Does domain highlighting help people identify phishing sites?

Lin, Eric; Greenberg, Saul; Trotter, Eileah C.; Ma, D.C.; Aycock, John

doi:10.1145/1978942.1979244

Cited by 68 publications

(51 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Different tricks should be explained in different levels of NoPhish. There are several approaches to categorize URL spoofing tricks [4,6,15]. We propose to use a different categorization; one that is based on the difficulty to detect the corresponding spoofing trick.…”

Section: Categorization Of Url Spoofing Tricksmentioning

confidence: 99%

“…Therefore, the tools' checks need to be complemented by humans checking the URLs. Yet, many people lack the required knowledge to properly check URLs [5,6] and assess the trustworthiness of a given website. Some people are even not aware of faked messages and websites at all and, thus, are not aware that they should check URLs before providing sensitive information [7,5].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Learn to Spot Phishing URLs with the Android NoPhish App

Canova

Volkamer

Bergmann

et al. 2015

Information Security Education Across the Curriculum

View full text Add to dashboard Cite

Phishing is a prevalent issue in today's Internet. It can have financial or personal consequences. Attacks continue to become more and more sophisticated and the advanced ones (including spear phishing) can only be detected if people carefully check URLs -be it in messages or in the address bar of the web browser. We developed a game-based smartphone app -NoPhish -to educate people in accessing, parsing and checking URLs; i.e. enabling them to distinguish between trustworthy and non-trustworthy messages and websites. Throughout several levels of the game information is provided and phishing detection is exercised in a playful manner. Several learning principles were applied and the interfaces and texts were developed in a user-centered design.

show abstract

Section: Categorization Of Url Spoofing Tricksmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Learn to Spot Phishing URLs with the Android NoPhish App

Canova

Volkamer

Bergmann

et al. 2015

Information Security Education Across the Curriculum

View full text Add to dashboard Cite

show abstract

“…Traditional browser solutions to help users be aware of the phish, such as domain highlighting and phishing warnings, have shown to be not very effective [23,29]. To better inform users, researchers have proposed in-browser protection systems.…”

Section: Related Workmentioning

confidence: 99%

Eyes of a Human, Eyes of a Program: Leveraging Different Views of the Web for Analysis and Detection

Corbetta

Invernizzi

Kruegel

et al. 2014

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. With JavaScript and images at their disposal, web authors can create content that is immediately understandable to a person, but is beyond the direct analysis capability of computer programs, including security tools. Conversely, information can be deceiving for humans even if unable to fool a program. In this paper, we explore the discrepancies between user perception and program perception, using content obfuscation and counterfeit "seal" images as two simple but representative case studies. In a dataset of 149,700 pages we found that benign pages rarely engage in these practices, while uncovering hundreds of malicious pages that would be missed by traditional malware detectors. We envision that this type of heuristics could be a valuable addition to existing detection systems. To show this, we have implemented a proofof-concept detector that, based solely on a similarity score computed on our metrics, can already achieve a high precision (95%) and a good recall (73%).

show abstract

“…Domain highlighting in the browser's location bar is used by browser vendors to counteract such attacks but users are still being tricked by them [18].…”

Section: Possible Subtermsmentioning

confidence: 99%

Sophisticated Phishers Make More Spelling Mistakes: Using URL Similarity against Phishing

Maurer¹,

Hofer²

2012

Cyberspace Safety and Security

View full text Add to dashboard Cite

Abstract. Phishing attacks rise in quantity and quality. With short online lifetimes of those attacks, classical blacklist based approaches are not su cient to protect online users. While attackers manage to achieve high similarity between original and fraudulent websites, this fact can also be used for attack detection. In many cases attackers try to make the Internet address (URL) from a website look similar to the original. In this work, we present a way of using the URL itself for automated detection of phishing websites by extracting and verifying di erent terms of a URL using search engine spelling recommendation. We evaluate our concept against a large test set of 8730 real phishing URLs. In addition, we collected scores for the visual quality of a subset of those attacks to be able to compare the performance of our tests for di erent attack qualities. Results suggest that our heuristics are able to mark 54.3% of the malicious URLs as suspicious. With increasing visual quality of the phishing websites, the number of URL characteristics that allow a detection increases, as well.

show abstract

Does domain highlighting help people identify phishing sites?

Cited by 68 publications

References 13 publications

Learn to Spot Phishing URLs with the Android NoPhish App

Learn to Spot Phishing URLs with the Android NoPhish App

Eyes of a Human, Eyes of a Program: Leveraging Different Views of the Web for Analysis and Detection

Sophisticated Phishers Make More Spelling Mistakes: Using URL Similarity against Phishing

Contact Info

Product

Resources

About