A New Phishing Detection Approach

Slides:



Advertisements
Similar presentations
Patient information extraction in digitized X-ray imagery Hsien-Huang P. Wu Department of Electrical Engineering, National Yunlin University of Science.
Advertisements

Support.ebsco.com Student Research Center Tutorial.
TrustPort Net Gateway Web traffic protection. Keep It Secure Contents Latest security threats spam and malware Advantages of entry point.
Using the Self Service BMC Helpdesk
Financial Aid Management System Account Registration and Confirmation.
Reporter: Jing Chiu Advisor: Yuh-Jye Lee /7/181Data Mining & Machine Learning Lab.
Detecting Malicious Flux Service Networks through Passive Analysis of Recursive DNS Traces Roberto Perdisci, Igino Corona, David Dagon, Wenke Lee ACSAC.
George Tubin Senior Analyst Consumer Banking © 2005 The Tower Group, Inc. May not be reproduced by any means without express permission. All rights reserved.
Malware Identification and Classification
1 CANTINA : A Content-Based Approach to Detecting Phishing Web Sites WWW Yue Zhang, Jason Hong, and Lorrie Cranor.
Report : 鄭志欣 Advisor: Hsing-Kuo Pao 1 Learning to Detect Phishing s I. Fette, N. Sadeh, and A. Tomasic. Learning to detect phishing s. In Proceedings.
Design and Evaluation of a Real-Time URL Spam Filtering Service
PHAD- A Phishing Avoidance and Detection Tool Using Invisible Digital Watermarking By Sonali Batra Web 2.0 Security and Privacy 2014.
NCS welcome all participants on behalf of Quick Heal Anti Virus and Fortinet Firewall solution.
Social Engineering J Nivethan. Social Engineering The process of deceiving people into giving away access or confidential information Onlinne Phone Offline.
By Hitesh Ballani, Paul Francis, Xinyang Zhang Slides by Benson Luk for CS 217B.
Network Security: Spam Nick Feamster Georgia Tech CS 6250 Joint work with Anirudh Ramachanrdan, Shuang Hao, Santosh Vempala, Alex Gray.
File Concept l Contiguous logical address space l Types: Data: numeric, character, binary Program: source, object (load image) Documents.
Verma - ICISS 2014 R easoning M ining NLP Defense Rakesh M. Verma ReMiND Laboratory Catching Classical and Hijack-based Phishing Attacks.
The OWASP Foundation OWASP Chennai Phishing.
Login Screen This is the Sign In page for the Dashboard Enter Id and Password to sign In New User Registration.
Automated malware classification based on network behavior
CensorNet Ltd An introduction to CensorNet Mailsafe Presented by: XXXXXXXX Product Manager Tel: XXXXXXXXXXXXX.
WARNINGBIRD: A Near Real-time Detection System for Suspicious URLs in Twitter Stream.
Alert Correlation for Extracting Attack Strategies Authors: B. Zhu and A. A. Ghorbani Source: IJNS review paper Reporter: Chun-Ta Li ( 李俊達 )
PhishScore: Hacking Phishers’ Minds
Login Screen This is the Sign In page for the Dashboard New User Registration Enter Id and Password to sign In.
WEB SPOOFING by Miguel and Ngan. Content Web Spoofing Demo What is Web Spoofing How the attack works Different types of web spoofing How to spot a spoofed.
1 ITGS - introduction A computer may have: a direct connection to a net (cable); or remote access (modem). Connect network to other network through: cables.
Chapter 9: Cooperation in Intrusion Detection Networks Authors: Carol Fung and Raouf Boutaba Editors: M. S. Obaidat and S. Misra Jon Wiley & Sons publishing.
Vendor Module Screens. Screen 1 - Vendor Material This feature allows VENDOR to enter PO and list all the material from that vendor. This will help vendor.
Windows Vista Security Center Chapter 5(WV): Protecting Your Computer 9/17/20151Instructor: Shilpa Phanse.
SURF:SURF: Detecting and Measuring Search Poisoning Long Lu, Roberto Perdisci, and Wenke Lee Georgia Tech and University of Georgia.
Badvertisements: Stealthy Click-Fraud with Unwitting Accessories Mona Gandhi Markus Jakobsson Jacob Ratkiewicz Indiana University at Bloomington Presented.
Client X CronLab Spam Filter Technical Training Presentation 19/09/2015.
Reporter: Li, Fong Ruei National Taiwan University of Science and Technology 9/19/2015Slide 1 (of 32)
11 CANTINA: A Content- Based Approach to Detecting Phishing Web Sites Reporter: Gia-Nan Gao Advisor: Chin-Laung Lei 2010/6/7.
PLUG IT IN SIX Protecting Your Information Assets.
 We live in an information age where it's very easy to publish on the Internet. The average person can write their own blog and add to Wikipedia. Anything.
Roles 1. Your Role: End User End Users use Inside NCDOT and Connect NCDOT for basic browsing and reading Typical tasks can include: Open or download files.
Detecting Phishing in s Srikanth Palla Ram Dantu University of North Texas, Denton.
Security Analytics Thrust Anthony D. Joseph (UCB) Rachel Greenstadt (Drexel), Ling Huang (Intel), Dawn Song (UCB), Doug Tygar (UCB)
A Framework for Detection and Measurement of Phishing Attacks Reporter: Li, Fong Ruei National Taiwan University of Science and Technology 2/25/2016 Slide.
Microsoft Office 2008 for Mac – Illustrated Unit D: Getting Started with Safari.
Adware and Browser Hijacker – Symptoms and Preventions /killmalware /u/2/b/ /alexwaston14/viru s-removal/ /channel/UC90JNmv0 nAvomcLim5bUmnA.
Global One internet, worldwide Uncitral WTO Some laws: –Communications Decency Act –Child Online Protectioon Act –Children’s Internet Protection Act.
Transportation Agenda 19. Transportation Your Role: Designer Designers organize SharePoint content and determine how to display that content Typical tasks.
DNS Security Risks Section 0x02. Joke/Cool thing traceroute traceroute c
Cyber security. Malicious Code Social Engineering Detect and prevent.
Under the Shadow of sunshine
4 Criteria for evaluating digital information
ISYM 540 Current Topics in Information System Management
FRESH-PHISH A FRAMEWORK FOR AUTO-DETECTION OF PHISHING WEBSITES
ADVANCED PERSISTENT THREATS (APTs) - Simulation
BotCatch: A Behavior and Signature Correlated Bot Detection Approach
Demo Advanced Threat Protection
Adaptive Authentication
Information Security Session October 24, 2005
Welcome to FOCUS FOCUS website:
Automatic Discovery of Network Applications: A Hybrid Approach
HOW DO I KEEP MY COMPUTER SAFE?
Student Research Center
Single Sign On Glen Dorton 1/18/2019.
INTERNET PORNOGRAPHY.
This is the Sign In page for the Dashboard
DATABASES WHAT IS A DATABASE?
The Domain Abuse Activity Reporting System (DAAR)
Wireless Spoofing Attacks on Mobile Devices
Anomalous Database Transaction Detection
Week 7 - Wednesday CS363.
Presentation transcript:

