scholarly journals Detecting Forged E-Mail using Data Mining Techniques

2019 ◽  
Vol 9 (1) ◽  
pp. 4017-4023
Keyword(s):  
Research Work ◽  
Personal Communication ◽  
Sensitive Information ◽  
Business Organizations ◽  
Phishing Attacks ◽  
Confidential Data ◽  
Alternative Means ◽  
Using Data ◽  
Modern Era ◽  
E Mail

In the modern era of computers E-mails is becoming a very important mode of communication for industry, people, and organizations and for the society as a whole. Especially in corporate sectors and business organizations, Emails are widely used for business and personal communication. The feature of E-mails is that, it creates quick, reliable type of communication that's all free and simply accessible. In spite of so many alternative means of communication such as messages, social networks like WhatsApp, Twitter, and mobile applications, the uses of E-mails continuously growing exponentially. But due to its popularity there are continuously threats and attacks are carried out over E-mails for various gain. The foremost popular attack over the web is phishing mails. Phishers utilize E-mail services quite expeditiously in spite of different detection and hindrance techniques already in situ. Most of the present day phishing attacks use E-mail as the primary carrier. Phishers conceive to fraudulently acquire sensitive information, like usernames, passwords and master card details, by masquerading as a trustworthy entity in transmission. Even though there are a lot of existing techniques offered to notice phishing attacks, every one of them have their own limitations. This research aims to identify the phishing E-mails using classification techniques with a better accuracy. The technique proposed in this research work to classify forged E-mails from the Genuine E-mails and also examines the effectiveness of detection of common user’s phishing E-mails. It provides a great help to the common man by proper detection of phishing attacks and protecting their confidential data.

PHISHING: AN EVOLVING THREAT

2015 ◽  
Vol 3 (1) ◽  
pp. 216-222
Author(s):  
Keyur Shah
Keyword(s):  
Success Rate ◽  
Large Scale ◽  
Large Population ◽  
Social Engineering ◽  
Text Messages ◽  
Sensitive Information ◽  
Phishing Attacks ◽  
Internet Users ◽  
Confidential Data ◽  
E Mail

Phishing is one of the most common attacks used to extract sensitive information for malicious use. It is one of the easiest ways to extract confidential data on a large-scale. A fraudulent website/e-mail which looks very similar to the original is setup to trap the victim to give away confidential information. A large population of internet users still lacks knowledge to avoid phishing. When the phishing attacks are complimented with social engineering skills, the success rate is increased. Along with the progress of technology, phishing techniques have evolved encroaching upon newer communication mediums like voice and text messages giving rise to newer specialized forms of Phishing called - Vishing and SMSishing. In this paper, we also cover how to avoid being a victim of these attacks. One of the best promising methods to avoid Phishing is Zero Knowledge Authentication -ZeKo which immunes the user from phishing attacks.

scholarly journals Phishfort – Anti-Phishing Framework

2018 ◽  
Vol 7 (3.4) ◽  
pp. 42
Author(s):  
Eric Abraham Kalloor ◽  
Dr Manoj Kumar Mishra ◽  
Prof. Joy Paulose
Keyword(s):  
Human Nature ◽  
Social Engineering ◽  
Sensitive Information ◽  
Web Page ◽  
Close Attention ◽  
Unauthorized Access ◽  
Browser Extension ◽  
Phishing Attacks ◽  
Confidential Data

Phishing attack is one of the most common form of attack used to get unauthorized access to users’ credentials or any other sensitive information. It is classified under social engineering attack, which means it is not a technical vulnerability. The attacker exploits the human nature to make mistake by fooling the user to think that a given web page is genuine and submitting confidential data into an embedded form, which is harvested by the attacker. A phishing page is often an exact replica of the legitimate page, the only noticeable difference is the URL. Normal users do not pay close attention to the URL every time, hence they are exploited by the attacker. This paper suggests a login framework which can be used independently or along with a browser extension which will act as a line of defense against such phishing attacks. The semi-automated login mechanism suggested in this paper eliminates the need for the user to be alert at all time, and it also provides a personalized login screen so that the user can to distinguish between a genuine and fake login page quite easily.  

scholarly journals The identification and analysis of making-do waste: insights from two Brazilian construction sites

2017 ◽  
Vol 17 (3) ◽  
pp. 183-197 ◽  
Author(s):  
Carlos Torres Formoso ◽  
Lucila Sommer ◽  
Lauri Koskela ◽  
Eduardo Luís Isatto
Keyword(s):  
Case Studies ◽  
Construction Industry ◽  
Research Work ◽  
Business Organizations ◽  
Construction Sites ◽  
Human Practice ◽  
External Conditions ◽  
Exploratory Case Studies

