Professional Documents
Culture Documents
Bachelor of Technology
In
Submitted by
Content Pages
1. Abstract 01
2. Introduction 02
3. Problem
• Key Issue 03-04
• Project Goals
4. Application Area 05-06
5. Literature Review 07-08
6. Conclusion 09-10
7. References 11
Acknowledgement
--------------------------------------------
Nitesh Kumar Thakur
Department of CSE (IoTCSBT)
Enrolment No: 22022002017003
Date: 30-11-2023
Place: Kolkata
Abstract
In recent times, a phishing attack has become one of the most prominent
attacks faced by internet users, governments, and service-providing
organizations. In a phishing attack, the attacker(s) collects the client’s
sensitive data (i.e., user account login details, credit/debit card numbers,
etc.) by using spoofed emails or fake websites. Phishing websites are common
entry points of online social engineering attacks, including numerous frauds
on the websites. In such types of attacks, the attacker(s) create website pages
by copying the behavior of legitimate websites and sends URL(s) to the
targeted victims through spam messages, texts, or social networking. To
provide a thorough understanding of phishing attack(s), this paper provides
a literature review of Artificial Intelligence (AI) techniques: Machine Learning,
Deep Learning, Hybrid Learning, and Scenario-based techniques for phishing
attack detection. This paper also presents the comparison of different studies
detecting the phishing attack for each AI technique and examines the
qualities and shortcomings of these methodologies. Furthermore, this paper
provides a comprehensive set of current challenges of phishing attacks and
future research direction in this domain.
Page | 1
Introduction
Page | 2
Problem Definition
Key Issues:
Real-time Responsiveness:
Regulatory Compliance:
Page | 3
Objective: Ensure that AI-enabled detection models and processes align with
existing and emerging regulatory standards, creating a compliant and robust
defense against phishing threats.
Project Goals:
Develop and implement AI-driven models that analyze diverse data sources
to enhance the precision of phishing threat detection, reducing the
susceptibility to phishing attacks.
Regulatory Adherence:
Page | 4
Application Area
The project's impact is extensive, catering to a diverse range of sectors eager
to fortify their defenses against phishing attacks and enhance overall
cybersecurity. It holds relevance and applicability in various domains,
including:
Corporate Enterprises:
Corporate entities can employ AI-enabled phishing attack detection
techniques to bolster their cybersecurity posture. By implementing advanced
threat detection models, businesses can safeguard sensitive data, protect
employee accounts, and ensure the integrity of their digital infrastructure.
Financial Institutions:
Similar to loan approval processes, banks and financial institutions can
utilize AI techniques for detecting phishing attacks. This approach enhances
their ability to identify and neutralize phishing threats in real-time,
safeguarding customer information and maintaining the trust of account
holders.
E-commerce Platforms:
Online businesses face a constant threat of phishing attacks targeting
customer accounts and sensitive transaction information. The
implementation of AI-driven detection methods ensures a proactive defense
against phishing threats, providing a secure online shopping experience for
users.
Healthcare Organizations:
Given the sensitive nature of healthcare data, AI-enabled phishing detection
techniques are crucial for safeguarding patient information. Healthcare
institutions can deploy advanced models to identify and thwart phishing
attempts, ensuring data privacy and compliance with regulatory standards.
Government Agencies:
Government entities are frequent targets of phishing attacks seeking to
compromise sensitive information. By incorporating AI-based detection
systems, government agencies can enhance their cybersecurity measures,
protecting critical data and maintaining the integrity of public services.
Page | 5
Educational Institutions:
Phishing attacks often target educational institutions, seeking unauthorized
access to student and faculty accounts. Implementing AI-enabled detection
techniques helps these institutions preemptively identify and neutralize
phishing threats, securing sensitive academic and personal information.
Technology Companies:
Companies in the technology sector can benefit from advanced AI techniques
to fortify their defenses against phishing attacks. By leveraging machine
learning and scenario-based detection methods, these companies can stay
ahead of evolving cyber threats and protect their intellectual property.
The overarching goal is to provide a robust and adaptable solution that spans
across industries, ensuring a comprehensive defense against the ever-
evolving landscape of phishing attacks.
Page | 6
Literature Review
In the realm of AI-enabled detection, the review categorizes existing work into
four main approaches:
Page | 7
- Explores studies that employ scenarios to understand and detect phishing
attacks.
- Compares different methods used in scenario-based detection, including
the analysis of social engineering attack scenarios and game-based
investigation techniques.
Page | 8
Conclusion
9
In conclusion, AI stands at the forefront of the ongoing battle against phishing
attacks. The strides made in this project underscore the pivotal role of
artificial intelligence in fortifying our defenses against ever-evolving cyber
threats. As we move forward, the collaborative efforts of researchers,
practitioners, and the cybersecurity community at large will be essential in
building even more resilient and adaptive AI-driven solutions for the detection
and prevention of phishing attacks.
10
REFERENCES:
1. A Comprehensive Survey of AI-enabled Phishing Attacks Detection Techniques
Authors: Ahmed, I. A., Abdullah, A. B., Ibrahim, A. N., & Ab Rahman, M. F. (2020).
a. Journal: SpringerLink
2. Visual-AI: Anti Phishing With Detection Powered By Visual-AI
a. Presenter: Alessandro Prest
b. Company: Visua
3. AI-enabled Phishing Link Detection and Alert System
a. Author: Stefin Franklin
b. Repository: GitHub - T-Phish
4. Phishing Detection: A Machine Learning Approach
a. Authors: Jain, A. K., Gupta, B., & Sikka, G. (2009).
b. Journal: arXiv
5. A Hybrid Approach for Phishing Detection Using Machine Learning and Natural Language
Processing
a. Authors: Alzahrani, Z., Alharbi, K., Aljundi, I., & Menasri, W. (2020, November).
b. Conference: 2020 IEEE International Conference on Artificial Intelligence in Cyber Security
(AICyberS).
c. Publisher: IEEE
11