Author:
Gomes de Barros Julio Cesar,Revoredo da Silva Carlo Marcelo,Candeia Teixeira Lucas,Torres Fernandes Bruno José,Lorenzato de Oliveira Joao Fausto,Luzeiro Feitosa Eduardo,Pinheiro dos Santos Wellington,Ferraz Arcoverde Henrique,Cardoso Garcia Vinicius
Abstract
AbstractPhishing is an attack characterized by attempted fraud against users. The attacker develops a malicious page that is a trusted environment, inducing its victims to submit sensitive data. There are several platforms, such as PhishTank and OpenPhish, that maintain databases on malicious pages to support anti-phishing solutions, such as, for example, block lists and machine learning. A problem with this scenario is that many of these databases are disorganized, inconsistent, and have some limitations regarding integrity and balance. In addition, because phishing is so volatile, considerable effort is put into preserving temporal information from each malicious page. To contribute, this article built a phishing database with consistent and balanced data, temporal information, and a significant number of occurrences, totaling 942,471 records over the 5 years between 2016 and 2021. Of these records, 135,542 preserve the page’s source code, 258,416 have the attack target brand detected, 70,597 have the hosting service identified, and 15,008 have the shortener service discovered. Additionally, 123,285 records store WHOIS information of the domain registered in 2021. The data is available on the website https://piracema.io/repository.
Publisher
Springer Science and Business Media LLC
Reference31 articles.
1. Mohammad, R. M., Thabtah, F. & McCluskey, L. Tutorial and critical analysis of phishing websites methods. Comput. Sci. Rev. 17, 1–24 (2015).
2. Watson, D., Holz, T. & Mueller, S. Know your enemy: Phishing. In Know your Enemy: Phishing, https://honeynet.onofri.org/papers/phishing/ (2005).
3. AlEroud, A. & Zhou, L. Phishing environments, techniques, and countermeasures: A survey. Comput. Secur. 68, 160–197 (2017).
4. Kaspersky. How to deal with bec attacks. Kaspersky oficial blog, https://www.kaspersky.com.br/blog/what-is-bec-attack/14811/ (2020).
5. Kaspersky. Coronavirus-related cyberattacks surge in brazil. Kaspersky oficial blog, https://www.zdnet.com/article/coronavirus-related-cyberattacks-surge-in-brazil/ (2020).
Cited by
2 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献