Hinphish: An effective phishing detection approach based on heterogeneous information networks

8Citations
Citations of this article
41Readers
Mendeley users who have this article in their library.

Abstract

Internet users have suffered from phishing attacks for a long time. Attackers deceive users through malicious constructed phishing websites to steal sensitive information, such as bank account numbers, website usernames, and passwords. In recent years, many phishing detection solutions have been proposed, which mainly leverage whitelists or blacklists, website content, or side channel-based techniques. However, with the continuous improvement of phishing technology, current methods have difficulty in achieving effective detection. Hence, in this paper, we propose an effective phishing website detection approach, which we call HinPhish. HinPhish extracts various link relationships from webpages and uses domains and resource objects to construct a heterogeneous information network. HinPhish applies a modified algorithm to leverage the characteristics of different link types in order to calculate the phish-score of the target domain on the webpage. Moreover, HinPhish not only improves the accuracy of detection, but also can increase the phishing cost for attackers. Extensive experimental results demonstrate that HinPhish can achieve an accuracy of 0.9856 and F1-score of 0.9858.

Cite

CITATION STYLE

APA

Guo, B., Zhang, Y., Xu, C., Shi, F., Li, Y., & Zhang, M. (2021). Hinphish: An effective phishing detection approach based on heterogeneous information networks. Applied Sciences (Switzerland), 11(20). https://doi.org/10.3390/app11209733

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free