Phishing and Basic Digital Security for Students and the General Public

Although cyber hygiene practices are increasingly promoted, phishing attacks remain high both globally and in Indonesia, affecting university communities as well as the general public. This study aims to map recent phishing trends, identify key factors contributing to user vulnerability, and formulate essential digital security measures relevant to students and broader society. The research employed a literature review of authoritative reports and studies, complemented by interviews with students and community members around the campus. APWG data recorded 1,270,883 attacks in Q3-2022 and 1,003,924 attacks in Q1-2025, indicating that phishing risks continue to persist. Google’s research shows that its SMS code verification system can block 100% of automated bots, 96% of mass phishing attempts, and 76% of targeted attacks, highlighting the urgency of activating MFA. Training approaches such as PhishGuru have been shown to significantly reduce phishing clicks in field studies, and recent systematic reviews confirm that repeated education provides meaningful protective effects. Overall, the combination of layered technical controls and continuous digital security education demonstrates the strongest potential for reducing phishing risks among students and the general public.