PhishDetector®

What is Phishing?

Today, because of widespread use of the Internet and internet services in daily affairs, most of the users are familiar with the term "spam". Spam usually refers to junk emails. Junk emails include sales promotion of a goods and or work offers, sent to a special receiver specifically and without further notice and or even with no demand. In fact, phishing also is a type of email-based internet scam in which a hustler tries to deceive users, through sending junk emails, with the aim of disclosing personal particulars rather than confidential information such as banking details. Generally speaking, phishing is a kind of electronic identity theft in which a combination of social engineering and fake website creating methods is used to deceive user in order to disclose his/her confidential and invaluable details. In general, phishing attacks start with an electronic letter which claiming that it is issued by a reputable company. This letter encourages the user to click on the address that is provides in the electronic letter. This address directs the user to an illegal page which is designed similar to a valid site, e.g. the site of a bank or a financial institution.

What is PhishDetector®?

PhishDetector is a Chrome Extension which can detect Phishing attacks in Electronic Banking environments.
It is a rule-based system that uses two novel feature sets to indentify phishing pages. It can detect phishing attacks quickly with zero false negative alarm.

Evaluation

To evaluate this extension, a dataset of phishing and legitimate pages has been used. This dataset contains 103 phishing pages from Phishtank and 72 legitimate pages from Yahoo Directory.

DataSet: Download