A Human in Every APE: Delineating and Evaluating the Human Analysis Systems of Anti-Phishing Entities

“…Such techniques have been improved and nowadays they even involve automatic updates with recent feeds (e.g., PhishTank [6]). However, blocklists are a double-edged sword: on the good side, they are very precise and are hence favored due to the low rate of false alarms; on the bad side, they are only effective against known phishing websites [9]. The latter is a problem: expert attackers are aware of blocklists and hence move their phishing 'hooks' from site to site, bypassing most PWD.…”

“…Of course, the attacker expects the target ML-PWD to be using 𝐹 𝑐 9. Overall, for our experiments we develop 900 M (given by: 2 source datasets * 50 random draws * 3 𝐹 * 3 A), each assessed against 1200 adversarial examples.…”

SpacePhish: The Evasion-space of Adversarial Attacks against Phishing Website Detectors using Machine Learning

“…Such techniques have been improved and nowadays they even involve automatic updates with recent feeds (e.g., PhishTank [6]). However, blocklists are a double-edged sword: on the good side, they are very precise and are hence favored due to the low rate of false alarms; on the bad side, they are only effective against known phishing websites [9]. The latter is a problem: expert attackers are aware of blocklists and hence move their phishing 'hooks' from site to site, bypassing most PWD.…”

“…Of course, the attacker expects the target ML-PWD to be using 𝐹 𝑐 9. Overall, for our experiments we develop 900 M (given by: 2 source datasets * 50 random draws * 3 𝐹 * 3 A), each assessed against 1200 adversarial examples.…”

SpacePhish: The Evasion-space of Adversarial Attacks against Phishing Website Detectors using Machine Learning

Uncovering the Cloak: A Systematic Review of Techniques Used to Conceal Phishing Websites

PhishinWebView: Analysis of Anti-Phishing Entities in Mobile Apps with WebView Targeted Phishing