Abstract Making-do has been pointed out as an important category of waste in the construction industry. It refers to a situation in which a task starts or continues without having available all the inputs required for its completion, such as materials, machinery, tools, personnel, external conditions, and information. By contrast, the literature points out that improvisation is a ubiquitous human practice even in highly structured business organizations, and plays an important role when rules and methods fail. The aim of this paper is to provide some insights on the nature of making-do as a type of waste, based on two exploratory case studies carried out on construction sites. The main contributions of this research work are concerned with the identification of different categories of making-do and its main causes. This paper also discusses some strategies for reducing making-do on construction sites.

scholarly journals MACHINE LEARNING APPROACH FOR CRYPTOSYSTEM SUGGEST IN EDUCARE OVER CLOUDS

2021 ◽  
Vol 9 (6) ◽  
pp. 98-103
Author(s):  
Ravish G K ◽  
Thippeswamy K
Keyword(s):  
Machine Learning ◽  
Research Work ◽  
Cloud Services ◽  
Learning System ◽  
Security And Privacy ◽  
Great Promise ◽  
Sensitive Information ◽  
Online Systems ◽  
Machine Learning Approach ◽  
Time Requirements

In the current situation of the pandemic, global organizations are turning to online functionality to ensure survival and sustainability. The future, even though uncertain, holds great promise for the education system being online. Cloud services for education are the center of this research work as they require security and privacy. The sensitive information about the users and the institutions need to be protected from all interested third parties. since the data delivery on any of the online systems is always time sensitive, the have to be fast. In previous works some of the algorithms were explored and statistical inference based decision was presented. In this work a machine learning system is designed to make that decision based on data type and time requirements.

scholarly journals Analyze of Phishing Violence and Alleviation

2019 ◽  
Vol 4 (6) ◽  
Author(s):  
Ramesh Palanisamy ◽  
Mohammed Tariq Shaikh ◽  
Senthil Jayapal ◽  
Darla Thomas
Keyword(s):  
New Technologies ◽  
The Internet ◽  
Prevention Measures ◽  
Dynamic Features ◽  
Important Data ◽  
Phishing Attacks ◽  
E Mail

Nowadays phishing can be considered one of the simplest and oldest ways to steal important data from users on the internet. And only by collecting a small quantity of data about victim the attacker will be able to produce personalized and plausible e-mail. However, these days more ways that are trying to be found and new technologies are inventive to deal with phishing. In this paper, I will present type, cause, prevention measures and dynamic features for growing phishing attacks.

A Multistage Framework to Defend Against Phishing Attacks

Cyber Crime ◽  
2013 ◽  
pp. 245-262
Author(s):  
Madhusudhanan Chandrasekaran ◽  
Shambhu Upadhyaya
Keyword(s):  
Performance Analysis ◽  
Structural Properties ◽  
Web Site ◽  
End Users ◽  
Analysis Study ◽  
Second Stage ◽  
Phishing Attacks ◽  
Two Stages ◽  
E Mail

Phishing scams pose a serious threat to end-users and commercial institutions alike. E-mail continues to be the favorite vehicle to perpetrate such scams, mainly due to its widespread use combined with the ability to easily spoof them. Several approaches, both generic and specialized, have been proposed to address this growing problem. However, phishing techniques, growing in ingenuity as well as sophistication, render these solutions weak. To overcome these limitations, we propose a multistage framework – the first stage aims at detecting phishing based on their semantic and structural properties, whereas in the second stage we propose a proactive technique based on a challenge-response technique to establish the authenticity of a Web site. Using live e-mail data, we demonstrate that our approach with these two stages is able to detect a wider range of phishing attacks than existing schemes. Also, our performance analysis study shows that the implementation overhead introduced by our tool is negligibly small.

Network Worms

2011 ◽  
pp. 2783-2788
Author(s):  
Thomas M. Chen ◽  
Greg W. Tally
Keyword(s):  
Denial Of Service ◽  
Human Action ◽  
Network Services ◽  
The Internet ◽  
Distributed Denial Of Service ◽  
Functional Perspective ◽  
Internet Users ◽  
Confidential Data ◽  
Self Replication ◽  
E Mail

