Malicious activity in cyberspace has become commonplace, and cyber-criminals with malicious intent may take advantage of the ill-informed or unprotected masses. One widespread form of cyber-attack is phishing, whereby the attacker uses social engineering techniques to extract information from its victims. This study aims to determine if there is a difference in the variance between the amount of time a user spends on the Internet and his/her susceptibility to phishing attacks. Results conclude that the variance in the amount of time spent on the Internet is a factor in the susceptibility of victims to a phishing style attack.