China
Africa
Explore chapters and articles related to this topic
Additional Challenges Presented by Web Resources
Published in Marsha Ann Tate, Web Wisdom, 2018
As the Yahoo example above demonstrates, dynamic URLs can be extremely long and unwieldy, especially if the URL needs to be cited in a paper or publication. URL shortening services such as TinyURL can be used to shrink long URLs. However, since the services utilize a form of redirection, they pose potential security and privacy risks. For example, third parties can create TinyURLs to divert users to malicious sites (Storm 2018; Beal 2018-b). There are other perils associated with the services as well. For instance, URL shortening services may periodically go offline or even permanently shut down, creating intermittent or continuously broken links. Also, shortened URLS may be blocked by internet service providers or websites. Therefore, it is important to keep these various considerations in mind before shortening URLs (Beal 2016).
A survey of phishing attack techniques, defence mechanisms and open research challenges
Published in Enterprise Information Systems, 2022
Many solutions have been presented to detect and prevent phishing attacks, but still, following are some areas which need to be improved to enhance the detection accuracy of the current anti-phishing system. Compromised domain detection: Phishing webpages on compromised domains are quite frequent and bypass most of the detection techniques. A phishing webpage hosted on the legitimate domain is not detected by blacklist methods and browsers plugin. Moreover, the user cannot identify it by its URL. Therefore, the detection of phishing webpages on compromised domain is scope for future improvement.Phishing in Smartphone: the security mechanisms that are available in smartphones are not yet mature and that’s why smartphones are vulnerable to phishing attacks.Efficient features identification: Selection of efficient features is important task in machine learning-based anti-phishing solution. In future, some new features might be identified due to the technical improvement of the web development technologies. Generally, feature identification is a manual process and researchers keep observing for any possible feature, which can enhance the phishing detection accuracy by performing experiments on the benchmarked dataset.Non-HTML webpages classification: Most of the existing anti-phishing approaches entirely depend on the URL and HTML source code of the website. These approaches fail if source code is written in non-HTML languages.Tiny URL Detection: The TinyURL does not contain the domain name, and it is converted into the full URL after loading on the browser. Some APIs are available to convert the TinyURL to full URL. Nevertheless, it may increase the running time and make our approach on third-party dependent.Phishing detection on OSN platform: Nowadays, attackers target online social networking websites (e.g., Twitter, Facebook) for distributing the phishing attacks. Moreover, attackers also create fake profiles of legitimate users and may ask for personal details or borrow money from their friends. Therefore, the detection of phishing attacks on OSN platform is still an open research for future scope.