Internet users are currently plagued by an assortment of malicious software (malware). The Internet provides not only connectivity for network services such as e-mail and Web browsing, but also an environment for the spread of malware between computers. Users can be affected even if their computers are not vulnerable to malware. For example, fast-spreading worms can cause widespread congestion that will bring down network services. Worms and viruses are both common types of self-replicating malware but differ in their method of replication (Grimes, 2001; Harley, Slade, & Gattiker, 2001; Szor, 2005). A computer virus depends on hijacking control of another (host) program to attach a copy of its virus code to more files or programs. When the newly infected program is executed, the virus code is also executed. In contrast, a worm is a standalone program that does not depend on other programs (Nazario, 2004). It replicates by searching for vulnerable targets through the network, and attempts to transfer a copy of itself. Worms are dependent on the network environment to spread. Over the years, the Internet has become a fertile environment for worms to thrive. The constant exposure of computer users to worm threats from the Internet is a major concern. Another concern is the possible rate of infection. Because worms are automated programs, they can spread without any human action. The fastest time needed to infect a majority of Internet users is a matter of speculation, but some worry that a new worm outbreak could spread through the Internet much faster than defenses could detect and block it. The most reliable defenses are based on attack signatures. If a new worm does not have an existing signature, it could have some time to spread unhindered and complete its damage before a signature can be devised for it. Perhaps a greater concern about worms is their role as vehicles for delivery of other malware in their payload. Once a worm has compromised a host victim, it can execute any payload. Historical examples of worms have included: • Trojan horses: Software with a hidden malicious function, for example, to steal confidential data or open a backdoor; • Droppers: Designed to facilitate downloading of other malware; • Bots: Software to listen covertly for and execute remote commands, for example, to send spam or carry out a distributed denial of service (DDoS) attack. These types of malware are not able to spread by themselves, and therefore take advantage of the self-replication characteristic of worms to spread. This article presents a review of the historical development of worms, and an overview of worm anatomy from a functional perspective.

Designing Antiphishing Education

2009 ◽  
pp. 257-278
Author(s):  
James W. Ragucci ◽  
Stefan A. Robila
Keyword(s):  
Computer System ◽  
Human Factor ◽  
Daily Routine ◽  
Classroom Setting ◽  
Digital World ◽  
Iq Test ◽  
Phishing Attacks ◽  
Human Aspect ◽  
E Mail

Fraudulent e-mails, known as phishing attacks, have brought chaos across the digital world causing billions of dollars of damage. These attacks are known for their ability to exploit the human aspect of a computer system by pretending to originate from a source trusted by the victim. While technology defenses have been setup for protection, people are still succumbing to these attacks at alarming rates. Therefore, educational techniques must implement to strengthen the human factor of security. We propose the use of a phishing IQ test that when used in classroom setting can help users build experience needed to identify phishing e-mail during their daily routine.

The Impact of Personal Electronic Communications on Work-Life Balance and Cognitive Absorption

2011 ◽  
pp. 1-14
Author(s):  
Pruthikrai Mahatanankoon
Keyword(s):  
Instant Messaging ◽  
Personal Communication ◽  
Work Life ◽  
Work Life Balance ◽  
Absorption Data ◽  
Electronic Communications ◽  
Life Balance ◽  
Work Related ◽  
Cognitive Absorption ◽  
E Mail

E-mail and instant messaging (IM) are essential ingredients of workplace communication. The study examines how the hedonic use of electronic communications influences work-life balance and cognitive absorption. Data collected from white-collar employees in the United States show that work-life balance mediates the relationship between personal e-mail and cognitive absorption, and that personal instant messaging has no impact on work-life balance but has a direct influence on employees’ cognitive absorption. The findings suggest that work-life balance may eventually increase cognitive absorption and reduce employees’ productivity. The findings provide insight into how different types of personal communication can influence work-life balance as well as into how to manage non-work-related electronic communications in the workplace.

Privacy Aware Access Control

2017 ◽  
Vol 10 (2) ◽  
pp. 17-30
Author(s):  
Rekha Bhatia ◽  
Manpreet Singh Gujral
Keyword(s):  
Web Services ◽  
Access Control ◽  
Research Work ◽  
Data Access ◽  
The Internet ◽  
Sensitive Information ◽  
Human Right ◽  
Ready Availability ◽  
Control Technologies ◽  
Technical Solutions

Due to the ever increasing number of web services available through the Internet, the privacy as a fundamental human right is endangered. Informed consent and collection of information are two important aspects while interacting on the Internet through web services. The ease of data access and the ready availability of it through Internet, made it easier for interested parties to intrude into the individual's privacy in unprecedented ways. The regulatory and technical solutions adopted to curb this have achieved only a limited success. The main culprits in this regard are the incompatibilities in the regulatory measures and standards. This research work focuses on privacy preserving access control for sharing sensitive information in the arena of web services, provides some recent outlooks towards the critical need of privacy aware access control technologies and a comprehensive review of the existing work in this arena. Besides, a novel framework for privacy aware access to web services is also provided.

Sign in / Sign up

Export Citation Format

Share Document