<?xml version="1.0" encoding="ISO-8859-1"?><article xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<front>
<journal-meta>
<journal-id>0873-3015</journal-id>
<journal-title><![CDATA[Millenium - Journal of Education, Technologies, and Health]]></journal-title>
<abbrev-journal-title><![CDATA[Mill]]></abbrev-journal-title>
<issn>0873-3015</issn>
<publisher>
<publisher-name><![CDATA[Instituto Politécnico de Viseu (IPV)]]></publisher-name>
</publisher>
</journal-meta>
<article-meta>
<article-id>S0873-30152026000100302</article-id>
<article-id pub-id-type="doi">10.29352/mill0229.43489</article-id>
<title-group>
<article-title xml:lang="en"><![CDATA[Phishing awareness and preventive measures among university students: knowledge, behaviors, and victimisation perspectives]]></article-title>
<article-title xml:lang="pt"><![CDATA[Conscientização e medidas preventivas sobre phishing entre estudantes universitários: conhecimento, comportamentos e perspetivas de vitimização]]></article-title>
<article-title xml:lang="es"><![CDATA[Concienciación sobre el phishing y medidas preventivas entre estudiantes universitarios: perspectivas de conocimiento, comportamientos y victimización]]></article-title>
</title-group>
<contrib-group>
<contrib contrib-type="author">
<name>
<surname><![CDATA[Ruzaili]]></surname>
<given-names><![CDATA[Helmy]]></given-names>
</name>
<xref ref-type="aff" rid="Aff"/>
</contrib>
<contrib contrib-type="author">
<name>
<surname><![CDATA[Katuk]]></surname>
<given-names><![CDATA[Norliza]]></given-names>
</name>
<xref ref-type="aff" rid="Aff"/>
</contrib>
<contrib contrib-type="author">
<name>
<surname><![CDATA[Zaini]]></surname>
<given-names><![CDATA[Khuzairi Mohd]]></given-names>
</name>
<xref ref-type="aff" rid="Aff"/>
</contrib>
<contrib contrib-type="author">
<name>
<surname><![CDATA[Abdullah]]></surname>
<given-names><![CDATA[Wan]]></given-names>
</name>
<xref ref-type="aff" rid="Aff"/>
</contrib>
</contrib-group>
<aff id="Af1">
<institution><![CDATA[,Faculty of Management and Information Technology  ]]></institution>
<addr-line><![CDATA[Perak ]]></addr-line>
<country>Malaysia</country>
</aff>
<aff id="Af2">
<institution><![CDATA[,University Utara Malaysia  ]]></institution>
<addr-line><![CDATA[Kedah ]]></addr-line>
<country>Malaysia</country>
</aff>
<pub-date pub-type="pub">
<day>00</day>
<month>01</month>
<year>2026</year>
</pub-date>
<pub-date pub-type="epub">
<day>00</day>
<month>01</month>
<year>2026</year>
</pub-date>
<numero>29</numero>
<copyright-statement/>
<copyright-year/>
<self-uri xlink:href="http://scielo.pt/scielo.php?script=sci_arttext&amp;pid=S0873-30152026000100302&amp;lng=en&amp;nrm=iso"></self-uri><self-uri xlink:href="http://scielo.pt/scielo.php?script=sci_abstract&amp;pid=S0873-30152026000100302&amp;lng=en&amp;nrm=iso"></self-uri><self-uri xlink:href="http://scielo.pt/scielo.php?script=sci_pdf&amp;pid=S0873-30152026000100302&amp;lng=en&amp;nrm=iso"></self-uri><abstract abstract-type="short" xml:lang="en"><p><![CDATA[Abstract  Introduction:  Phishing poses significant risks to individuals and organisations, particularly university students who frequently use online platforms and handle sensitive information. Despite the availability of education and training programs, there is a limited understanding of how knowledge, awareness, and preventive measures interact to reduce phishing risks.  Objective:  To explore the relationships between knowledge of phishing, preventive measures, cybersecurity awareness, phishing awareness, and victimisation among university students.  Methods:  This quantitative study employed a survey-based approach involving 202 university students. Data were collected using self-administered questionnaires, and 10 hypotheses were tested to analyse relationships among key factors related to phishing awareness, behaviour, and victimisation.  Results:  Positive correlations were identified between preventive measures and cybersecurity and phishing awareness, emphasising the importance of proactive behaviours. However, knowledge of phishing showed no significant relationship with awareness or preventive behaviours, indicating that knowledge alone does not lead to effective action. Despite preventive efforts, 27.2% of students reported experiencing phishing attacks, highlighting the need for more robust and practical strategies.  Conclusion: The findings suggest that targeted phishing education, training, and awareness programmes are essential for improving defensive behaviours against phishing. This study offers actionable insights for educators, policymakers, and cybersecurity professionals to develop more effective training initiatives that reduce phishing risks, particularly among high-risk groups such as university students.]]></p></abstract>
