Shark-Eyes: A multimodal fusion framework for multi-view-based phishing website detection
Authors: 
Minh Vo Quang, Dang Bui Tan Hai, Ngan Tran Kim Ngoc, Son Ngo Duc Hoang, Quyen Nguyen Huu, Duy Phan The, and Van-Hau PhamAuthors Info & Claims
Minh Vo Quang, Dang Bui Tan Hai, Ngan Tran Kim Ngoc, Son Ngo Duc Hoang, Quyen Nguyen Huu, Duy Phan The, and Van-Hau PhamAuthors Info & ClaimsDecember 2023
Pages 793 - 800
Abstract
In the era of escalating cyber threats, phishing attacks continue to exploit vulnerabilities in online security. This paper presents Shark-Eyes, a novel multimodal fusion framework designed for the detection of phishing websites using a multi-view approach. The proposed approach leverages a combination of two distinct attributes, namely domain features and HTML tag features, extracted from the target websites. The framework’s effectiveness is evaluated through comprehensive experiments on a dataset sourced from Phishtank, OpenPhish, and Alexa, encompassing real-world phishing instances. Our results demonstrate the robustness and efficiency of the Shark-Eyes framework in accurately identifying phishing websites, showcasing its potential as a powerful tool for enhancing online security and thwarting malicious activities.
References
[1]
Rahmad Abdillah, Zarina Shukur, Masnizah Mohd, and Ts Mohd Zamri Murah. 2022. Phishing classification techniques: A systematic literature review. IEEE Access 10 (2022), 41574–41591.
[2]
Eman Abdullah Aldakheel, Mohammed Zakariah, Ghada Abdalaziz Gashgari, Fahdah A Almarshad, and Abdullah IA Alzahrani. 2023. A Deep Learning-Based Innovative Technique for Phishing Detection in Modern Security with Uniform Resource Locators. Sensors 23, 9 (2023), 4403.
[3]
Zainab Alshingiti, Rabeah Alaqel, Jalal Al-Muhtadi, Qazi Emad Ul Haq, Kashif Saleem, and Muhammad Hamza Faheem. 2023. A Deep Learning-Based Phishing Detection System Using CNN, LSTM, and LSTM-CNN. Electronics 12, 1 (2023), 232.
[4]
Iraj Sadegh Amiri, Oluwatobi Ayodeji Akanbi, and Elahe Fazeldehkordi. 2014. A machine-learning approach to phishing detection and defense. Syngress.
[5]
Tadas Baltrušaitis, Chaitanya Ahuja, and Louis-Philippe Morency. 2018. Multimodal machine learning: A survey and taxonomy. IEEE transactions on pattern analysis and machine intelligence 41, 2 (2018), 423–443.
[6]
Nilesh Dalvi, Pedro Domingos, Mausam, Sumit Sanghai, and Deepak Verma. 2004. Adversarial classification. In Proceedings of the tenth ACM SIGKDD international conference on Knowledge discovery and data mining. 99–108.
[7]
Jian Feng, Lianyang Zou, Ou Ye, and Jingzhou Han. 2020. Web2vec: Phishing webpage detection method based on multidimensional features driven by deep learning. IEEE Access 8 (2020), 221214–221224.
[8]
Anti-Phishing Working Group. 2023. Phishing Attack Trends Report – 4Q 2022. https://apwg.org/trendsreports/ [accessed 15-July-2023].
[9]
Jiwon Hong, Taeri Kim, Jing Liu, Noseong Park, and Sang-Wook Kim. 2020. Phishing url detection with lexical features and blacklisted domains. Adaptive autonomous secure cyber systems (2020), 253–267.
[10]
Ankit Kumar Jain, Brij B Gupta, 2017. Phishing detection: analysis of visual similarity based approaches. Security and Communication Networks 2017 (2017).
