Classification of Attack Types and Analysis of Attack Methods for Profiling Phishing Mail Attack Groups

Lee, Jae‐Il; Lee, Young Hee; Lee, Donghwan; Kwon, Hyuk-Min; Shin, Dongkyoo

doi:10.1109/access.2021.3084897

Cited by 18 publications

(6 citation statements)

References 10 publications

(9 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…choose not to engage in protective behaviors against email phishing because they perceive there are advantages to not doing so and they weigh the associated costs of protective measures. [4] Phishing attacks target private information such as financial details by pretending to be trustworthy online sources, taking advantage of users' trust and lack of internet security. The goal of various phishing techniques, like deceptive and malwarebased phishing, is to trick users into sharing personal, financial, or password data through social engineering tactics, underscoring the importance of detection systems in fighting these risks.…”

Section: Phishing -Unvielling Its Techniquesmentioning

confidence: 99%

“…These dangers aim at a range of industries including healthcare, government, military, finance, entertainment, and businesses, resulting in financial losses, data breaches, and societal consequences. [2]Phishing attacks often rely on social engineering tactics to manipulate victim into actions that compromise security. Researchers have developed various anti-phishing methods in recent years and still other methods are being developed.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Phishing - Unvielling Its Techniques

R G

2024

IJSREM

View full text Add to dashboard Cite

This study offers a detailed investigation of phishing attacks, a common cybersecurity danger aimed at individuals and organizations globally. It explores the reasons behind phishing attacks, which vary from making money to taking advantage of people's psychology. The research underscores the necessity for thorough detection systems and protective measures in order to effectively combat phishing. A study among knowledgeable individuals in the cybersecurity sector provides information on their awareness and vulnerability to phishing attempts. The results highlight how common phishing attacks are and the significance of grasping various attack vectors. KEYWORDS : Cyber Threat, Cyber Security, Phishing, Social Engineering, Identity Theft.

show abstract

Section: Phishing -Unvielling Its Techniquesmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Phishing - Unvielling Its Techniques

R G

2024

IJSREM

View full text Add to dashboard Cite

show abstract

“…Hossein Abroshan et al [20] in their paper has discussed about how the Phishing attacks have taken place during the pandemic and the co-relation of human emotions and behaviour with the success of phishing attempts during the pandemic. The phishing attack and its types where explained in detail by Jaeil Lee et al [19]. The detailed analysis was conducted on the attack methods and observations where deduced from these analysis.…”

Section: IImentioning

confidence: 99%

Identifying Vulnerabilities and Reducing Cyber Risks and Attacks Using a Cyber Security Lab Environment

Rajeev¹

2022

IJRASET

View full text Add to dashboard Cite

In the present digital world where everyone is trying to digitalize their data and assets, cyber-attacks and cyber-crimes have made their presence felt much more than when compared to the previous period. During the pandemic days, the number of state sponsored and nation sponsored threat actors who pose the threat of attacking our organizational assets has increased rapidly. Organizations, especially which fall under the critical information infrastructure are becoming an increasingly common target for cyber-attacks. The rate has alarmingly gone up that the national and state government have started to give more attention and focus to cyber security and cyber-crimes. Specific bodies have been assigned by the government to notify about threats/attacks and also to suggest possible techniques to mitigate these threats/attacks. Most devices that are used in these organization are either using older versions of devices or the devices used are not properly cyber secured. This vulnerability is most often taken advantage of by the attacker when trying to access and compromise the organization. Another factor leading to cyber breaches and attacks is the limited or low competency level of employees who work in these organizations. Employees with weak cybersecurity knowledge are the main entry point for online fraud, viruses, and other threats. This creates a situation where business owners and managers should focus on teaching employees the importance of strong digital security. This report describes different techniques and tools which can be used to detect vulnerabilities or threats present in our system, the different cyber-attacks that can take place exploiting these identified vulnerabilities: How to generate an attack, How to identify an attack and How to prevent an attack. Further on, how we can create an environment, where individuals can have hands-on experience on how to detect different cyber threats or vulnerabilities present on a device which makes them confident enough to identify a cyber-attack or threat at an early stage and deploy preventive measures against it is also discussed.

show abstract

“…Hence, it becomes difficult and challenging for the software professionals in detecting phishing outbreaks effectively. In 2018, a group called Kimsuky in Korea involved in phishing and their target was not just the finance but also the Korean security associated foreign institutions, defence, and diplomatic data [1]. In the pandemic year, COVID-19 attackers have raised their attention to target the vulnerable victim by applying various tricks based on human fear, anxiety, and stress factors.…”

Section: Introductionmentioning

confidence: 99%

“…In the pandemic year, COVID-19 attackers have raised their attention to target the vulnerable victim by applying various tricks based on human fear, anxiety, and stress factors. They used a lot of tricks to make them explore by sending similar emails from WHO and Health care centers to make the people more vulnerable [1] [2]. Spear fishing is more targeted at open-source intelligence.…”

Section: Introductionmentioning

confidence: 99%

Design of Automated Website Phishing Detection using Sequential Mechanism of RCL Algorithm

C. Rajeswary

2023

IJRITCC

View full text Add to dashboard Cite

The phishing outbreaks in internet has become a major problem in web safety in recent years. The phishers will be stealing crucial economic data regarding the web user to perform economic break-in. In order to predict phishing websites, many blacklist-based phishing website recognition methods are used in this study. Traditional methods of detecting phishing websites rely on static features and rule-based schemes, which can be evaded by attackers. Recently, Deep Learning (DL) and Machine Learning (ML) models are employed for automated website phishing detection. With this motivation, this study develops an automated website phishing detection using the sequential mechanism of RCL algorithm. The proposed model employs Long-Short-Term Memory (LSTM), Convolutional Neural Network (CNN), and Random Forest (RF) models for the detection of attacks in the URLs and webpages by the similarity measurement of the decoy contents. The proposed model involves three major components namely, RF for URL phishing detection, CNN based phishing webpage detection, and LSTM based website classification (i.e., legitimate and phishing). The experimental result analysis of the RCL technique is tested on the benchmark dataset of Alexa and PhishTank. A comprehensive comparison study highlighted that the RCL algorithm accomplishes enhanced phishing detection performance over other existing techniques in terms of distinct evaluation metrics.

show abstract

Classification of Attack Types and Analysis of Attack Methods for Profiling Phishing Mail Attack Groups

Cited by 18 publications

References 10 publications

Phishing - Unvielling Its Techniques

Phishing - Unvielling Its Techniques

Identifying Vulnerabilities and Reducing Cyber Risks and Attacks Using a Cyber Security Lab Environment

Design of Automated Website Phishing Detection using Sequential Mechanism of RCL Algorithm

Contact Info

Product

Resources

About