<abstract abstract-type="short" xml:lang="pt"><p><![CDATA[Resumo  Introdução:  O phishing representa riscos significativos para indivíduos e organizações, especialmente estudantes universitários que usam plataformas online com frequência e lidam com informações confidenciais. Apesar da disponibilidade de programas de educação e treinamento, há uma compreensão limitada de como o conhecimento, a conscientização e as medidas preventivas interagem para reduzir os riscos de phishing.  Objetivo: Explorar as relações entre conhecimento sobre phishing, medidas preventivas, conscientização sobre segurança cibernética, conscientização sobre phishing e vitimização entre estudantes universitários.  Métodos:  Este estudo quantitativo utilizou uma abordagem baseada em inquérito envolvendo 202 estudantes universitários. Os dados foram recolhidos através de questionários autoaplicados, e dez hipóteses foram testadas para analisar as relações entre os principais fatores relacionados com a consciencialização sobre phishing, o comportamento e a vitimização.  Resultados:  Foram identificadas correlações positivas entre medidas preventivas e conscientização sobre segurança cibernética e phishing, enfatizando a importância de comportamentos proativos. No entanto, o conhecimento sobre phishing não apresentou relação significativa com a conscientização ou comportamentos preventivos, indicando que o conhecimento por si só não leva a ações eficazes. Apesar dos esforços preventivos, 27,2% dos estudantes relataram ter sofrido ataques de phishing, destacando a necessidade de estratégias mais robustas e práticas.  Conclusão:  Os resultados sugerem que programas direcionados de educação, treinamento e conscientização sobre phishing são essenciais para aprimorar comportamentos defensivos contra o phishing. Este estudo oferece insights práticos para educadores, formuladores de políticas e profissionais de segurança cibernética desenvolverem iniciativas de treinamento mais eficazes que reduzam os riscos de phishing, especialmente entre grupos de alto risco, como estudantes universitários.]]></p></abstract>
<abstract abstract-type="short" xml:lang="es"><p><![CDATA[Resumen  Introducción:  El phishing supone riesgos significativos para personas y organizaciones, en particular para estudiantes universitarios que utilizan plataformas en línea con frecuencia y manejan información confidencial. A pesar de la disponibilidad de programas de educación y capacitación, existe una comprensión limitada de cómo interactúan el conocimiento, la concienciación y las medidas preventivas para reducir los riesgos del phishing.  Objetivo:  Explorar las relaciones entre el conocimiento del phishing, las medidas preventivas, la conciencia de la ciberseguridad, la conciencia del phishing y la victimización entre los estudiantes universitarios.  Métodos:  Este estudio cuantitativo empleó un enfoque basado en encuestas que involucró a 202 estudiantes universitarios. Los datos se recopilaron mediante cuestionarios autoadministrados, y se probaron diez hipótesis para analizar las relaciones entre los factores clave relacionados con la concienciación sobre el phishing, el comportamiento y la victimización.  Resultados:  Se identificaron correlaciones positivas entre las medidas preventivas y la concienciación sobre ciberseguridad y phishing, lo que resalta la importancia de las conductas proactivas. Sin embargo, el conocimiento sobre phishing no mostró una relación significativa con la concienciación ni las conductas preventivas, lo que indica que el conocimiento por sí solo no conduce a acciones efectivas. A pesar de los esfuerzos preventivos, el 27,2 % de los estudiantes reportaron haber sufrido ataques de phishing, lo que resalta la necesidad de estrategias más sólidas y prácticas.  Conclusión:  Los hallazgos sugieren que los programas de educación, capacitación y concientización sobre phishing son esenciales para mejorar las defensas contra el phishing. Este estudio ofrece información práctica para educadores, legisladores y profesionales de la ciberseguridad, con el fin de desarrollar iniciativas de capacitación más efectivas que reduzcan los riesgos del phishing, especialmente entre grupos de alto riesgo como los estudiantes universitarios.]]></p></abstract>
