4.7 Article

Towards a thematic dimensional framework of online fraud: An exploration of fraudulent email attack tactics and intentions

期刊

DECISION SUPPORT SYSTEMS
卷 171, 期 -, 页码 -

出版社

ELSEVIER
DOI: 10.1016/j.dss.2023.113977

关键词

Spam; Broad phishing; Spear-phishing; Thematic dimensional framework; Unsupervised modeling; Text mining; NGram; Non -negative matrix factorization; Topic modeling

向作者/读者索取更多资源

Despite the presence of anti-phishing filters, social engineering-based cyber-attacks continue to cause significant financial losses, personal identity theft, and loss of sensitive information. This study reviews the literature on psychological attacks in phishing and discusses the need to identify and understand the tactics used by attackers. Using machine learning-based content analysis and topic modeling, the proposed dimensional framework is empirically validated using benchmark datasets of fraudulent emails.
Despite anti-phishing filters, social engineering-based cyber-attacks still result in billions of dollars lost annually, significant personal identity theft, loss of corporate secrets, and espionage. We review the phishing literature on psychological attacks and design tactics employed for deception by attackers. The result reveals the need to continuously identify tactics embedded in fraudulent email content to understand why users still fall prey to phishing attacks. Using the literature as a backdrop, we identify and conceptualize a thematic dimensional framework of fraudulent phishing attacks. This study uses benchmark datasets of fraudulent email to empirically validate the proposed dimensional framework. Specifically, a combination of machine learning-based content analysis and topic modeling found a majority of the discovered topics were labeled against the proposed dimensions. Statistical analysis was employed to provide empirical evidence of the thematic dimensions of fraudulent email attacks. This study thus, not only extends the cybersecurity literature by identifying and validating eight dimensions that enrich our understanding of phishing and attack identification but stimulates cumulative research endeavors to develop yet more comprehensive dimensional frameworks of phishing email attacks.

作者

我是这篇论文的作者
点击您的名字以认领此论文并将其添加到您的个人资料中。

评论

主要评分

4.7
评分不足

次要评分

新颖性
-
重要性
-
科学严谨性
-
评价这篇论文

推荐

暂无数据
暂无数据