Defending the weakest link: phishing websites detection by analysing user behaviours

Research output: Contribution to journalArticlepeer-review


Phishing detection systems are principally based on the analysis. of data moving from phishers to victims. In this paper we describe a novel approach for detecting phishing websites based on analysis of users' online behaviours- i.e., the websites users have visited, and the data users have submitted to those websites. Such user behaviours can not be manipulated freely by attackers; detection based on those data can achieve high accuracy whilst being fundamentally resilient against-changing deception methods.

Original languageEnglish
Pages (from-to)215-226
Number of pages12
JournalTelecommunication Systems
Issue number2-3
Publication statusPublished - Oct 2010

Bibliographical note

Query date: 14/01/2011


  • Phishing attacks
  • Phishing websites detection
  • Identity theft
  • User protection

Cite this