<kwd-group>
<kwd lng="en"><![CDATA[phishing awareness]]></kwd>
<kwd lng="en"><![CDATA[cybersecurity]]></kwd>
<kwd lng="en"><![CDATA[preventive measures]]></kwd>
<kwd lng="en"><![CDATA[behaviour]]></kwd>
<kwd lng="pt"><![CDATA[conscientização sobre phishing]]></kwd>
<kwd lng="pt"><![CDATA[segurança cibernética]]></kwd>
<kwd lng="pt"><![CDATA[medidas preventivas]]></kwd>
<kwd lng="pt"><![CDATA[comportamento]]></kwd>
<kwd lng="es"><![CDATA[concienciación sobre el phishing]]></kwd>
<kwd lng="es"><![CDATA[ciberseguridad]]></kwd>
<kwd lng="es"><![CDATA[medidas preventivas]]></kwd>
<kwd lng="es"><![CDATA[comportamento]]></kwd>
</kwd-group>
</article-meta>
</front><back>
<ref-list>
<ref id="B1">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Ajzen]]></surname>
<given-names><![CDATA[I.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[The theory of planned behaviour: Reactions and reflections]]></article-title>
<source><![CDATA[Psychology &amp; Health]]></source>
<year>2011</year>
<volume>26</volume>
<numero>9</numero>
<issue>9</issue>
<page-range>1113-27</page-range></nlm-citation>
</ref>
<ref id="B2">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Akter]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
<name>
<surname><![CDATA[Uddin]]></surname>
<given-names><![CDATA[M. R.]]></given-names>
</name>
<name>
<surname><![CDATA[Sajib]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
<name>
<surname><![CDATA[Lee]]></surname>
<given-names><![CDATA[W. J. T.]]></given-names>
</name>
<name>
<surname><![CDATA[Michael]]></surname>
<given-names><![CDATA[K.]]></given-names>
</name>
<name>
<surname><![CDATA[Hossain]]></surname>
<given-names><![CDATA[M. A.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Reconceptualising cybersecurity awareness capability in the data-driven digital economy]]></article-title>
<source><![CDATA[Annals of Operations Research]]></source>
<year>2022</year>
</nlm-citation>
</ref>
<ref id="B3">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Al-Hawamleh]]></surname>
<given-names><![CDATA[A. M.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Cyber resilience framework: Strengthening defenses and enhancing continuity in business security]]></article-title>
<source><![CDATA[International Journal of Computing and Digital Systems]]></source>
<year>2024</year>
<volume>15</volume>
<numero>1</numero>
<issue>1</issue>
<page-range>1315-31</page-range></nlm-citation>
</ref>
<ref id="B4">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Al-Hawamleh]]></surname>
<given-names><![CDATA[A. M.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Securing the future: Framework fundamentals for cyber resilience in advancing organisations]]></article-title>
<source><![CDATA[Journal of System and Management Sciences]]></source>
<year>2024</year>
<volume>14</volume>
<numero>10</numero>
<issue>10</issue>
<page-range>130-50</page-range></nlm-citation>
</ref>
<ref id="B5">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Alam]]></surname>
<given-names><![CDATA[R. G. G.]]></given-names>
</name>
<name>
<surname><![CDATA[Ibrahim]]></surname>
<given-names><![CDATA[H.]]></given-names>
</name>
<name>
<surname><![CDATA[Karas]]></surname>
<given-names><![CDATA[I. R.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Key issues in cybersecurity implementation in government agencies: A case study in Jakartasmart city]]></article-title>
<source><![CDATA[Communications in Computer and Information Science]]></source>
<year>2024</year>
<volume>2001</volume>
<page-range>3-16</page-range></nlm-citation>
</ref>
