Phishing is one of the highest problems because cybercriminals use faster and innovative technological tools to carry out phishing campaigns. According to Europol’s annual presentation (2019) “…new threats continue to emerge from vulnerabilities in established processes and technologies. Moreover, the longevity of cyber threats is clear, like many long-standing and established modi operandi persist, despite our best efforts.”

Therefore human-driven phishing defense system that leverages human instinct for detection and technology to scale response should be developed and freely available for a wide audience. To create a human-driven phishing defense, education is required for the user to become capable of identifying and responding to phishing attacks in the correct manner.

Introduced CyberPhish project addresses the education and labour market requirements for cybersecurity/phishing skills and knowledge for students and graduates in university (including life-long learning activities).

The overall project objectives are to analyse, design, develop and implement an up-to-date curriculum, e-learning materials, blended learning environment, knowledge and skills self-evaluation and knowledge evaluation system simulations for students and other users in order to prevent phishing attacks, raise competencies in this area for identification and prevention of threats.

It will address the need for awareness and education in phishing attack prevention. The developed e-learning materials, blended learning environment and simulations will be integrated in curricula at the participating Universities as well as provide the opportunity for increased dissemination of knowledge to EU-Citizens through Open Access.

The main intellectual outputs are related to cybersecurity and future competencies and they will include:

1. Study analysis and recommendations: Avoiding phishing attacks and improving critical thinking:

(IO1-A1) Survey results “Recognising phishing and skills gaps” (EST, EL, LV, LT)

(IO1-A2) Results “Analysis of Existing Cybersecurity training programmes” (EST, EL, LV, LT)

2. Course Curriculum and localization

(IO2-A1) Short version of curricula for dissemination (EST, EL, LV, LT)

(IO2 A2) Extended version of curricula for training material development and for training (EST, EL, LV, LT)

3. Online learning material

4. Simulations for education (gamification)

5. Self-evaluation knowledge evaluation system

6. Methodological guidelines for trainers and for implementation of „Phishing in age of 4th industrial revolution“

(IO6-A1) Methodological Guidelines for Trainers (EST, GR, LV, LT)

(IO6-A2) Guidelines for Implementation (EST, GR, LV, LT)

Interested individuals based in Malta were invited to an event held on 19th and 22nd October 2022. To enable different people to attend these informative seminars, MECB purposely organised two events in two different locations, on either side of Valletta. These free events were aimed at helping attendees to catch up with Cyberphishing and related issues. The events also outlined how participants could get access to free training material consisting of e-Learning content and gamification based simulations. Full details of the event marketing including agenda are available in this webpage www.cyber.eumecb.com. On the other hand, a summary of these events is available here.

www.cyberphish.eu/