NLP Based Phishing Attack Detection from URLs

In recent years, phishing has become an increasing threat in the cyberspace, especially with the increasingly use of messaging and social networks. In traditional phishing attack, users are motivated to visit a bogus website which is carefully designed to look like exactly to a famous banking, e-commerce, social networks, etc., site for getting some personal information such as credit card numbers, usernames, passwords, and even money. Lots of the phishers usually make their attacks with the help of emails by forwarding to the target website. Inexperienced users (even the experienced ones) can visit these fake websites and share their sensitive information. In a phishing attack analysis of 45 countries in the last quarter of 2016, China, Turkey and Taiwan are mostly plagued by malware with the rate of 47.09%, 42.88% and 38.98%. Detection of a phishing attack is a challenging problem, because, this type of attacks is considered as semantics-based attacks, which mainly exploit the computer user’s vulnerabilities. In this paper, a phishing detection system which can detect this type of attacks by using some machine learning algorithms and detecting some visual similarities with the help of some natural language processing techniques. Many tests have been applied on the proposed system and experimental results showed that Random Forest algorithm has a very good performance with a success rate of 97.2%.

[1]  Suku Nair,et al.  A comparison of machine learning techniques for phishing detection , 2007, eCrime '07.

[2]  Niels Provos,et al.  A framework for detection and measurement of phishing attacks , 2007, WORM '07.

[3]  Youssef Iraqi,et al.  Phishing Detection: A Literature Survey , 2013, IEEE Communications Surveys & Tutorials.

[4]  Fergus Toolan,et al.  Phishing detection using classifier ensembles , 2009, 2009 eCrime Researchers Summit.

[5]  Xiaotie Deng,et al.  Detecting Phishing Web Pages with Visual Similarity Assessment Based on Earth Mover's Distance (EMD) , 2006, IEEE Transactions on Dependable and Secure Computing.

[6]  Vijay K. Gurbani,et al.  Phishwish: A Stateless Phishing Filter Using Minimal Rules , 2008, Financial Cryptography.

[7]  Allen Stone Natural-Language Processing for Intrusion Detection , 2007, Computer.

[8]  Ozgur Koray Sahingoz,et al.  Detecting phishing attacks from URL by using NLP techniques , 2017, 2017 International Conference on Computer Science and Engineering (UBMK).

[9]  Weili Han,et al.  Anti-phishing based on automated individual white-list , 2008, DIM '08.

[10]  Nadia Erdogan,et al.  RUBDES: A Rule Based Distributed Event System , 2003, ISCIS.