Phishing attacks have reached record volumes in recent years. Simultaneously, modern phishing websites are growing in sophistication by employing diverse cloaking techniques to avoid detection by security infrastructure. In this paper, we present PhishFarm: a scalable framework for methodically testing the resilience of anti-phishing entities and browser blacklists to attackers' evasion efforts. We use PhishFarm to deploy 2,380 live phishing sites (on new, unique, and previously-unseen .com domains) each using one of six different HTTP request filters based on real phishing kits. We reported subsets of these sites to 10 distinct anti-phishing entities and measured both the occurrence and timeliness of native blacklisting in major web browsers to gauge the effectiveness of protection ultimately extended to victim users and organizations. Our experiments revealed shortcomings in current infrastructure, which allows some phishing sites to go unnoticed by the security community while remaining accessible to victims. We found that simple cloaking techniques representative of real-world attacks-including those based on geolocation, device type, or JavaScriptwere effective in reducing the likelihood of blacklisting by over 55% on average. We also discovered that blacklisting did not function as intended in popular mobile browsers (Chrome, Safari, and Firefox), which left users of these browsers particularly vulnerable to phishing attacks. Following disclosure of our findings, anti-phishing entities are now better able to detect and mitigate several cloaking techniques (including those that target mobile users), and blacklisting has also become more consistent between desktop and mobile platforms-but work remains to be done by anti-phishing entities to ensure users are adequately protected. Our PhishFarm framework is designed for continuous monitoring of the ecosystem and can be extended to test future state-of-the-art evasion techniques used by malicious websites.
Information on the biodegradation potential of lake and river microbial communities is essential for watershed management. The water draining into the lake ecosystems often carries a significant amount of suspended sediments, which are transported by rivers and streams from the local drainage basin. The organic carbon processing in the sediments is executed by heterotrophic microbial communities, whose activities may vary spatially and temporally. Thus, to capture and apprehend some of these variabilities in the sediments, we sampled six sites: three from the Saint Clair River (SC1, SC2, and SC3) and three from Lake Saint Clair in the spring, summer, fall, and winter of 2016. Here, we investigated the shifts in metabolic profiles of sediment microbial communities, along Saint Clair River and Lake Saint Clair using Biolog EcoPlates, which test for the oxidation of 31 carbon sources. The number of utilized substrates was generally higher in the river sediments (upstream) than in the lake sediments (downstream), suggesting a shift in metabolic activities among microbial assemblages. Seasonal and site-specific differences were also found in the numbers of utilized substrates, which were similar in the summer and fall, and spring and winter. The sediment microbial communities in the summer and fall showed more versatile substrate utilization patterns than spring and winter communities. The functional fingerprint analyses clearly distinguish the sediment microbial communities from the lake sites (downstream more polluted sites), which showed a potential capacity to use more complex carbon substrates such as polymers. This study establishes a close linkage between physical and chemical properties (temperature and organic matter content) of lake and river sediments and associated microbial functional activities.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.