survey involved 18,000 employed adults worldwide and revealed that only 46% of participants could correctly identify a phishing email written by artificial intelligence (AI).
Survey Findings
The survey found that 54% of respondents either believed AI-generated phishing emails were genuine or were unsure of their authenticity. This lack of awareness was consistent across generations, with Gen Z, millennials, Gen X, and baby boomers showing similar levels of difficulty in recognizing phishing attempts. Specifically, the correct identification rates were 45% for Gen Z, 47% for millennials, and 46% for both Gen X and baby boomers.
Phishing Susceptibility Across Generations
Despite the generational similarities in identifying phishing emails, younger individuals appeared more susceptible to interacting with phishing scams. The survey revealed that 62% of Gen Z respondents reported engaging with phishing messages in the past year, compared to 51% of millennials, 33% of Gen X, and 23% of baby boomers. The most common methods of phishing included emails (51%), texts (27%), and social media messages (20%).
Reasons for Falling Victim
Respondents who fell for phishing scams cited two primary reasons: the messages seemed to originate from trusted sources (34%) and they were in a rush when they received them (25%). The consequences of these interactions were significant, as personal and work-related information, including email addresses, full names, and phone numbers, was disclosed.
Cybersecurity Practices and Training
The survey also highlighted gaps in cybersecurity practices and training. Notably, 40% of respondents reported that their employers had not provided any cybersecurity training. Additionally, 30% of individuals did not have multi-factor authentication (MFA) enabled for their personal accounts, and 49% of companies used inconsistent authentication methods across applications.
Device Usage and Security Risks
The study revealed that half of the employed respondents were logged into work accounts on personal devices, often without their employers’ knowledge. Younger generations were more likely to use personal devices for work purposes, with only 30% of Gen Z respondents using work-permitted devices exclusively, compared to 66% of baby boomers. Furthermore, 40% of respondents admitted to accessing personal emails on work devices, and 17% accessed online banking portals from work devices.
Recommendations for Improved Security
Ronnie Manning, chief brand advocate at Yubico, emphasized the importance of employing robust security measures, such as MFA and device-bound passkeys, to protect both personal and professional data. Manning warned that weak cybersecurity practices could lead to significant security breaches, given the intertwined nature of personal and work devices.
Conclusion
The survey underscores the need for improved cybersecurity awareness and training across all age groups. As AI-generated phishing scams become more sophisticated, both individuals and organizations must prioritize security measures to safeguard sensitive information in an increasingly digital world.
Read the Global State of Authentication Survey.
