Business Email Compromise Phishing Detection Based on Machine Learning: A Systematic Literature Review

Atlam, Hany F.; Oluwatimilehin, Olayonu

doi:10.3390/electronics12010042

Cited by 15 publications

(10 citation statements)

References 51 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…When it comes to business email compromise (BEC) attacks, machine learning can be a valuable tool in detecting and preventing such threats. Machine learning can help combat BEC attacks in several ways [ 29 ]. Firstly, it can be used to analyze historical email data and identify patterns associated with known BEC attacks.…”

Section: Related Workmentioning

confidence: 99%

BEC Defender: QR Code-Based Methodology for Prevention of Business Email Compromise (BEC) Attacks

Papathanasiou,

Liontos,

Paparis

et al. 2024

Sensors

View full text Add to dashboard Cite

In an era of ever-evolving and increasingly sophisticated cyber threats, protecting sensitive information from cyberattacks such as business email compromise (BEC) attacks has become a top priority for individuals and enterprises. Existing methods used to counteract the risks linked to BEC attacks frequently prove ineffective because of the continuous development and evolution of these malicious schemes. This research introduces a novel methodology for safeguarding against BEC attacks called the BEC Defender. The methodology implemented in this paper augments the authentication mechanisms within business emails by employing a multi-layered validation process, which includes a MAC address as an identity token, QR code generation, and the integration of timestamps as unique identifiers. The BEC-Defender algorithm was implemented and evaluated in a laboratory environment, exhibiting promising results against BEC attacks by adding an extra layer of authentication.

show abstract

Section: Related Workmentioning

confidence: 99%

BEC Defender: QR Code-Based Methodology for Prevention of Business Email Compromise (BEC) Attacks

Papathanasiou,

Liontos,

Paparis

et al. 2024

Sensors

View full text Add to dashboard Cite

show abstract

“…In cybersecurity, NLP techniques are utilized for text analysis, sentiment analysis, and language-based threat detection (Aghaei et al, 2022). By processing and analyzing textual data from various sources such as emails, social media, and chat logs, NLP algorithms can identify indicators of compromise, phishing attempts, and other malicious activities (Atlam, and Oluwatimilehin, 2022). Deep learning, a subset of ML, involves artificial neural networks with multiple layers of interconnected nodes.…”

Section: Theoretical Foundationsmentioning

confidence: 99%

Synthesizing Ai's Impact on Cybersecurity in Telecommunications: A Conceptual Framework

Philip Olaseni Shoetan,

Olukunle Oladipupo Amoo,

Enyinaya Stefano Okafor

et al. 2024

Comput. sci. IT res. j.

View full text Add to dashboard Cite

As the telecommunications sector increasingly relies on interconnected digital infrastructure, the proliferation of cyber threats poses significant challenges to security and operational integrity. This review presents a conceptual framework for understanding and harnessing the potential of artificial intelligence (AI) in fortifying cybersecurity within the telecommunications industry. The framework integrates the transformative capabilities of AI with the unique demands of cybersecurity in telecommunications, aiming to enhance threat detection, mitigation, and response strategies. It encompasses a multidimensional approach that encompasses both technical and organizational facets, recognizing the interconnectedness of technology, human factors, and regulatory environments. Firstly, the framework delves into the application of AI in bolstering proactive threat intelligence gathering and analysis. Through advanced algorithms and machine learning techniques, AI empowers telecom operators to identify anomalous patterns, predict potential vulnerabilities, and pre-emptively adapt defensive measures. Secondly, it explores AI-driven solutions for dynamic risk assessment and adaptive cybersecurity protocols. By leveraging real-time data analytics and automated decision-making, telecom networks can swiftly adapt to evolving threats and ensure continuous protection against intrusions or breaches. Furthermore, the framework emphasizes the role of AI in augmenting human capabilities through intelligent automation and cognitive assistance. By offloading routine tasks and providing context-aware insights, AI enables cybersecurity professionals to focus on strategic initiatives and complex threat scenarios. Lastly, the framework addresses the imperative of ethical considerations, accountability, and transparency in deploying AI for cybersecurity in telecommunications. It advocates for responsible AI governance frameworks that prioritize privacy, fairness, and bias mitigation while fostering collaboration across industry stakeholders. In summary, this conceptual framework provides a roadmap for harnessing AI's transformative potential to fortify cybersecurity resilience in telecommunications, thereby safeguarding critical infrastructure and ensuring the integrity of global communication networks. Keywords: AI, Cybersecurity, Telecommunication, Framework, Conceptual, Impact, Review.

show abstract

“…Business Email Compromise (BEC) represents a sophisticated and continually evolving cyber threat that poses substantial risks to organizational integrity and financial security. BEC attacks involve the impersonation of a trusted or reputable source through fraudulent emails [21]. This section scrutinizes the intricate landscape of BEC, elucidating the nuanced tactics employed by threat actors.…”

Section: Phishing In the Context Of Iotmentioning

confidence: 99%

Phishing Attacks: Unraveling Tactics, Threats, and Defenses in the Cybersecurity Landscape

Kheruddin,

Zuber,

Radzai

2024

Preprint

View full text Add to dashboard Cite

This research paper provides a comprehensive exploration of phishing attacks in the cybersecurity landscape, tracing their evolution from rudimentary email scams to sophisticated social engineering tactics and technological integrations. Emphasizing the human-centric nature of phishing, the study delves into the psychological and sociotechnical aspects exploited by attackers, highlighting the significance of understanding human vulnerabilities. The economic and reputational consequences of phishing, including financial losses and long-lasting reputational damage, are scrutinized, underlining the need for comprehensive risk mitigation strategies.

show abstract

Business Email Compromise Phishing Detection Based on Machine Learning: A Systematic Literature Review

Cited by 15 publications

References 51 publications

BEC Defender: QR Code-Based Methodology for Prevention of Business Email Compromise (BEC) Attacks

BEC Defender: QR Code-Based Methodology for Prevention of Business Email Compromise (BEC) Attacks

Synthesizing Ai's Impact on Cybersecurity in Telecommunications: A Conceptual Framework

Phishing Attacks: Unraveling Tactics, Threats, and Defenses in the Cybersecurity Landscape

Contact Info

Product

Resources

About