Enhancing nurses' anti-phishing knowledge, attitude, and practices through an educational intervention and serious game

Published: 19 May 2023
Abstract Views: 1147
PDF (Italiano): 119
Publisher's note
All claims expressed in this article are solely those of the authors and do not necessarily represent those of their affiliated organizations, or those of the publisher, the editors and the reviewers. Any product that may be evaluated in this article or claim that may be made by its manufacturer is not guaranteed or endorsed by the publisher.

Authors

Introduction: E-learning opportunities can improve healthcare professionals’ digital competencies. More precisely, the anti-phising training may support nurses when encountering malicious content on Internet. This paper presents the impact of an educational intervention enhanced by a serious game on the nurses’ Knowledge, Attitudes and Practices (KAP) regarding Internet usage.

Materials and Methods: this study was based on a double pre test design and is the second part of a PhD thesis based on a project that assess the Infosec practices of nurses who work in seven hospitals in the first and second Healthcare Region in Greece. Nurses who were interested in participating in this second phase of the project were given a link to access the material and the questionnaire. The convenience sample was divided into four sub groups out of which only one group was exposed to the anti phising training. All participants completed the HAIS Q tool and KAP was estimated in PSPP 1.6.2. Descriptive statistics and one-way ANOVA were performed. Tuckey post hoc analysis was conducted to determine differences among groups.

Results: the sample of 124 nurses was utilized. Participants that took part in the educational intervention performed better in Knowledge and Practices items. Their total awareness was rated higher than that of their peers who were not exposed to the intervention. There was no significant difference in Attitude towards Internet usage.

Conclusions: a multimodal educational intervention was delivered and positively affected nurses' Knowledge, Practices, and general Awareness on Internet usage. Nevertheless, the researchers highlight that the present version of the educational intervention was a pilot study and further research could be conducted.

 

Dimensions

Altmetric

PlumX Metrics

Downloads

Download data is not yet available.

Citations

Magdalinou A, Kalokairinou A, Malamateniou F, Mantas J. Assessing Internal Consistency of HAIS-Q: A Survey Conducted in Greek Hospitals. Stud Health Technol Inform 2022;295:24-7.
Chaudhary S, Gkioulos V, Katsikas S. Developing metrics to assess the effectiveness of cybersecurity awareness program. J Cybersec. 2022;8:tyac006.
Georgiadou A, Michalitsi-Psarrou A, Gioulekas F, et al. Hospitals’ Cybersecurity Culture during the COVID-19 Crisis. Healthcare 2021;9(10):1335. Doi: 10.3390/healthcare9101335.
Kim SY, Kim SJ, Lee SH. Effects of online learning on nursing students in South Korea during COVID-19. Int J Environ Res Public Health 2021;18:8506.
Chandross D, Decourcy E. Serious Games in online learning. Int J Innovat Online Educ 2018;2(3).
Argyri T, Zoulias E, Liaskos J, Mantas J. Use of Scratch as ICT educational tool in Health. Studies Health Technol Informat 2022:341-344.
Kumaraguru P. PhishGuru: A system for educating users about semantic attacks. Carnegie Mellon University, Pittsburgh PA. 2009.
Sheng S, Magnien B, Kumaguru P, et al. Anti-Phishing Phil: The design and evaluation of a game that teaches people not to fall for phish. In: Usable Privacy and Security SOUPS 2007, Pennsylvania, USA. 2007.
Arachchilage N, Love S, Maple C. Can a mobile game teach computer users to thwart phishing attacks? Int J Infonomics 2013:720-730.
Jampen D, Gur G, Sutter T, Tellenbach B. Don’t click: towards an effective anti-phishing training. A comparative literature review. Hum Cent Comput Inf Sci 2020:1-41.
Sumner A, Yuan X, Anwar M, McBride M. Examining factors impacting the effectiveness of anti-phishing trainings. J Computer Informat Systems 2021:1-23.
Anandpara V, Dingman A, Jakobsson M, et al. Phishing IQ tests measure fear, not ability. International Conference on Financial Cryptography and Data Security. Springer, Berlin, Heidelberg; 2007:362-366.
Knapp T. Why is the one-group pretest–post test design still used? Clin Nurs Res 2016;25:467–472.
Parsons K, McCormac A, Butavicius M, et al. Determining employee awareness using the human aspects of information security questionnaire (HAIS-Q). Computers Security 2014;42:165-76.
Lane D, Scott D, Hebl M, et al. Introduction to statistics. Lane D. (Ed). Online Edition.
Ajzen I, Fishbein M. The influence of attitudes on behavior. The handbook of attitudes. Albarracín D, Johnson BT, Zanna MP (Eds). Mahwah, NJ: Lawrence Erlbaum Associates; 2005:173-221.
Chan Μ, Woon Ι, Kankanhalli Α. Perceptions of information security at the workplace: linking information security climate to compliant behavior. J Informat Privacy Security 2005;1:28-41.
Zainal N, Puad M, Sani N. Moderating effect of self-efficacy in the relationship between knowledge, attitude and environment behavior of cybersecurity awareness. Asian Soc Sci 2022;8:55-64.
Fabrigar LR, MacDonald TK, Wegener DT. Structure of Attitudes from: The Handbook of Attitudes, Routledge. 2005.

How to Cite

Magdalinou, A., Kalokairinou, A., Malamateniou, F., & Mantas, J. (2023). Enhancing nurses’ anti-phishing knowledge, attitude, and practices through an educational intervention and serious game. Scenario® - Il Nursing Nella Sopravvivenza, 40(1). https://doi.org/10.4081/scenario.2023.540