{"id":"https://openalex.org/W4387628479","doi":"https://doi.org/10.1145/3617072.3617109","title":"Lessons in Prevention and Cure: A User Study of Recovery from Flubot Smartphone Malware","display_name":"Lessons in Prevention and Cure: A User Study of Recovery from Flubot Smartphone Malware","publication_year":2023,"publication_date":"2023-10-13","ids":{"openalex":"https://openalex.org/W4387628479","doi":"https://doi.org/10.1145/3617072.3617109"},"language":"en","primary_location":{"id":"doi:10.1145/3617072.3617109","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3617072.3617109","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3617072.3617109","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2023 European Symposium on Usable Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3617072.3617109","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5093062283","display_name":"Artur Geers","orcid":"https://orcid.org/0009-0008-3431-7504"},"institutions":[{"id":"https://openalex.org/I98358874","display_name":"Delft University of Technology","ror":"https://ror.org/02e2c7k09","country_code":"NL","type":"education","lineage":["https://openalex.org/I98358874"]}],"countries":["NL"],"is_corresponding":true,"raw_author_name":"Artur Geers","raw_affiliation_strings":["Delft University of Technology, Netherlands"],"raw_orcid":"https://orcid.org/0009-0008-3431-7504","affiliations":[{"raw_affiliation_string":"Delft University of Technology, Netherlands","institution_ids":["https://openalex.org/I98358874"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5063593427","display_name":"Aaron Yi Ding","orcid":"https://orcid.org/0000-0003-4173-031X"},"institutions":[{"id":"https://openalex.org/I98358874","display_name":"Delft University of Technology","ror":"https://ror.org/02e2c7k09","country_code":"NL","type":"education","lineage":["https://openalex.org/I98358874"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Aaron Ding","raw_affiliation_strings":["Delft University of Technology, Netherlands"],"raw_orcid":"https://orcid.org/0000-0003-4173-031X","affiliations":[{"raw_affiliation_string":"Delft University of Technology, Netherlands","institution_ids":["https://openalex.org/I98358874"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5048211807","display_name":"Carlos Ga\u00f1\u00e1n","orcid":"https://orcid.org/0000-0002-4699-3007"},"institutions":[{"id":"https://openalex.org/I98358874","display_name":"Delft University of Technology","ror":"https://ror.org/02e2c7k09","country_code":"NL","type":"education","lineage":["https://openalex.org/I98358874"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Carlos Hernandez Ga\u00f1\u00e1n","raw_affiliation_strings":["Delft University of Technology, Netherlands"],"raw_orcid":"https://orcid.org/0000-0002-4699-3007","affiliations":[{"raw_affiliation_string":"Delft University of Technology, Netherlands","institution_ids":["https://openalex.org/I98358874"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5016771481","display_name":"Simon Parkin","orcid":"https://orcid.org/0000-0002-6667-0440"},"institutions":[{"id":"https://openalex.org/I98358874","display_name":"Delft University of Technology","ror":"https://ror.org/02e2c7k09","country_code":"NL","type":"education","lineage":["https://openalex.org/I98358874"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Simon Parkin","raw_affiliation_strings":["Delft University of Technology, Netherlands"],"raw_orcid":"https://orcid.org/0000-0002-6667-0440","affiliations":[{"raw_affiliation_string":"Delft University of Technology, Netherlands","institution_ids":["https://openalex.org/I98358874"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5093062283"],"corresponding_institution_ids":["https://openalex.org/I98358874"],"apc_list":null,"apc_paid":null,"fwci":1.6896,"has_fulltext":true,"cited_by_count":3,"citation_normalized_percentile":{"value":0.87885565,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"126","last_page":"142"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11045","display_name":"Privacy, Security, and Data Protection","score":0.9977999925613403,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T11045","display_name":"Privacy, Security, and Data Protection","score":0.9977999925613403,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T12335","display_name":"Sexuality, Behavior, and Technology","score":0.9968000054359436,"subfield":{"id":"https://openalex.org/subfields/3203","display_name":"Clinical Psychology"},"field":{"id":"https://openalex.org/fields/32","display_name":"Psychology"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10803","display_name":"Innovative Human-Technology Interaction","score":0.9957000017166138,"subfield":{"id":"https://openalex.org/subfields/1709","display_name":"Human-Computer Interaction"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.9280151128768921},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.7572697401046753},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5532684326171875},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.5172008275985718},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.48898518085479736},{"id":"https://openalex.org/keywords/smartphone-application","display_name":"Smartphone application","score":0.4826953411102295},{"id":"https://openalex.org/keywords/mobile-malware","display_name":"Mobile malware","score":0.45545995235443115},{"id":"https://openalex.org/keywords/mobile-device","display_name":"Mobile device","score":0.425253689289093},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.2824510931968689},{"id":"https://openalex.org/keywords/multimedia","display_name":"Multimedia","score":0.15731388330459595}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.9280151128768921},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.7572697401046753},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5532684326171875},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.5172008275985718},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.48898518085479736},{"id":"https://openalex.org/C3020250448","wikidata":"https://www.wikidata.org/wiki/Q620615","display_name":"Smartphone