UDC 37.01:007

Kruglov N.K.¹ (Khabarovsk, Russian Federation) – 2020104710@togudv.ru; Zufarova A.S.¹ (Khabarovsk, Russian Federation) -006694@togudv.ru

¹Pacific State University

Abstract. In the context of rapid digitalization of business, phishing remains one of the most widespread and dangerous cyber threats. Attackers are increasingly using social engineering, fake websites, and artificial intelligence technologies to create convincing attacks targeting company employees. At the same time, even the most modern technical means of protection do not provide an absolute guarantee of security if the personnel is not trained to recognize signs of fraud. That is why countering phishing requires an integrated approach combining technological tools and systematic training. In this regard, there is a need for effective training of employees to counter such threats. The PhishingTrainer platform is an innovative cybersecurity solution that integrates advanced machine learning techniques to teach employees the basics of information security. The system develops customized training materials based on phishing links, which allows you to adapt the learning process to the unique needs and level of training of each employee. This is achieved through the use of artificial intelligence algorithms capable of analyzing user behavioral patterns and preferences, thereby ensuring maximum effectiveness and personalization of training. The PhishingTrainer platform allows organizations not only to simulate real-world attack scenarios, but also to develop sustainable cybersecurity skills among employees using artificial intelligence capabilities. This approach helps to minimize risks and increase the overall level of information security of the company. This article contains a survey on knowledge about phishing. The basics of creating a training platform, principles of operation and training materials are considered. The results of the study demonstrate that an integrated approach combining technological protection tools and regular interactive training significantly reduces the likelihood of successful phishing attacks, increases the level of information security of an organization and creates a culture of conscious attitude to digital risks.

Keywords: cybersecurity, phishing attacks, training, artificial intelligence, learning platform, educational technologies.

References:

1. Drugach, Yu. S. (2024). Controlled hacking. The Bible of social engineering (2nd ed., revised and enlarged). BHV‑Petersburg. (In Russian).
2. Shubina, E. E., & Nikitina, E. Yu. (2025). Study of personnel training in protection against phishing and assessment of their vulnerabilities. In Actual problems of information security: Collection of articles (pp. 140–146). Perm State National Research University.  (In Russian). https://www.elibrary.ru/sryvum
3. Efimov, S. A., & Pronkin, N. N. (2024). The role of employees in ensuring information security: Approaches to raising awareness. International Journal of Professional Science, 6–2, 40–47.  (In Russian). https://www.elibrary.ru/evqrjk
4. Prokhorov, A. I., Markin, E. A., & Nikeeva, W. G. (2023). Phishing attacks: Main types and methods of protection against them. In Information systems, economics and management: Scientific notes (pp. 84–90). Rostov‑on‑Don.  (In Russian). https://www.elibrary.ru/mzgipc
5. Bachieva, A. V., & Boziev, T. O. (2023). Phishing as one of the methods of fraud in the field of computer information. In Actual problems of legal science and practice (pp. 232–235). State Institute of Economics, Finance, Law and Technology.  (In Russian). https://www.elibrary.ru/zhtgzh
6. Zakharova, A. A. (2022). Personnel training methods in an organization. Alley of Science, 1(3), 114–120.  (In Russian). https://www.elibrary.ru/acjlnb
7. An, D. S., & Zufarova, A. S. (2025). Simulation of phishing attacks as a method of improving cyberliteracy and preparing for response to threats. Education Management: Theory and Practice, 6–1, 127–139.  (In Russian). https://www.elibrary.ru/zbcsvm
8. Zufarova, A. S. (2025). Integration of artificial intelligence in modern education: Advantages and challenges. CITISE, 1, 652–659.  (In Russian). https://www.elibrary.ru/vmftaa
9. Zhdanova, D. E. (2021). Reverse learning technology: A combination of mobile learning and active learning methods. Naukosphere, 7–1, 55–58.  (In Russian). https://www.elibrary.ru/siqyud
10. Nechipurovsky, D. I. (2024). How to build a multi‑layered defense to combat advanced phishing threats. Scientific Aspect, 41(4), 5337–5342.  (In Russian). https://www.elibrary.ru/jdtfvy
11. Yakovleva, M. A. (2021). Leadership in the mentoring system as an effective tool for personnel adaptation. Human Progress, 7(1).  (In Russian). https://www.elibrary.ru/mfmyrr
12. Slivinsky, D. V., & Shishiyanu, K. S. (2023). Personnel training as a technology for managing the human resources of an enterprise: Basic forms, methods, and critical assessments. Innovations and Investments, 11, 78–80.  (In Russian). https://www.elibrary.ru/bwijwi
13. Baykulova, F. R. (2024). Development of a methodology for detecting phishing attacks. Student Bulletin, 23–6(309), 57–59.  (In Russian). https://www.elibrary.ru/egoqxc
14. Chenushkina, S. V., & Shmakova, L. E. (2023). The role of visualization in forming competence in cybersecurity. The World of Science, Culture, Education, 6(103), 229–233.  (In Russian). https://www.elibrary.ru/wshgmi
15. Lebedeva, D. A., & Vitkova, L. A. (2025). Analysis of the efficiency of anti‑phishing protection methods. Bulletin of the St. Petersburg State University of Technology and Design. Series 1: Natural and Technical Sciences, 2, 100–104.  (In Russian). https://www.elibrary.ru/gmsped

For citation: Kruglov, N. K., & Zufarova, A. S. (2026). Countering phishing: Training and protection using the PhishingTrainer platform and artificial intelligence. CITISE, 1, 634–647. (In Russian).