ipl-logo

Phishing Attack Essay

4740 Words19 Pages

www.ijraset.com Vol. 2 Issue IX, September 2014
ISSN: 2321-9653
INTERNATIONAL JOURNAL FOR RESEARCH IN AP PL I ED SC I ENC E AND
ENGINEERING TECHNOLO GY (IJRAS ET)
Page 92
A rule based approach for detecting
Phishing attacks
Vivek Shukla
1
, Mahendra Kumar Rai2
1,2 M.E.(CSE), HOD(IT)
(S.R.I.T.) Jabalpur (M.P)
Abstract: Phishing attacks are one of the emerging serious threats against personal data security. These attacks are often performed by sending out emails that seem to originate from a trusted party. The objective is to deceive the recipient to release sensitive information such as usernames, passwords, banking details, or credentials. The aim of phishing is to steal a user’s identity in order to make fraudulent transactions as if the Phisher …show more content…

Business refers to the business from which the email supposedly has been sent. LoginURL refers to the URL within the email that the recipient should use to access the business’ login page. The rules fall into the following general categories:
(1) Identification and analysis of the login URL in the email
(2) Analysis of the email headers
(3) Analysis across URLs and images in the email
(4) Determining if the URL is accessible
These rules are:
Rule 1: If the email appears (based on search engine results) to not be directing the recipient to the actual login page for the business, the result is positive. Rule 2: In HTML formatted emails, if a URL displayed to the recipient uses TLS, it is compared to the URL in the HREF tag. If the URL in the tag does not use TLS , the result is positive. Rule 3: If the login URL is referenced as a raw IP address instead of a domain name, the result is positive. Rule 4: If the business name appears in the login URL, but not in the domain portion, the result is positive. www.ijraset.com Vol. 2 Issue IX, September 2014
ISSN: 2321-9653
INTERNATIONAL JOURNAL FOR RESEARCH IN AP PL I ED SC I ENC E AND
ENGINEERING TECHNOLO GY (IJRAS …show more content…

These sources could take the form of web services, or other tagged resources, to provide additional information to the decision making process. many phishing attacks include copies of corporate logos, and if one could map a logo back to its legitimate owner’s website, that would be valuable information in determining the authenticity of a website or email displaying that logo. As image sharing and tagging services such as Flickr [29] are increasing in use, it is not unreasonable to think that some day in the near future, one might actually be able to search with an image and get back a description as a result. There are a number of emerging technologies that could greatly assist phishing classification that we have not considered. For instance, Sender ID Framework (SIDF) [19] and DomainKeys
[28], along with other such sender authentication technologies, www.ijraset.com Vol. 2 Issue IX, September 2014
ISSN: 2321-9653
INTERNATIONAL JOURNAL FOR RESEARCH IN AP PL I ED SC I ENC E AND
ENGINEERING TECHNOLO GY (IJRAS ET)
Page 99 should help to both reduce false positives and make detection of spoofed senders much simplerin the time to come.

Show More
Related

Nt1310 Unit 1 Assignment 2

565 Words | 3 Pages

The hackers mainly depict the record as a critical report on an earnest matter. He can compose for the benefit of a respectable organization, similar to the an institution, national post, a bank, a messenger firm, a government branch, a social network, or a legitimate expert. By composing in the interest of a current element, the spammer makes the notice appear to be certifiable. He will form the message as needs be, with the suggestion that you ought to open the connection instantly. Before opening a record from an email, check the gave contacts.

Read More

Eet282 Unit 2 Review Assignment

277 Words | 2 Pages

EET282 Unit 2 Review Assignment 1. Social Engineering relies on tricking and deceiving someone to access a system. 2. Google Phishing involves phishers setting up their own search engines to direct traffic to illegitimate sites. 3.

Read More

Nt1310 Unit 2 Term Paper

154 Words | 1 Pages

• ADVANCED DIPLOMA IN ELECTRICAL POWER ENGINEERING…....... (EIT), Eng INSTITUTE OF TECH 2017 • APPRENTICE TRAINING ELECTRICIAN……………………...……………………… Feb 2001 - Feb 2005 • NATIONAL CERTIFICATE IN ELECTRICAL POWER ENGINEERING................. GWERU POLYTECHNIC - 2001 • NASHVILLE HIGH SCHOOL ZIMBABWE 6 O Levels…………..……………………………….. 1990-1994 • Cert III in ESI - POWER SYSTEMS DISTRIBUTION OVERHEAD QUALIFICATION

Read More

Nt1330 Unit 3

630 Words | 3 Pages

37. Are all our email servers configured to check all incoming and outgoing emails for viruses, spam and other threats? 38. Are only authorised staff can access operating system utilities and perform software upgrade and administration to network components? 39.

