Projects per year
Abstract / Description of output
Phishing is by far the most common and disruptive type of cyber-attack faced by most organizations. Phishing messages may share common attributes such as the same or similar subject lines, the same sending infrastructure, similar URLs with certain parts slightly varied, and so on. Attackers use such strategies to evade sophisticated email filters, increasing the difficulty for computing support teams to identify and block all incoming emails during a phishing attack. Limited work has been done on grouping human-reported phishing emails, based on the underlying scam, to help the computing support teams better defend organizations from phishing attacks. In this paper, we explore the feasibility of using unsupervised clustering techniques to group emails into scams that could ideally be addressed together. We use a combination of contextual and semantic features extracted from emails and perform a comparative study on three clustering algorithms with varying feature sets. We use a range of internal and external validation methods to evaluate the clustering results on real-world email datasets. Our results show that unsupervised clustering is a promising approach for scam identification and grouping, and analyzing reported phishing emails is an effective way of mitigating phishing attacks and utilizing the human perspective.
Original language | English |
---|---|
Title of host publication | Proceedings of the 15th ACM Workshop on Artificial Intelligence and Security (AISec 2022) |
Publisher | ACM Association for Computing Machinery |
Pages | 115-126 |
Number of pages | 12 |
ISBN (Electronic) | 978-1-4503-9880-0 |
DOIs | |
Publication status | Published - 7 Nov 2022 |
Event | 15th ACM Workshop on Artificial Intelligence and Security - Los Angeles, United States Duration: 11 Nov 2022 → 11 Nov 2022 https://aisec.cc/ |
Workshop
Workshop | 15th ACM Workshop on Artificial Intelligence and Security |
---|---|
Country/Territory | United States |
City | Los Angeles |
Period | 11/11/22 → 11/11/22 |
Internet address |
Keywords / Materials (for Non-textual outputs)
- phishing
- security
- Usable Security
- Clustering
- Context
- Artificial Intelligence
- , Human-Centered Artificial Intelligence
Fingerprint
Dive into the research topics of 'Context-based Clustering to Mitigate Phishing Attacks'. Together they form a unique fingerprint.Projects
- 1 Finished
-
REPHRAIN: Research centre on Privacy, Harm Reduction and Adversarial Influence online
Elahi, T., Nissen, B. & Vaniea, K.
1/10/20 → 30/09/22
Project: Research