Open Access iconOpen Access

ARTICLE

crossmark

Detecting Phishing Using a Multi-Layered Social Engineering Framework

Kofi Sarpong Adu-Manu*, Richard Kwasi Ahiable

Department of Computer Science, University of Ghana, Legon-Accra, +233, Ghana

* Corresponding Author: Kofi Sarpong Adu-Manu. Email: email

Journal of Cyber Security 2023, 5, 13-32. https://doi.org/10.32604/jcs.2023.043359

Abstract

As businesses develop and expand with a significant volume of data, data protection and privacy become increasingly important. Research has shown a tremendous increase in phishing activities during and after COVID-19. This research aimed to improve the existing approaches to detecting phishing activities on the internet. We designed a multi-layered phish detection algorithm to detect and prevent phishing applications on the internet using URLs. In the algorithm, we considered technical dimensions of phishing attack prevention and mitigation on the internet. In our approach, we merge, Phishtank, Blacklist, Blocklist, and Whitelist to form our framework. A web application system and browser extension were developed to implement the algorithm. The multi-layer phish detector evaluated ten thousand URLs gathered randomly from the internet (five thousand phishing and five thousand legitimate URLs). The system was estimated to detect levels of accuracy, true-positive and false-positive values. The system level accuracy was recorded to be 98.16%. Approximately 49.6% of the websites were detected as illegitimate, whilst 49.8% were seen as legitimate.

Keywords


Cite This Article

K. S. Adu-Manu and R. K. Ahiable, "Detecting phishing using a multi-layered social engineering framework," Journal of Cyber Security, vol. 5, pp. 13–32, 2023.



cc This work is licensed under a Creative Commons Attribution 4.0 International License , which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
  • 428

    View

  • 239

    Download

  • 0

    Like

Share Link