<ref id="B6">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[An]]></surname>
<given-names><![CDATA[Q.]]></given-names>
</name>
<name>
<surname><![CDATA[Hong]]></surname>
<given-names><![CDATA[W. C. H.]]></given-names>
</name>
<name>
<surname><![CDATA[Xu]]></surname>
<given-names><![CDATA[X.]]></given-names>
</name>
<name>
<surname><![CDATA[Zhang]]></surname>
<given-names><![CDATA[Y.]]></given-names>
</name>
<name>
<surname><![CDATA[Kolletar-Zhu]]></surname>
<given-names><![CDATA[K.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[How education level influences internet security knowledge, behaviour, and attitude: A comparison among undergraduates, postgraduates and working graduates]]></article-title>
<source><![CDATA[International Journal of Information Security]]></source>
<year>2023</year>
<volume>22</volume>
<numero>2</numero>
<issue>2</issue>
<page-range>305-17</page-range></nlm-citation>
</ref>
<ref id="B7">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Ayhan]]></surname>
<given-names><![CDATA[B.]]></given-names>
</name>
<name>
<surname><![CDATA[Kose]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
<name>
<surname><![CDATA[Saban Guler]]></surname>
<given-names><![CDATA[M.]]></given-names>
</name>
<name>
<surname><![CDATA[Bilici]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Can social media be a threat or an opportunity to public health via the impacts on diet quality?]]></article-title>
<source><![CDATA[Frontiers in Public Health]]></source>
<year>2025</year>
<volume>13</volume>
</nlm-citation>
</ref>
<ref id="B8">
<nlm-citation citation-type="book">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Aziz]]></surname>
<given-names><![CDATA[M.A.A.]]></given-names>
</name>
<name>
<surname><![CDATA[Riskhan]]></surname>
<given-names><![CDATA[B.]]></given-names>
</name>
<name>
<surname><![CDATA[Zakaria]]></surname>
<given-names><![CDATA[N.H.]]></given-names>
</name>
<name>
<surname><![CDATA[Jambli]]></surname>
<given-names><![CDATA[M.N.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[An exploratory study of automated anti-phishing system]]></article-title>
<person-group person-group-type="editor">
<name>
<surname><![CDATA[Zakaria]]></surname>
<given-names><![CDATA[N. H.]]></given-names>
</name>
<name>
<surname><![CDATA[Mansor]]></surname>
<given-names><![CDATA[N. S.]]></given-names>
</name>
<name>
<surname><![CDATA[Husni]]></surname>
<given-names><![CDATA[H.]]></given-names>
</name>
<name>
<surname><![CDATA[Mohammed]]></surname>
<given-names><![CDATA[F]]></given-names>
</name>
</person-group>
<source><![CDATA[Computing and Informatics. ICOCI 2023. Communications in Computer and Information Science]]></source>
<year>2024</year>
<volume>2001</volume>
<page-range>45-60</page-range><publisher-name><![CDATA[Springer]]></publisher-name>
</nlm-citation>
</ref>
<ref id="B9">
<nlm-citation citation-type="">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Deci]]></surname>
<given-names><![CDATA[E. L.]]></given-names>
</name>
<name>
<surname><![CDATA[Ryan]]></surname>
<given-names><![CDATA[R. M.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Self-determination theory]]></article-title>
<person-group person-group-type="editor">
<name>
<surname><![CDATA[Van Lange]]></surname>
<given-names><![CDATA[P. A. M.]]></given-names>
</name>
<name>
<surname><![CDATA[Kruglanski]]></surname>
<given-names><![CDATA[A. W.]]></given-names>
</name>
<name>
<surname><![CDATA[Higgins]]></surname>
<given-names><![CDATA[E. T]]></given-names>
</name>
</person-group>
<source><![CDATA[Handbook of theories of social psychology]]></source>
<year>2012</year>
<volume>1</volume>
<numero>20</numero>
<issue>20</issue>
<page-range>416-36</page-range></nlm-citation>
</ref>
<ref id="B10">
<nlm-citation citation-type="">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Edwards]]></surname>
<given-names><![CDATA[J.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Security policies and procedures]]></article-title>
<source><![CDATA[Mastering Cybersecurity: Strategies, Technologies, and Best Practices]]></source>
<year>2024</year>
<page-range>413-34</page-range></nlm-citation>
</ref>
<ref id="B11">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Ezati Rad]]></surname>
