Abstract
Abstract
Email databases are continually being updated with the inclusion of active email addresses collected from different sources by hackers and spammers for their illicit purpose, including spamming and sharing. The presence of multiple valid email addresses in the headers of chain and multi-recipient email messages increases the chances of successful harvesting. This paper investigates and exposes a bot-based technique for email address harvesting from email messages, including chain email messages and emails sent to multiple recipients. Experimentation results demonstrate the designed Bot's effectiveness in misusing technologies to collect email addresses from the header and body of email messages. Also, the experimented method and user studies demonstrated the XOAuth authentication mechanism's inefficiency in blocking mailbox access and email address harvesting. The comprehensive illustration of the design shall be beneficial to design techniques for detecting and mitigating such bots. The paper also suggests a few mechanisms that can be put in place to prevent this type of email address harvesting significantly and also designs a mitigation method to detect and mitigate the designed Bots of this nature.
Publisher
Research Square Platform LLC
Reference39 articles.
1. Hybrid Email Spam Detection Model with Negative Selection Algorithm and Differential Evolution;Idris I;Engineering Applications of Artificial Intelligence,2016
2. Recent Survey of Various Defense Mechanisms against Phishing Attacks;Tewari A;Journal of Information Privacy and Security,2016
3. “Spam Campaign Detection, Analysis, and Investigation;Dinh S;Digital Investigation,2015
4. Cyber-bullying and Young People: How Hong Kong Keeps the New Playground Safe”;Ong R;Computer Law & Security Review,2015
5. "Why spoofing is serious internet fraud";Dinev T;Communications of the ACM,2006