International Research Journal of Engineering and Technology (IRJET)
e-ISSN: 2395-0056
Volume: 10 Issue: 04 | Apr 2023
p-ISSN: 2395-0072
www.irjet.net
Phishing: Analysis and Countermeasures Bhagyashree Ankush Alandkar & Bhakti Desai Student, M. Sc IT, Keraleeya Samajam (Regd.) Dombivli’s Model College, Maharashtra, India ---------------------------------------------------------------------***---------------------------------------------------------------------
Abstract – Without the internet, our daily lives are
2) To infect the system with malware
inconceivable. One of the most important forms of communication we use every day is email. We prefer to just use it regularly for business communications, but we also use it to stay in touch with our friends and family. Due of the significant significance that email plays in international communication and information sharing. Even so, security issues have accumulated. E-Mail phishing is the most significant drawback or hacker attack on email in today's world. The moment is right to secure information sent via mail, even on specific networks. Cybercriminals create these emails to appear credible, which makes virtually millions of people throughout the world fall for them. The criminals don't have a specific victim in mind.
With such attacks, hackers also primarily aim to infect the victim's PC with malware or viruses. These emails include Microsoft Office zipped files.
3. STAGES OF PHISHING ATTACK It's crucial to first comprehend how phishing attacks operate in order to stop one in its tracks. Let's go over the stages of a typical phishing attack that are most common [1]:
Key Words: Phishing, attacks 1. INTRODUCTION Phishing is a type of email fraud in which the perpetrator sends out seemingly valid emails to target specific individuals in an effort to collect their personal and financial information. The communications typically look to originate from reputable and well-known websites. The phisher places the lure in the hopes of fooling at least some of the prey that come into contact with it, just like the fishing trip it gets its name from. Phishers deceive their targets by employing a variety of social engineering techniques and email spoofing techniques. Due to the important function that email plays in communication and information sharing on a worldwide scale. The safety issues have even gotten worse. The majority of the email servers used in the mail infrastructure on the internet are attacked.
Figure 1 stages of phishing attack
To create spoof websites, the hacker steals real code and legitimate images from websites. According to some estimates, hackers create 1.5 million spoof websites each month. Due to the availability of affordable internet scraping tools, this is now simpler than ever. Hackers frequently create fake websites with well-known and reliable domain names. They are also recovering at their trade. Even experienced security personnel will struggle to identify fakes.
2. HOW PHISHING ATTACKS WORKS We need to comprehend the justifications for hostile attacks in order to comprehend how they operate. There are two main purposes of a phishing assault.
These attacks employ techniques that compel the victims to reveal sensitive and private information. Hackers want the ability to break into a private or public network, steal money from someone, or use another person's credentials to carry out illegal activities. Checking account information is among the clearly questionable data that hackers request from victims.
|
Impact Factor value: 8.226
The phishing email's transmission.
The hacker launches the associate degree email phishing scam after creating the fake website. These emails, which are incredibly convincing, include content, images, and a link to the fake website. The victim is urged to open the link in the email with statements like, "Your account has been hijacked!" On a huge scale, this occurs. Every day, hackers send an estimated three billion phishing emails.
1) To extract sensitive data, first
© 2023, IRJET
Creating the fake website.
|
ISO 9001:2008 Certified Journal
|
Page 75