Title: Detection of phishing attacks in financial and e-banking websites using link and visual similarity relation

Authors: Ankit Kumar Jain; B.B. Gupta

Addresses: Computer Engineering Department, National Institute of Technology, Kurukshetra, Kurukshetra-136119, Haryana, India ' Computer Engineering Department, National Institute of Technology, Kurukshetra, Kurukshetra-136119, Haryana, India

Abstract: Today, phishing is one of the biggest problems faced by the cyber-world. In this paper, we present an approach that can detect phishing attacks in commercial and e-banking websites using the link and visual similarity relations. Phisher always tries to mimic the visual design of the webpage and the fake webpage contains identity keywords and hyperlinks that point to the corresponding legitimate webpage to trap internet users. Therefore, our proposed approach analyse the keywords, hyperlinks and CSS layout of the webpage to detect phishing attack. In the proposed approach, we make a set of associate domains with the suspicious webpage and explore the link and similarity relation to identifying phishing webpages. Also, we use the login form and whitelist based filtering to increase the running time of the proposed approach. Our proposed approach is not only able to detect phishing webpages accurately but its source webpage also. Moreover, it does not require any prior training to detect zero hour phishing attack. Experiments are conducted over a 6,616 phishing and legitimate webpages and the proposed approach gives approximately 99.72% true positive rate and less than 1.89% false negative rate.

Keywords: phishing; webpage; hyperlinks; DOM tree; cascading style sheet; CSS; login form; e-banking; Google.

DOI: 10.1504/IJICS.2018.095303

International Journal of Information and Computer Security, 2018 Vol.10 No.4, pp.398 - 417

Accepted: 18 Mar 2017
Published online: 03 Oct 2018 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article