application","level":2,"score":0.4826953411102295},{"id":"https://openalex.org/C2780967490","wikidata":"https://www.wikidata.org/wiki/Q1291200","display_name":"Mobile malware","level":3,"score":0.45545995235443115},{"id":"https://openalex.org/C186967261","wikidata":"https://www.wikidata.org/wiki/Q5082128","display_name":"Mobile device","level":2,"score":0.425253689289093},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.2824510931968689},{"id":"https://openalex.org/C49774154","wikidata":"https://www.wikidata.org/wiki/Q131765","display_name":"Multimedia","level":1,"score":0.15731388330459595}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3617072.3617109","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3617072.3617109","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3617072.3617109","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2023 European Symposium on Usable Security","raw_type":"proceedings-article"},{"id":"pmh:oai:tudelft.nl:uuid:f913dd5a-6be8-487b-b07d-04b674f7e341","is_oa":true,"landing_page_url":"http://resolver.tudelft.nl/uuid:f913dd5a-6be8-487b-b07d-04b674f7e341","pdf_url":null,"source":{"id":"https://openalex.org/S4306400906","display_name":"Research Repository (Delft University of Technology)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I98358874","host_organization_name":"Delft University of Technology","host_organization_lineage":["https://openalex.org/I98358874"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"conference paper"}],"best_oa_location":{"id":"doi:10.1145/3617072.3617109","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3617072.3617109","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3617072.3617109","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2023 European Symposium on Usable Security","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1185133503","display_name":null,"funder_award_id":"CS.007","funder_id":"https://openalex.org/F4320321800","funder_display_name":"Nederlandse Organisatie voor Wetenschappelijk Onderzoek"}],"funders":[{"id":"https://openalex.org/F4320321800","display_name":"Nederlandse Organisatie voor Wetenschappelijk Onderzoek","ror":"https://ror.org/04jsz6e67"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4387628479.pdf","grobid_xml":"https://content.openalex.org/works/W4387628479.grobid-xml"},"referenced_works_count":32,"referenced_works":["https://openalex.org/W1555516857","https://openalex.org/W1987523869","https://openalex.org/W2003969604","https://openalex.org/W2258698957","https://openalex.org/W2544337092","https://openalex.org/W2563775695","https://openalex.org/W2578751720","https://openalex.org/W2624735790","https://openalex.org/W2780954022","https://openalex.org/W2794007494","https://openalex.org/W2795776492","https://openalex.org/W2808276835","https://openalex.org/W2922526186","https://openalex.org/W2923481942","https://openalex.org/W2941399919","https://openalex.org/W2948072163","https://openalex.org/W2965381445","https://openalex.org/W2998982058","https://openalex.org/W3000137316","https://openalex.org/W3049758233","https://openalex.org/W3115397429","https://openalex.org/W3121108937","https://openalex.org/W3124859252","https://openalex.org/W3133843004","https://openalex.org/W3136957390","https://openalex.org/W3161750441","https://openalex.org/W3183770746","https://openalex.org/W4200054778","https://openalex.org/W4213109597","https://openalex.org/W4224997456","https://openalex.org/W4242035122","https://openalex.org/W4283375532"],"related_works":["https://openalex.org/W2538622067","https://openalex.org/W2181494682","https://openalex.org/W3114159050","https://openalex.org/W4245250093","https://openalex.org/W2609233367","https://openalex.org/W2484248966","https://openalex.org/W4200054778","https://openalex.org/W2777464647","https://openalex.org/W2965539362","https://openalex.org/W4249118297"],"abstract_inverted_index":{"The":[0],"smishing-based":[1],"malware":[2,76,161],"Flubot":[3,36,52],"was":[4],"taken":[5],"down":[6],"in":[7,54,139],"mid-2022,":[8],"yet":[9],"there":[10],"is":[11],"little":[12],"understanding":[13],"of":[14,25,50,62,70,74,93,116],"how":[15],"it":[16],"directly":[17],"impacted":[18],"smartphone":[19],"users.":[20],"We":[21,41,64,86,147],"engage":[22],"with":[23,101],"customers":[24,45],"a":[26,35,51,160,165],"partner":[27],"Internet":[28],"Service":[29],"Provider":[30],"(ISP),":[31],"who":[32,46],"have":[33],"suffered":[34],"infection":[37,77,162],"on":[38,168],"their":[39,140],"smartphones.":[40],"surveyed":[42],"87":[43],"ISP":[44],"had":[47,84],"been":[48],"notified":[49],"infection,":[53],"the":[55,60,75,99,126,131,183],"months":[56],"around":[57],"and":[58,107,170],"preceding":[59],"take-down":[61],"Flubot.":[63],"found":[65],"that":[66,89,151],"slightly":[67],"over":[68,91],"half":[69,92],"respondents":[71,94,121],"were":[72],"unaware":[73],"before":[78,105],"being":[79],"notified,":[80],"though":[81],"many":[82,102],"others":[83],"suspicions.":[85],"also":[87],"observe":[88],"just":[90],"experienced":[95],"non-technical":[96],"harms":[97,104,177],"from":[98,114,175],"malware,":[100,127,181],"experiencing":[103,109],"notification":[106],"several":[108],"unwanted":[110],"or":[111,134],"aggressive":[112],"activity":[113],"users":[115,158],"other":[117],"infected":[118,132],"devices.":[119],"Many":[120],"reported":[122],"not":[123,164,186],"having":[124],"removed":[125],"while":[128],"some":[129],"discarded":[130],"device":[133],"stopped":[135],"using":[136],"online":[137],"services":[138],"efforts":[141],"to":[142,156],"be":[143,154],"more":[144],"secure":[145],"afterwards.":[146],"offer":[148],"recommendations,":[149],"including":[150],"clearer":[152],"guidance":[153],"sought":[155],"help":[157],"identify":[159],"(and":[163],"focus":[166],"only":[167,187],"prevention),":[169],"support":[171],"provided":[172],"for":[173],"recovery":[174],"personal":[176],"caused":[178],"by":[179],"mobile":[180],"as":[182],"impacts":[184],"are":[185],"technical.":[188]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":1}],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2025-10-10T00:00:00"}