Sophisticated Phishers Make More Spelling Mistakes: Using URL Similarity against Phishing

Maurer, Max-Emanuel; Hofer, L.

doi:10.1007/978-3-642-35362-8_31

Cited by 17 publications

(7 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this section we focus on work which looks at deceiving people with malicious URLs. Numerous studies have shown that people have trouble accurately identifying phishing URLs [14,31,11,15]. Users are generally more likely to draw clues from the page that has been loaded than from the URL or other security indicators [14,4,28,2].…”

Section: Phishingmentioning

confidence: 99%

What is this URL's Destination? Empirical Evaluation of Users' URL Reading

Albakry

Vaniea

Wolters

2020

Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems

View full text Add to dashboard Cite

Common anti-phishing advice tells users to mouse over links, look at the URL, and compare to the expected destination, implicitly assuming that they are able to read the URL. To test this assumption, we conducted a survey with 1929 participants recruited from the Amazon Mechanical Turk and Prolific Academic platforms. Participants were shown 23 URLs with various URL structures. For each URL, participants were asked via a multiple choice question where the URL would lead and how safe they feel clicking on it would be. Using latent class analysis, participants were stratified by self-reported technology use. Participants were strongly biased towards answering that the URL would lead to the website of the organization whose name appeared in the URL, regardless of its position in the URL structure. The group with the highest technology use was only minorly better at URL reading.

show abstract

Section: Phishingmentioning

confidence: 99%

What is this URL's Destination? Empirical Evaluation of Users' URL Reading

Albakry

Vaniea

Wolters

2020

Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems

View full text Add to dashboard Cite

show abstract

“…The deceptions are simple, yet effective. This has attracted considerably high attention from the anti-phishing researchers to focus on a URL-based approach (Maurer and Höfer, 2012). Nguyen et al (2013) and Verma and Dyer (2015) are among the works that contribute to the URL-based approach.…”

Section: Related Workmentioning

confidence: 99%

“…Nguyen et al (2013) and Verma and Dyer (2015) are among the works that contribute to the URL-based approach. An interesting one is Maurer and Höfer (2012) which uses spelling recommendations from a search engine and a string similarity algorithm. Since each URL is unique, phishers can only use small spelling mistakes that might go overlooked by unsuspecting users to impersonate a legitimate URL.…”

Section: Related Workmentioning

confidence: 99%

Utilisation of website logo for phishing detection

Chiew

Chang

Sze

et al. 2015

Computers & Security

123

View full text Add to dashboard Cite

“…Anti-phishing techniques for the web have been deployed in practice [7,16]. Proposals include automated comparison of website URLs [27], visual comparison of website contents [4,43], use of a separate and trusted authentication device [30], personalized indicators [6,20,33], multi-stage authentication [14], and attention key sequences to trigger security checks on websites [41]. While some of these mechanisms are specific to the web environment, others could be adapted also for mobile application phishing detection.…”

Section: Related Workmentioning

confidence: 99%

Hardened Setup of Personalized Security Indicators to Counter Phishing Attacks in Mobile Banking

Marforio

Masti

Soriente

et al. 2016

Proceedings of the 6th Workshop on Security and Privacy in Smartphones and Mobile Devices

View full text Add to dashboard Cite

Phishing in mobile applications is a relevant threat with successful attacks reported in the wild. In such attacks, malicious mobile applications masquerade as legitimate ones to steal user credentials. In this paper we categorize application phishing attacks in mobile platforms and possible countermeasures. We show that personalized security indicators can help users to detect phishing attacks and have very little deployment cost. Personalized security indicators, however, rely on the user alertness to detect phishing attacks. Previous work in the context of website phishing has shown that users tend to ignore the absence of security indicators and fall victim of the attacker. Consequently, the research community has deemed personalized security indicators as an ineffective phishing detection mechanism.We evaluate personalized security indicators as a phishing detection solution in the context of mobile applications. We conducted a large-scale user study where a significant amount of participants that used personalized security indicators were able to detect phishing. All participants that did not use indicators could not detect the attack and entered their credentials to a phishing application. We found the difference in the attack detection ratio to be statistically significant. Personalized security indicators can, therefore, help phishing detection in mobile applications and their reputation as an anti-phishing mechanism should be reconsidered.We also propose a novel protocol to setup personalized security indicators under a strong adversarial model and provide details on its performance and usability.

show abstract

Sophisticated Phishers Make More Spelling Mistakes: Using URL Similarity against Phishing

Cited by 17 publications

References 10 publications

What is this URL's Destination? Empirical Evaluation of Users' URL Reading

What is this URL's Destination? Empirical Evaluation of Users' URL Reading

Utilisation of website logo for phishing detection

Hardened Setup of Personalized Security Indicators to Counter Phishing Attacks in Mobile Banking

Contact Info

Product

Resources

About