Experimental Case Studies for Investigating E-Banking Phishing Techniques and Attack Strategies

Aburrous, Maher; Hossain, Mohammad Alamgir; Dahal, Keshav; Thabtah, Fadi

doi:10.1007/s12559-010-9042-7

Cited by 56 publications

(43 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…There are massive website features available for extraction such as URL length, URL IP address, domain name, web tra±c, page rank, su±x and pre¯x, the \@" symbol and many others (Aburrous et al, 2010). A smaller subset of these can be used to discriminate among phishy and legitimate websites according to a number of research studies, for example, Basnet et al (2008).…”

Section: The Anti-phishing Modelmentioning

confidence: 99%

Visualisation Model Based on Phishing Features

Rajab

2019

J. Info. Know. Mgmt.

View full text Add to dashboard Cite

The numbers of online purchases and electronic banking transactions have increased substantially in the era of electronic business and mobile commerce. These online financial activities have attracted a special web threat called “phishing” that targets Internet users by seeking their credentials in order to access their financial information. Phishing involves impersonating a legitimate website by creating a visually similar fake website to deceive users. In the last decade different solutions to fight phishing that are primarily based on educating users, user’s experience, search methods, machine learning and features similarity have been developed. This paper combines computational intelligence along with user’s experience approaches to develop an anti-phishing visualisation method. Our method employs effective features chosen following thorough analysis on features scores generated by Correlation Feature Set and Information Gain processing techniques. We validate our anti-phishing features using classification systems produced by rule induction data mining approach. False positives, false negatives and phishing detection rate are the basis of evaluating the classification systems to measure our anti-phishing methods features’ integrity.

show abstract

Section: The Anti-phishing Modelmentioning

confidence: 99%

Visualisation Model Based on Phishing Features

Rajab

2019

J. Info. Know. Mgmt.

View full text Add to dashboard Cite

show abstract

“…Aburrous et al [9] classified web features into six criteria. Using WEKA, [7] investigated rule induction methods to seek their applicability for categorizing websites based on phishing features in their earlier study by Aburrous et al in [9]. Many experiments with four classification algorithms (RIPPER, PART, PRISM, C4.5) were conducted.…”

Section: Decision Trees and Rule Inductionmentioning

confidence: 99%

“…Aburrous et al [9] passed is less than 0.5, and legitimate if the value is greater than 0.5. Results were compared to that of [7] on fuzzy techniques and found their technique was able to slightly enhance the phishing detection rate.…”

Section: Fuzzy Logicmentioning

confidence: 99%

Data Analytics: Intelligent Anti-Phishing Techniques Based on Machine Learning

Baadel

2019

J. Info. Know. Mgmt.

View full text Add to dashboard Cite

According to the international body Anti-Phishing Work Group (APWG), phishing activities have skyrocketed in the last few years and more online users are becoming susceptible to phishing attacks and scams. While many online users are vulnerable and naive to the phishing attacks, playing catch-up to the phishers’ evolving strategies is not an option. Machine Learning techniques play a significant role in developing effective anti-phishing models. This paper looks at phishing as a classification problem and outlines some of the recent intelligent machine learning techniques (associative classifications, dynamic self-structuring neural network, dynamic rule-induction, etc.) in the literature that is used as anti-phishing models. The purpose of this review is to serve researchers, organisations’ managers, computer security experts, lecturers, and students who are interested in understanding phishing and its corresponding intelligent solutions. This will equip individuals with knowledge and skills that may prevent phishing on a wider context within the community.

show abstract

“…A phishing scam has attracted the attention of both academicians and corporate researchers as it is a serious privacy and web security threat [23][24][25][26][27][28][29][30][31][32][33]. Phishing cannot be controlled by firewalls or any encryption software [34][35][36].…”

Section: Background History and Statisticsmentioning

confidence: 99%

Phishing Detection: Analysis of Visual Similarity Based Approaches

Jain

Gupta

2017

Security and Communication Networks

139

View full text Add to dashboard Cite

Phishing is one of the major problems faced by cyber-world and leads to financial losses for both industries and individuals. Detection of phishing attack with high accuracy has always been a challenging issue. At present, visual similarities based techniques are very useful for detecting phishing websites efficiently. Phishing website looks very similar in appearance to its corresponding legitimate website to deceive users into believing that they are browsing the correct website. Visual similarity based phishing detection techniques utilise the feature set like text content, text format, HTML tags, Cascading Style Sheet (CSS), image, and so forth, to make the decision. These approaches compare the suspicious website with the corresponding legitimate website by using various features and if the similarity is greater than the predefined threshold value then it is declared phishing. This paper presents a comprehensive analysis of phishing attacks, their exploitation, some of the recent visual similarity based approaches for phishing detection, and its comparative study. Our survey provides a better understanding of the problem, current solution space, and scope of future research to deal with phishing attacks efficiently using visual similarity based approaches.

show abstract

Experimental Case Studies for Investigating E-Banking Phishing Techniques and Attack Strategies

Cited by 56 publications

References 14 publications

Visualisation Model Based on Phishing Features

Visualisation Model Based on Phishing Features

Data Analytics: Intelligent Anti-Phishing Techniques Based on Machine Learning

Phishing Detection: Analysis of Visual Similarity Based Approaches

Contact Info

Product

Resources

About