Automatically determining phishing campaigns using the USCAP methodology

General Members Meeting and eCrime Researchers Summit, eCrime 2010

Volumn , Issue , 2010, Pages

  Layton, Robert ^a   Watters, Paul ^a   Dazeley, Richard ^a  

^a UNIVERSITY OF BALLARAT   (Australia)

Author keywords

[No Author keywords available]

Indexed keywords

AUTHORSHIP ANALYSIS; BYPASS FILTERS; EXPERT ANALYSIS; FRAUDSTERS; HIGH STABILITY; PHISHERS; PHISHING; SOURCE CODES;

RESEARCH;

EID: 79952527132     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ecrime.2010.5706698     Document Type: Conference Paper

References (34)

1. A. Abbasi and H. Chen. Applying authorship analysis to extremist-group web forum messages. IEEE Intelligent Systems, 20(5):67-75, 2005. (Pubitemid 41527272)
2. S. Abu-Nimeh, D. Nappa, X. Wang, and S. Nair. A comparison of machine learning techniques for phishing detection. In eCrime '07: Proceedings of the Anti-Phishing Working Group's 2nd annual eCrime Researchers Summit, pages 60-69, New York, NY, USA, 2007. ACM.
3. R. Basnet, S. Mukkamala, and A. H. Sung. Detection of phishing attacks: A machine learning approach. Soft Computing Applications in Industry, 2008.
4. J. Bezdek, J. Keller, R. Krisnapuram, and N. Pal. Fuzzy models and algorithms for pattern recognition and image processing. Kluwer Academic Publishers, 1999.
5. M. Cova, C. Kruegel, and G. Vigna. There is no free phish: An analysis of "free" and live phishing kits. 2nd USENIX Workshop on Offensive TEchnologies, 1:1, 2008.
6. P. Foggia, G. Percannella, C. Sansone, and M. Vento. A graph-based clustering method and its applications. Advances in Brain, Vision, and Artificial Intelligence, pages 277-287, 2007.
7. G. Frantzeskou, E. Stamatatos, S. Gritzalis, and C. E. Chaski. Identifying authorship by byte-level n-grams: The source code author profile (scap) method. Int. Journal of Digital Evidence, 6(1), 2007.
8. G. Frantzeskou, E. Stamatatos, S. Gritzalis, and S. Katsikas. Effective identification of source code authors using byte-level information. In ICSE '06: Proceedings of the 28th international conference on Software engineering, pages 893-896, New York, NY, USA, 2006. ACM. (Pubitemid 46601013)
9. G. Frantzeskou, E. Stamatatos, S. Gritzalis, and S. Katsikas. Source code author identification based on n-gram author profiles. Artificial Intelligence Applications and Innovations, Volume 204/2006:508-515, 2006. (Pubitemid 44468913)
10. A. L. N. Fred and A. K. Jain. Robust data clustering. Computer Vision and Pattern Recognition, IEEE Computer Society Conference on, 2:128, 2003.
11. A. Gray, P. Sallis, and S. MacDonell. IDENTIFIED (Integrated Dictionary-based Extraction ofNon-language-dependent Token Information for Forensic Identification, Examination, and Discrimination): a dictionary-based system forextracting source code metrics for software forensics. pages 252-259, 1998.
12. J. A. Hartigan and M. A. Wong. A K-means clustering algorithm. Applied Statistics, 28:100-108, 1979.
13. V. Keselj, F. Peng, N. Cercone, and C. Thomas. N-gram-based author profiles for authorship attribution. In Proc. Pacific Association for Computational Linguistics, 2003.
14. R. Kilgour, A. Gray, P. Sallis, and S. MacDonell. A fuzzy logic approach to computer software source code authorship analysis. International Conference on Neural Information Processing and Intelligent Information Systems, pages 865-868, 1997.
15. Y.-G. Kim, S. Cho, J.-S. Lee, M.-S. Lee, I. Kim, and S. Kim. Method for evaluating the security risk of a website against phishing attacks. Intelligence and Security Informatics, 5075:2131, 2008.