<given-names><![CDATA[R.]]></given-names>
</name>
<name>
<surname><![CDATA[Mohseni]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
<name>
<surname><![CDATA[Kamalzadeh Takhti]]></surname>
<given-names><![CDATA[H.]]></given-names>
</name>
<name>
<surname><![CDATA[Hassani Azad]]></surname>
<given-names><![CDATA[M.]]></given-names>
</name>
<name>
<surname><![CDATA[Shahabi]]></surname>
<given-names><![CDATA[N.]]></given-names>
</name>
<name>
<surname><![CDATA[Aghamolaei]]></surname>
<given-names><![CDATA[T.]]></given-names>
</name>
<name>
<surname><![CDATA[Norozian]]></surname>
<given-names><![CDATA[F.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Application of the protection motivation theory for predicting COVID-19 preventive behaviors in Hormozgan, Iran: A cross-sectional study]]></article-title>
<source><![CDATA[BMC Public Health]]></source>
<year>2021</year>
<volume>21</volume>
<numero>1</numero>
<issue>1</issue>
</nlm-citation>
</ref>
<ref id="B12">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Frauenstein]]></surname>
<given-names><![CDATA[E. D.]]></given-names>
</name>
<name>
<surname><![CDATA[Flowerday]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
<name>
<surname><![CDATA[Mishi]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
<name>
<surname><![CDATA[Warkentin]]></surname>
<given-names><![CDATA[M.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Unraveling the behavioral influence of social media on phishing susceptibility: A Personality-Habit-Information Processing model]]></article-title>
<source><![CDATA[Information and Management]]></source>
<year>2023</year>
<volume>60</volume>
<numero>7</numero>
<issue>7</issue>
</nlm-citation>
</ref>
<ref id="B13">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Gagné]]></surname>
<given-names><![CDATA[M.]]></given-names>
</name>
<name>
<surname><![CDATA[Parker]]></surname>
<given-names><![CDATA[S. K.]]></given-names>
</name>
<name>
<surname><![CDATA[Griffin]]></surname>
<given-names><![CDATA[M. A.]]></given-names>
</name>
<name>
<surname><![CDATA[Dunlop]]></surname>
<given-names><![CDATA[P. D.]]></given-names>
</name>
<name>
<surname><![CDATA[Knight]]></surname>
<given-names><![CDATA[C.]]></given-names>
</name>
<name>
<surname><![CDATA[Klonek]]></surname>
<given-names><![CDATA[F. E.]]></given-names>
</name>
<name>
<surname><![CDATA[Parent-Rocheleau]]></surname>
<given-names><![CDATA[X.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Understanding and shaping the future of work with self-determination theory]]></article-title>
<source><![CDATA[Nature Reviews Psychology]]></source>
<year>2022</year>
<volume>1</volume>
<numero>7</numero>
<issue>7</issue>
<page-range>378-92</page-range></nlm-citation>
</ref>
<ref id="B14">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Hong]]></surname>
<given-names><![CDATA[W. C. H.]]></given-names>
</name>
<name>
<surname><![CDATA[Chi]]></surname>
<given-names><![CDATA[C.]]></given-names>
</name>
<name>
<surname><![CDATA[Liu]]></surname>
<given-names><![CDATA[J.]]></given-names>
</name>
<name>
<surname><![CDATA[Zhang]]></surname>
<given-names><![CDATA[Y.]]></given-names>
</name>
<name>
<surname><![CDATA[Lei]]></surname>
<given-names><![CDATA[V. N.-L.]]></given-names>
</name>
<name>
<surname><![CDATA[Xu]]></surname>
<given-names><![CDATA[X.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[The influence of social education level on cybersecurity awareness and behaviour: a comparative study of university students and working graduates]]></article-title>
<source><![CDATA[Education and Information Technologies]]></source>
<year>2023</year>
<volume>28</volume>
<numero>1</numero>
<issue>1</issue>
<page-range>439-70</page-range></nlm-citation>
</ref>
<ref id="B15">
<nlm-citation citation-type="book">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Kadaviparambil]]></surname>
<given-names><![CDATA[S. T.]]></given-names>
</name>
</person-group>
<source><![CDATA[Generational cyber curiosity: A quantitative study of security situational awareness]]></source>
<year>2025</year>
<publisher-name><![CDATA[Tesis doctoral, ProQuest Dissertations &amp; Theses Global]]></publisher-name>
</nlm-citation>
</ref>
