Virtual Booth

Phishing remains one of the major cybersecurity threats, often targeting users by using fake emails or websites to steal sensitive information. As digital platforms continue to grow, educational institutions like University Poly-Tech Malaysia (UPTM) are also at risk. To address this issue, a complete program called PhiSAD was developed to help students improve their understanding and readiness against phishing attacks. The program was designed to solve three main problems: lack of awareness, limited hands-on simulations, and the absence of practical detection tools. PhiSAD successfully integrated phishing simulations, awareness training, and detection tools into a single, structured system. The simulation platform allowed administrators to create and manage real-life phishing scenarios. These scenarios helped students experience how phishing works through the realistic interactions. Awareness training was also conducted to help students identify phishing signs. Meanwhile, the detection tool lets students analyze suspicious links and receive reports, making the learning experience more practical and engaging. Throughout the research, the Agile methodology was used to guide the development, allowing improvements to be made at each stage. Various diagrams, such as flowcharts, system architecture, and use case diagrams, were created to support the development process and show how each part of the system works. After launching two simulation campaigns, results showed better student awareness and lower phishing success rates, proving the program’s effectiveness. After completing the development phase, the program was evaluated through detailed testing, and positive feedback was received from the participants. The PhiSAD project has shown that a well-planned mechanism can improve cybersecurity awareness. This project not only met its goals but also opened opportunities for future improvements.