16. I. Krsul and E. H. Spafford. Authorship analysis: Identifying the author of a program. Computers & Security, 16(3):233-257, 1997. (Pubitemid 127399842)
17. R. Layton, S. Brown, and P. Watters. Using differencing to increase distinctiveness for phishing website clustering. Proceedings of the Symposia and Workshops on Ubiquitous, Autonomic and Trusted Computing, July 2009.
18. R. Layton and P. Watters. Determining provenance in phishing websites using automated conceptual analysis. In eCrime Researchers Summit 2009, Tacoma, WA, USA, 10 2009.
19. J. Ma, G. Teng, Y. Zhang, Y. Li, and Y. Li. A cybercrime forensic method for chinese web information authorship analysis. Intelligence and Security Informatics, pages 14-24, 2009.
20. L. Ma, B. Ofoghi, P. Watters, and S. Brown. Detecting phishing emails using hybrid features. Ubiquitous, Autonomic and Trusted Computing, Symposia and Workshops on, 0:493-497, 2009.
21. L. Ma, R. Torney, P. Watters, and S. Brown. Automatically generating classifier for phishing email prediction. Parallel Architectures, Algorithms, and Networks, International Symposium on, 0:779-783, 2009.
22. S. MacDonell, A. Gray, G. MacLennan, and P. Sallis. Software forensics for discriminating between program authors using case-based reasoning, feed forward neural networks and multiple discriminant analysis. 1, 1999.
23. S. McCombie, P. Watters, A. Ng, and B. Watson. Forensic characteristics of phishing - petty theft or organized crime? In J. Cordeiro, J. Filipe, and S. Hammoudi, editors, WEBIST (1), pages 149-157. INSTICC Press, 2008.
24. D. K. McGrath and M. Gupta. Behind phishing: an examination of phisher modi operandi. In LEET'08: Proceedings of the 1st Usenix Workshop on Large-Scale Exploits and Emergent Threats, pages 1-8, Berkeley, CA, USA, 2008. USENIX Association.
25. T. Moore and R. Clayton. Examining the impact of website take-down on phishing. In eCrime '07: Proceedings of the anti-phishing working groups 2nd annual eCrime researchers summit, pages 1-13, New York, NY, USA, 2007. ACM.
26. F. Mosteller and D. L. Wallace. Inference in an authorship problem. Journal of the American Statistical Association, 58(302):275-309, 1963.
27. P. Oman and C. Cook. Programming style authorship analysis. In Proceedings of the 17th conference on ACM Annual Computer Science Conference, pages 320-326. ACM New York, NY, USA, 1989.
28. P. Rousseeuw. Silhouettes: a graphical aid to the interpretation and validation of cluster analysis. Journal of computational and applied mathematics, 20(1):53-65, 1987. (Pubitemid 18528483)
29. E. Stamatatos. A survey of modern authorship attribution methods. Journal of the American Society for Information Science and Technology, 60(3), 2009.
30. R. Thomas and J. Martin. The underground economy: priceless. The USENIX Magazine, December, 00:2006-12, 2006.
31. J. Toolan, F. Carthy. Phishing detection using classifier ensembles. pages 1-9, 2009.
32. T. Urvoy, E. Chauveau, P. Filoche, and T. Lavergne. Tracking web spam with html style similarities. ACM Trans. Web, 2(1):1-28, 2008.
33. T. Urvoy, T. Lavergne, and P. Filoche. Tracking web spam with hidden style similarity. AIRWeb 2006 Program, 29:25, 2006.
34. R. Zheng, J. Li, H. Chen, and Z. Huang. A framework for authorship identification of online messages: Writing-style features and classification techniques. Journal of the American Society for Information Science and Technology, 57(3):378-393, 2005.