Phishing attacks are often framed as a problem of careless users. In reality, even highly educated and technically skilled people regularly fall for well-designed phishing messages.

Attackers target human psychology rather than technology. By exploiting cognitive biases such as urgency, authority, and trust signals, phishing campaigns influence the way people make quick decisions online.

This talk examines how visual design, language, and familiar UX patterns increase the success rate of phishing attacks. By analyzing deceptive interfaces, fake login pages, and common social engineering tactics, attendees will gain practical insight into why phishing works and how organizations can better educate employees to recognize and resist these manipulative strategies.