[11]
Wenhao Li, Selvakumar Manickam, Shams Ul Arfeen Laghari, and Yung-Wey Chong. 2023. Uncovering the Cloak: A Systematic Review of Techniques Used to Conceal Phishing Websites. IEEE Access (2023).
[12]
Jonathan Peck, Claire Nie, Raaghavi Sivaguru, Charles Grumer, Femi Olumofin, Bin Yu, Anderson Nascimento, and Martine De Cock. 2019. CharBot: A simple and effective method for evading DGA classifiers. IEEE Access 7 (2019), 91759–91771.
[13]
Manoj Kumar Prabakaran, Parvathy Meenakshi Sundaram, and Abinaya Devi Chandrasekar. 2023. An enhanced deep learning-based phishing detection mechanism to effectively identify malicious URLs using variational autoencoders. IET Information Security 17, 3 (2023), 423–440.
[14]
M Vijayalakshmi, S Mercy Shalinie, Ming Hour Yang, and Raja Meenakshi U. 2020. Web phishing detection techniques: a survey on the state-of-the-art, taxonomy and future directions. Iet Networks 9, 5 (2020), 235–246.
[15]
Peng Yang, Guangzhen Zhao, and Peng Zeng. 2019. Phishing website detection based on multidimensional features driven by deep learning. IEEE access 7 (2019), 15196–15209.
[16]
Jianting Yuan, Guanxin Chen, Shengwei Tian, and Xinjun Pei. 2021. Malicious URL detection based on a parallel neural joint model. IEEE Access 9 (2021), 9464–9472.
[17]
Rasha Zieni, Luisa Massari, and Maria Carla Calzarossa. 2023. Phishing or not phishing? A survey on the detection of phishing websites. IEEE Access 11 (2023), 18499–18519.
Index Terms
- Shark-Eyes: A multimodal fusion framework for multi-view-based phishing website detection
Recommendations
Phishing Website Detection using Deep Learning
ICCA '22: Proceedings of the 2nd International Conference on Computing AdvancementsPhishing attack is a type of cyber-attack where attacker sends fraudulent (spoofed, fake or deceptive) messages designed to lure a human victim to give away personal information or credentials or to deploy malicious software in victim's infrastructure ...
Enterprise Credential Spear-phishing attack detection
Highlights- Detecting spear-phishing email attacks based on sender domains.
- Figuring out that the domain's sender is genuine or forgery.
- Providing a balanced trade-off between detecting targeted attacks and bypassing the genuine emails.
AbstractThe latest report by Kaspersky on email Spam and targeted Phishing attacks, by percentage, highlights the need of an urgent solution. Attachment-driven Spear-phishing struggles to succeed against many email providers’ malware-filtration systems, ...
Graphical abstractDisplay Omitted
Using visual website similarity for phishing detection and reporting
CHI EA '12: CHI '12 Extended Abstracts on Human Factors in Computing SystemsPhishing is a severe threat to online users, especially since attackers improve in impersonating other websites [1]. With websites looking visually the same, users are fooled more easily. However, the close visual similarity can also be used to ...
Comments
Information & Contributors
Information
Published In
December 2023
1058 pages
ISBN:9798400708916
DOI:10.1145/3628797
Copyright © 2023 ACM.
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
Published: 07 December 2023
Check for updates
Author Tags
Qualifiers
- Research-article
- Research
- Refereed limited
Conference
SOICT 2023
SOICT 2023: The 12th International Symposium on Information and Communication Technology
December 7 - 8, 2023
Ho Chi Minh, Vietnam
Acceptance Rates
Overall Acceptance Rate 147 of 318 submissions, 46%
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- 0Total Citations
- 67Total Downloads
- Downloads (Last 12 months)67
- Downloads (Last 6 weeks)12
Other Metrics
Citations
View Options
Get Access
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign inFull Access
View options
View or Download as a PDF file.
PDFeReader
View online with eReader.
eReaderHTML Format
View this article in HTML Format.
HTML Format