<ref id="B16">
<nlm-citation citation-type="">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Katuk]]></surname>
<given-names><![CDATA[N.]]></given-names>
</name>
<name>
<surname><![CDATA[Ruhani]]></surname>
<given-names><![CDATA[A. B.]]></given-names>
</name>
<name>
<surname><![CDATA[Malik]]></surname>
<given-names><![CDATA[M.]]></given-names>
</name>
<name>
<surname><![CDATA[Mahamood]]></surname>
<given-names><![CDATA[A. K.]]></given-names>
</name>
<name>
<surname><![CDATA[Omar]]></surname>
<given-names><![CDATA[M. S. A.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Protecting higher learning institutions from phishing attacks: A staff awareness program]]></article-title>
<source><![CDATA[Intelligent Systems of Computing and Informatics]]></source>
<year>2024</year>
<page-range>114-32</page-range></nlm-citation>
</ref>
<ref id="B17">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Katuk]]></surname>
<given-names><![CDATA[N.]]></given-names>
</name>
<name>
<surname><![CDATA[Zaimy]]></surname>
<given-names><![CDATA[N. A.]]></given-names>
</name>
<name>
<surname><![CDATA[Krishnan]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
<name>
<surname><![CDATA[Kunhiraman]]></surname>
<given-names><![CDATA[R. K.]]></given-names>
</name>
<name>
<surname><![CDATA[Lee]]></surname>
<given-names><![CDATA[H. H.]]></given-names>
</name>
<name>
<surname><![CDATA[Eleyan]]></surname>
<given-names><![CDATA[D.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Fostering cyber-resilience in higher education: A pilot evaluation of a malware awareness program for college students]]></article-title>
<source><![CDATA[Communications in Computer and Information Science]]></source>
<year>2024</year>
<volume>2002</volume>
<page-range>154-67</page-range></nlm-citation>
</ref>
<ref id="B18">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Kudus]]></surname>
<given-names><![CDATA[N.]]></given-names>
</name>
<name>
<surname><![CDATA[Sidek]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
<name>
<surname><![CDATA[Izharrudin]]></surname>
<given-names><![CDATA[Z.]]></given-names>
</name>
<name>
<surname><![CDATA[Kamalrudin]]></surname>
<given-names><![CDATA[M.]]></given-names>
</name>
<name>
<surname><![CDATA[Abu Hassan]]></surname>
<given-names><![CDATA[M.]]></given-names>
</name>
<name>
<surname><![CDATA[Mohamed]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Internet usage pattern and types of Internet users among Malaysian university students]]></article-title>
<source><![CDATA[Journal of Engineering and Applied Sciences]]></source>
<year>2017</year>
<volume>12</volume>
<numero>6</numero>
<issue>6</issue>
<page-range>1433-9</page-range></nlm-citation>
</ref>
<ref id="B19">
<nlm-citation citation-type="book">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Maisto]]></surname>
<given-names><![CDATA[S. A.]]></given-names>
</name>
<name>
<surname><![CDATA[Carey]]></surname>
<given-names><![CDATA[K. B.]]></given-names>
</name>
<name>
<surname><![CDATA[Bradizza]]></surname>
<given-names><![CDATA[C. M.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Social learning theory]]></article-title>
<person-group person-group-type="editor">
<name>
<surname><![CDATA[Leonard]]></surname>
<given-names><![CDATA[K.E.]]></given-names>
</name>
<name>
<surname><![CDATA[Blane]]></surname>
<given-names><![CDATA[H.T]]></given-names>
</name>
</person-group>
<source><![CDATA[Psychological theories of drinking and alcoholism]]></source>
<year>1999</year>
<edition>2ª ed.</edition>
<page-range>106-63</page-range><publisher-name><![CDATA[Guilford Press]]></publisher-name>
</nlm-citation>
</ref>
<ref id="B20">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Marikyan]]></surname>
<given-names><![CDATA[D.]]></given-names>
</name>
<name>
<surname><![CDATA[Papagiannidis]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Protection motivation theory: A review]]></article-title>
<source><![CDATA[TheoryHub Book]]></source>
<year>2023</year>
<page-range>78-93</page-range></nlm-citation>
</ref>
<ref id="B21">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Rehman]]></surname>
<given-names><![CDATA[M.]]></given-names>
</name>
<name>
<surname><![CDATA[Akbar]]></surname>
