A literature review on classification of phishing attacks
S. Chanti, T. Chithralekha, E Kirda, C Kruegel, S Yadav, B Bohra, I Alfayoumi, T Barhoom, G Ollmann, Phishme, S Chanti, T Chithralekha, D James, M Philip, L Krishnakumar, N Varughese, Y Musashi, M Kumagai, S Kubota, K Sugitani, J Lee, Y Lee, D Lee, H Kwon, D Shin, A Sadiq, M Anwar, R Butt, F Masud, M Shahzad, S Naseem, A Jain, B Gupta, A Aleroud, L Zhou, A Almomani, B Gupta, S Atawneh, A Meulenberg, E Almomani, K Chiew, K Yong, C Tan, S Gupta, A Singhal, A Kapoor, D Jampen, G Gr, T Sutter, B Tellenbach, M Khonji, Y Iraqi, A Jones, E Lastdrager, B Gupta, A Tewari, A Jain, D Agrawal, F Mouton, L Leenen, M Malan, H Venter, R Bhakta, I Harris, A Emigh, H Huang, S Zhong, J Tan, D Caputo, S Pfleeger, J Freeman, M Johnson, M Silic, A Back, S Ganesan, R Suri, D Tomar, D Sahu, A Singh, S Tripathy, X Li, G Geng, Z Yan, Y Chen, X Lee, G Chen, M Johnson, P Marupally, N Singireddy, X Yin, V Paruchuri, J Patel, S Panchal, M Mishra, A Jain, Z Zhenfang, C Li, W Jiang, X Zou, D Damopoulos
Abstract
Phishing is a fraudulent activity through which the phisher/attacker tries to lure internet users into stealing their personal information/credentials to gain financially Phishing is comparable to fishing, which gives a different meaning; in phishing, the attacker uses bait (sending an email with an embedded hyperlink that redirects to a fraudulent site) to capture the internet users' credentials. Earlier, the hackers were known as Phreaks (a Phreak is someone who breaks into the telephone networks illegally to make free long-distance phone calls or to tap phone lines) and are closely related to each other. The reason for replacing "f" with "ph" is to link the phishing scams with phreaks [2, 3]. For the past two decades, phishing has become the most dangerous attack, and plenty of attack is taking place every day [4] The first phishing scam was recorded on 2nd Jan 1996 on American online (AOL) that provides internet services [2].