VisualPhishNet: Zero-Day Phishing Website Detection by Visual Similarity

Abdelnabi, Sahar and Krombholz, Katharina and Fritz, Mario
(2020) VisualPhishNet: Zero-Day Phishing Website Detection by Visual Similarity.
In: ACM Conference on Computer and Communications Security (CCS).
Conference: CCS ACM Conference on Computer and Communications Security

[img]
Preview
Text
VisualPhishNet.pdf

Download (3MB) | Preview
Official URL: https://doi.org/10.1145/3372297.3417233

Abstract

Phishing websites are still a major threat in today's Internet ecosystem. Despite numerous previous efforts, similarity-based detection methods do not offer sufficient protection for the trusted websites -- in particular against unseen phishing pages. This paper contributes VisualPhishNet, a new similarity-based phishing detection framework, based on a triplet Convolutional Neural Network (CNN). VisualPhishNet learns profiles for websites in order to detect phishing websites by a similarity metric that can generalize to pages with new visual appearances. We furthermore present VisualPhish, the largest dataset to date that facilitates visual phishing detection in an ecologically valid manner. We show that our method outperforms previous visual similarity phishing detection approaches by a large margin while being robust against a range of evasion attacks.

Actions

Actions (login required)

View Item View Item