A Survey on Methodologies and Techniques for Detection and Prevention of Phishing Attacks

Abstract

Privacy, security and integrity of the users' data over internet depend on a single piece of user information which is normally a ‘password’. It is very important for the user to keep it as secure and safe as possible in order to prevent the information from being revealed to an adversary who can misuse it. But most of the time we fail. Knowingly or unknowingly we tend to give away these secrets to others, resulting in a huge loss or embarrassment. Such secrets, mainly the username and password are often given away to attackers over the internet and become victims of what is known as a phishing attack. Phishing is a technique where the attackers masquerade as a trustworthy entity and trick us to submit our credentials, mostly our usernames, passwords and credit card details etc. In this paper we shall take you around various techniques and methodologies available to prevent such a theft. We also present the reasons why the current techniques and tools could not prevent these attacks. Keywords: Abuse and crime involving computers, authentication, cyber cash, digital cash, online fraud detection and theft, phishing, security and protection