Read More

Nt1310 Unit 1

410 Words | 2 Pages

Misuse detection is used to identify previously known attacks for which they require before hand knowledge of attack signature. the disadvantage of this method is that prior knowledge of the attack is required and hence new attacks cannot be identified until new attacks signature have been developed for them. In anomaly detection system monitors activity to detect any significant deviation from normal user behavior compared to known user standard behavior, this type of intrusion detection can effectively protect against both well known and new attacks since no prior knowledge about intrusion is required. One of the most significant aspects of Intrusion Detection System is the use of Artificial Intelligence techniques[39] to train the IDS about possible threats and gather information about the various traffic patterns to infer rules based on these patterns to distinguish between to differentiate between normal and intrusive

Read More

Ee315 Unit 5 Work Sheet

1155 Words | 5 Pages

All KFUPM/ACHB examination regulations apply. Course: EE315: PROBABILISTIC METHODS IN ELECTRICAL ENGINEERING Semester-year: 131-2013-2014 Day-Date: THURSDAY November 14, 2013 Start time: 07:30 AM Finish time: 09:00 AM Instructor Name Dr. Belloui Bouzid Signature General Information to Students: Read and follow the instructions for each question carefully.

Read More

Hcr 220 Week 3 Term Paper

449 Words | 2 Pages

Susan Mckinney Week 3 MOS 1 Discussion Thread What measures can be taken to guarantee the security of EHRs? So many things can be done to insure the safety of patients Electronic Health Records (EHR).

Read More

Summary: The Ethical Practice Of Identity Theft

841 Words | 4 Pages

The rapid proliferation of information technology has led to a significant rise in the number of people who use the internet in one way or another. With the growth in the number of persons who have an internet connection; certain individuals have begun to exploit this resource through the unethical practice of Identity theft. As more and more individuals are posting their personal information online, cybercriminals are stealing this information with the aim of assuming the victim's identity so as to either obtain financial advantage or benefits that are associated with the victim (Jewkes, 2013). The act of stealing other people's identity cannot be considered as ethical because it violates the victim's right to privacy.

Read More

Argumentative Essay On Internet Privacy

916 Words | 4 Pages

INTERNET PRIVACY When we say Internet maybe in our mind it’s about our social media right? But what does it mean when we say Internet Privacy? Internet Privacy, it involves the right or mandate of personal “Privacy” concerning the storing, repurposing, provision to third parties, and displaying of information pertaining to oneself via of the “Internet”. It is also a subset of “Data Privacy”. Privacy concerns have been articulated from the beginnings of large scale computer sharing.

Read More

Credit Card Fraud Essay

834 Words | 4 Pages

Stolen information can be from companies or restaurants or government agencies (Soudijn and Zegers, 2012). Phishing is also a method in which financial information can be lost. Social security number is a very crucial information along with personal information like name, date of birth, email address, bank account information. A hacker can open a bank account with that identity or file a tax return or can take the government benefits.

Read More

Essay On Cyberwarfare

858 Words | 4 Pages

Cyber threats continue to plague governments and businesses around the world. Cyberwarfare is Internet-based conflict involving politically motivated attacks on information and information systems. Normally there are two purposes of Cyberwarfare, espionage or sabotage. Cyberwarfare attacks can disable official websites and networks, disrupt or disable essential services, steal or alter classified data, and cripple financial systems. Cyber operations can also aide military operations, such as intelligence gathering and information warfare.

Read More

Reaction Paper About Social Engineering

1868 Words | 8 Pages

There was no such thing as worldwide web to provide instant access to information. Now internet is almost everywhere and changing our live. This research paper will focus on social engineering attacks taking place in the digital realm and addresses the following questions. What social engineering is?

Read More

Essay On How To Stay Safe Online

744 Words | 3 Pages

Staying Safe Online - for Teenagers & Adult Please carefully consider and abide by the tips below and remember that they apply to public posts and private messages. The importance of staying safe online cannot be overestimated. Always keep in mind that there are lots of dangerous people online. Many of them are very good at pretending to be someone else and winning your trust. Please read the SMART Guidelines below, for useful tips on staying safe online.

Read More

Persuasive Essay: The Dangers Of The Internet

1281 Words | 6 Pages

You think you know, but you don´t. Internet can be a very good thing. But it can also be the most dangerous thing you´ll ever use. Do you really know who the person you´re talking to, is the one he says he is? How do you know you not being fouled by a man in India, trying to steal your credit card information?

Read More

Cause And Effect Of Cybercrime

1038 Words | 5 Pages

Becoming the victim of cybercrime can have long-lasting effects on your life. One common technique scammers employ is phishing, sending false emails purporting to come from a bank or other financial institution requesting personal information. If you hand over this information, it can allow the criminal to access your bank and credit accounts, as well as open new accounts and destroy your credit rating. According to EWeek (2012) a survey of large companies found an average expenditure of $8.9 million per year on cyber security, with 100 percent of firms surveyed reporting at least one malware incident in the preceding 12 months and 71 percent reporting the hijacking of company computers

Read More

More about Phishing Attack Essay

Related Topics

Open Document