Explore a comprehensive analysis of phishing attack evasion techniques and their impact on browser blacklists in this 22-minute IEEE conference talk. Discover the PhishFarm framework, a scalable solution for testing anti-phishing entities' resilience against evolving threats. Learn about the deployment of 2,380 live phishing sites using six different HTTP request filters, and examine the effectiveness of browser blacklisting across desktop and mobile platforms. Gain insights into the shortcomings of current security infrastructure and the success rates of various cloaking techniques, including geolocation, device type, and JavaScript-based methods. Understand the implications for user protection and the steps taken by anti-phishing entities to address these vulnerabilities. Delve into the ongoing challenges in safeguarding users against sophisticated phishing attacks and the potential for continuous monitoring using the PhishFarm framework.
PhishFarm - A Scalable Framework for Measuring the Effectiveness of Evasion Techniques Against Browser Phishing Blacklists
Overview
Syllabus
PhishFarm: A Scalable Framework for Measuring the Effectivness of Evasion Techniques Against...
Taught by
IEEE Symposium on Security and Privacy
Tags
Related Courses
-
CrawlPhish - Large-scale Analysis of Client-side Cloaking Techniques in Phishing
-
Evasive Maneuvers - Trends in Phishing Evasion & Anti-Evasion
-
Everyone Hates Robocalls - A Survey of Techniques against Telephone Spam
-
IRShield - A Countermeasure Against Adversarial Physical-Layer Wireless Sensing
-
On-Chip Randomization for Memory Protection Against Hardware Supply Chain Attacks to DRAM
-
Tap 'n Ghost - A Compilation of Novel Attack Techniques against Smartphone Touchscreens
