LAPSE:2023.2025
Published Article
LAPSE:2023.2025
An Effective and Secure Mechanism for Phishing Attacks Using a Machine Learning Approach
February 21, 2023
Abstract
Phishing is one of the biggest crimes in the world and involves the theft of the user’s sensitive data. Usually, phishing websites target individuals’ websites, organizations, sites for cloud storage, and government websites. Most users, while surfing the internet, are unaware of phishing attacks. Many existing phishing approaches have failed in providing a useful way to the issues facing e-mails attacks. Currently, hardware-based phishing approaches are used to face software attacks. Due to the rise in these kinds of problems, the proposed work focused on a three-stage phishing series attack for precisely detecting the problems in a content-based manner as a phishing attack mechanism. There were three input values—uniform resource locators and traffic and web content based on features of a phishing attack and non-attack of phishing website technique features. To implement the proposed phishing attack mechanism, a dataset is collected from recent phishing cases. It was found that real phishing cases give a higher accuracy on both zero-day phishing attacks and in phishing attack detection. Three different classifiers were used to determine classification accuracy in detecting phishing, resulting in a classification accuracy of 95.18%, 85.45%, and 78.89%, for NN, SVM, and RF, respectively. The results suggest that a machine learning approach is best for detecting phishing.
Phishing is one of the biggest crimes in the world and involves the theft of the user’s sensitive data. Usually, phishing websites target individuals’ websites, organizations, sites for cloud storage, and government websites. Most users, while surfing the internet, are unaware of phishing attacks. Many existing phishing approaches have failed in providing a useful way to the issues facing e-mails attacks. Currently, hardware-based phishing approaches are used to face software attacks. Due to the rise in these kinds of problems, the proposed work focused on a three-stage phishing series attack for precisely detecting the problems in a content-based manner as a phishing attack mechanism. There were three input values—uniform resource locators and traffic and web content based on features of a phishing attack and non-attack of phishing website technique features. To implement the proposed phishing attack mechanism, a dataset is collected from recent phishing cases. It was found that real phishing cases give a higher accuracy on both zero-day phishing attacks and in phishing attack detection. Three different classifiers were used to determine classification accuracy in detecting phishing, resulting in a classification accuracy of 95.18%, 85.45%, and 78.89%, for NN, SVM, and RF, respectively. The results suggest that a machine learning approach is best for detecting phishing.
Record ID
Keywords
attack detection, heuristic analysis, machine learning classification, phishing, web crawler
Subject
Suggested Citation
Mohamed G, Visumathi J, Mahdal M, Anand J, Elangovan M. An Effective and Secure Mechanism for Phishing Attacks Using a Machine Learning Approach. (2023). LAPSE:2023.2025
Author Affiliations
Mohamed G: Department of Information and Communication Engineering, Anna University, Chennai 600 025, India
Visumathi J: Department of Computer Science and Engineering, Veltech Rangarajan Dr Sangunthala R&D Institute of Science and Technology, Chennai 600 092, India
Mahdal M: Department of Control Systems and Instrumentation, Faculty of Mechanical Engineering, VSB-Technical University of Ostrava, 17. Listopadu 2172/15, 708 00 Ostrava, Czech Republic [ORCID]
Anand J: Department of Electronics and Communication Engineering, KCG College of Technology Karapakkam, Chennai 600 097, India [ORCID]
Elangovan M: Department of R&D, Bond Marine Consultancy, London EC1V 2NX, UK [ORCID]
Visumathi J: Department of Computer Science and Engineering, Veltech Rangarajan Dr Sangunthala R&D Institute of Science and Technology, Chennai 600 092, India
Mahdal M: Department of Control Systems and Instrumentation, Faculty of Mechanical Engineering, VSB-Technical University of Ostrava, 17. Listopadu 2172/15, 708 00 Ostrava, Czech Republic [ORCID]
Anand J: Department of Electronics and Communication Engineering, KCG College of Technology Karapakkam, Chennai 600 097, India [ORCID]
Elangovan M: Department of R&D, Bond Marine Consultancy, London EC1V 2NX, UK [ORCID]
Journal Name
Processes
Volume
10
Issue
7
First Page
1356
Year
2022
Publication Date
2022-07-12
ISSN
2227-9717
Version Comments
Original Submission
Other Meta
PII: pr10071356, Publication Type: Journal Article
Record Map
Published Article
LAPSE:2023.2025
This Record
External Link
https://doi.org/10.3390/pr10071356
Publisher Version
Download
Meta
Record Statistics
Record Views
224
Version History
[v1] (Original Submission)
Feb 21, 2023
Verified by curator on
Feb 21, 2023
This Version Number
v1
Citations
Most Recent
This Version
URL Here
https://psecommunity.org/LAPSE:2023.2025
Record Owner
Auto Uploader for LAPSE
Links to Related Works