Core Concepts
The authors propose KnowPhish, a large-scale multimodal brand knowledge base, and the KnowPhish Detector (KPD) to improve phishing detection by addressing limitations in existing RBPDs.
Abstract
KnowPhish introduces a novel approach to enhance phishing detection by combining logo-based and text-based methods. The study demonstrates significant improvements in effectiveness and efficiency compared to state-of-the-art baselines. The field study on local webpages validates the robustness and accuracy of KnowPhish and KPD in real-world scenarios.
Phishing attacks pose a significant threat to individuals and businesses, necessitating advanced automated detection methods. Existing RBPDs face limitations due to manual brand knowledge bases, leading to false negatives. KnowPhish addresses these issues by automating knowledge collection and introducing a multimodal approach for improved detection.
The study highlights the importance of incorporating text-based analysis alongside traditional logo-based methods for comprehensive phishing detection. By leveraging a large-scale brand knowledge base, KnowPhish significantly enhances the performance of RBPDs, particularly in identifying logo-less phishing webpages.
In a field study on local web traffic, KnowPhish outperforms commercial detectors like URLScan, demonstrating its effectiveness in real-world settings. The results showcase the potential of multimodal approaches like KPD for accurate and efficient phishing detection across diverse contexts.
Stats
20k brands contained in KnowPhish
10k webpages from SG-SCAN dataset
$1.026 trillion lost in scams in 2023
Quotes
"KnowPhish introduces a novel approach to enhance phishing detection."
"The study demonstrates significant improvements in effectiveness and efficiency compared to state-of-the-art baselines."