<given-names><![CDATA[R.]]></given-names>
</name>
<name>
<surname><![CDATA[Omar]]></surname>
<given-names><![CDATA[M.]]></given-names>
</name>
<name>
<surname><![CDATA[Gilal]]></surname>
<given-names><![CDATA[A. R.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[A systematic literature review of ransomware detection methods and tools for mitigating potential attacks]]></article-title>
<source><![CDATA[Communications in Computer and Information Science]]></source>
<year>2024</year>
<volume>2001</volume>
<page-range>80-95</page-range></nlm-citation>
</ref>
<ref id="B22">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Sarker]]></surname>
<given-names><![CDATA[O.]]></given-names>
</name>
<name>
<surname><![CDATA[Jayatilaka]]></surname>
<given-names><![CDATA[A.]]></given-names>
</name>
<name>
<surname><![CDATA[Haggag]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
<name>
<surname><![CDATA[Liu]]></surname>
<given-names><![CDATA[C.]]></given-names>
</name>
<name>
<surname><![CDATA[Babar]]></surname>
<given-names><![CDATA[M. A.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[A multi-vocal literature review on challenges and critical success factors of phishing education, training and awareness]]></article-title>
<source><![CDATA[Journal of Systems and Software]]></source>
<year>2024</year>
<volume>208</volume>
</nlm-citation>
</ref>
<ref id="B23">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Sulaiman]]></surname>
<given-names><![CDATA[N. S.]]></given-names>
</name>
<name>
<surname><![CDATA[Fauzi]]></surname>
<given-names><![CDATA[M. A.]]></given-names>
</name>
<name>
<surname><![CDATA[Hussain]]></surname>
<given-names><![CDATA[S.]]></given-names>
</name>
<name>
<surname><![CDATA[Wider]]></surname>
<given-names><![CDATA[W.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Cybersecurity behavior among government employees: The role of protection motivation theory and responsibility in mitigating cyberattacks]]></article-title>
<source><![CDATA[Information]]></source>
<year>2022</year>
<volume>13</volume>
<numero>9</numero>
<issue>9</issue>
</nlm-citation>
</ref>
<ref id="B24">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[&#352;vábenský]]></surname>
<given-names><![CDATA[V.]]></given-names>
</name>
<name>
<surname><![CDATA[Weiss]]></surname>
<given-names><![CDATA[R.]]></given-names>
</name>
<name>
<surname><![CDATA[Cook]]></surname>
<given-names><![CDATA[J.]]></given-names>
</name>
<name>
<surname><![CDATA[Vykopal]]></surname>
<given-names><![CDATA[J.]]></given-names>
</name>
<name>
<surname><![CDATA[Celeda]]></surname>
<given-names><![CDATA[P.]]></given-names>
</name>
<name>
<surname><![CDATA[MacHe]]></surname>
<given-names><![CDATA[J.]]></given-names>
</name>
<name>
<surname><![CDATA[Chudovský]]></surname>
<given-names><![CDATA[R.]]></given-names>
</name>
<name>
<surname><![CDATA[Chattopadhyay]]></surname>
<given-names><![CDATA[A.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[Evaluating two approaches to assessing student progress in cybersecurity exercises]]></article-title>
<source><![CDATA[SIGCSE 2022 - Proceedings of the 53rd ACM Technical Symposium on Computer Science Education]]></source>
<year>2022</year>
<volume>1</volume>
<page-range>787-93</page-range></nlm-citation>
</ref>
<ref id="B25">
<nlm-citation citation-type="journal">
<person-group person-group-type="author">
<name>
<surname><![CDATA[Wong]]></surname>
<given-names><![CDATA[L.-W.]]></given-names>
</name>
<name>
<surname><![CDATA[Lee]]></surname>
<given-names><![CDATA[V.-H.]]></given-names>
</name>
<name>
<surname><![CDATA[Tan]]></surname>
<given-names><![CDATA[G. W.-H.]]></given-names>
</name>
<name>
<surname><![CDATA[Ooi]]></surname>
<given-names><![CDATA[K.-B.]]></given-names>
</name>
<name>
<surname><![CDATA[Sohal]]></surname>
<given-names><![CDATA[A.]]></given-names>
</name>
</person-group>
<article-title xml:lang=""><![CDATA[The role of cybersecurity and policy awareness in shifting employee compliance attitudes: Building supply chain capabilities]]></article-title>
<source><![CDATA[International Journal of Information Management]]></source>
<year>2022</year>
<volume>66</volume>
</nlm-citation>
</ref>
</ref-list>
</back>
</article>