A New Phishing E-Mail Detection Approach Kenneth F. Mbah, Ali A. Ghorbani Information Security Center of Excellence (ISCX), UNB Abstract According to APWG reports of October 2014 through September 2015, the number of unique Phishing e-mail reports they received from consumers has tremendously increased from 68270 to 106421 phishing e-mails . This significant increase in phishing e-mails reported is a proof that the question of privacy is still without any efficient solution. Hence, the contribution of researchers is needed to accurately detect phishing to guarantee safety of users data. Though a myriad of efforts have been made in literature on detecting phishing e-mails, none of them have paid attention on some variant of phishing e-mail such as advertisement e-mails and e-mails related to pornography. In this work, we focus detection of all types of deceptive phishing e-mail attacks and their variants such as ad and porn e-mails. We propose a novel framework to accurately classify e-mails as phishing or legitimate by defining a set of classification rules based on high quality features. Our system yields about 89% accuracy. Deceptive Phishing attacks Malware-based Phishing attacks Key logger and screen logger phishing attacks Session hijacking attacks Web Trojans attacks Hosts files poisoning attacks Phishing attacks: Experiment 7) System reconfiguration attacks 8) Data theft attacks 9) DNS-Based Phishing attacks 10) Content-injection Phishing attacks 11) Man-in-the middle Phishing attacks 12) Search engine Phishing attacks Dataset : We are using a publicly available Dataset of 9308 e-mails to test our framework in which 6951 e-mails are labeled as legitimate and 2357 are phishing e-mails. The legitimate e-mails are from both the 2002 and 2003 ham collections, easy and hard, and the phishing ones are from the publicly available phishing corpus. Features FEATURES Redirecting Signs Number of dash IP address in link Domain Length Misleading digits Characters Image src Whois Out Bound Flow @ in link Number of dash and dots in sender’s address Number Of Dots in link Contain Phish words More Slash In Link Contain Porn Words No. of Top level Domain Number of broken Links Digits in link Number of links The system we proposed based on the above selected features helps to accurately detect phishing deceptive e-mails. In the case of live detection, once an e-mail is alerted as phishing a reason is being attached to the system’s output and any decision to delete the e-mail is left to the user. Our nearest objective is to add the number of features mostly extracted from the sender’s ID in order to greatly increase the detection accuracy. Conclusion & Future Direction

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.