This article has been reviewed according to Science X's editorial process and policies. Editors have highlighted the following attributes while ensuring the content's credibility:


peer-reviewed publication

trusted source


Research offers novel approach for combating phishing attacks

Credit: Pixabay/CC0 Public Domain

Research in the International Journal of Electronic Security and Digital Forensics offers a new approach to combating phishing attacks in order to enhance online security and reduce cybercrime against individuals and businesses and attacks on governments so improving national security.

Phishing is a deceptive technique in which a web page, email or message is used to impersonate a trusted entity and to deceive individuals into clicking malicious links, revealing such as usernames and passwords, bank details, and other such details. It has caused significant harm to countless victims, resulting in compromised data, , and even breaches.

Those propagating can use very sophisticated methods to make a message or page look authentic and even highly skilled and security-aware users are sometimes duped into accessing a malicious resource. Such resources might steal information directly as the user enters it or lead to them unwittingly downloading malware or another payload that then compromises their , whether a personal computer or a network. Computer security systems are constantly challenged by the development of more sophisticated phishing attacks which may also exploit in subtle ways as well as malware to dupe users.

T. Kalaichelvi of the Panimalar Engineering College in Chennai, India, and colleagues have proposed a new threat-modeling technique that can pinpoint and eliminate vulnerabilities that make a computer system more susceptible to a phishing attack. The team's approach uses the STRIDE threat design methodology, a potent tool that demonstrates an impressive 96.3% accuracy rate in detecting phishing web addresses. The work offers a real solution for individuals and organizations alike to defeat the phishing threat.

The implications of the research extend beyond individual victims and encompass businesses and the world of the Internet of Things. For cybersecurity experts, developers, and IoT device manufacturers, the proposed threat modeling technique could help in securing vulnerabilities proactively at the design stage rather than reactively when vulnerabilities have been identified and exploited. Fundamentally, a multi-faceted anti-phishing approach is needed that takes into account both the technological vulnerabilities and the human factor.

More information: T. Kalaichelvi et al, The detection of phishing attempts in communications systems, International Journal of Electronic Security and Digital Forensics (2023). DOI: 10.1504/IJESDF.2023.133192

Provided by Inderscience
Citation: Research offers novel approach for combating phishing attacks (2023, September 12) retrieved 19 May 2024 from
This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no part may be reproduced without the written permission. The content is provided for information purposes only.

Explore further

Tech companies not doing enough to protect users from phishing scams


Feedback to editors