PhishLive: A View of Phishing and Malware Attacks from an Edge Router

  • Lianjie Cao
  • Thibaut Probst
  • Ramana Kompella
Conference paper

DOI: 10.1007/978-3-642-36516-4_24

Part of the Lecture Notes in Computer Science book series (LNCS, volume 7799)
Cite this paper as:
Cao L., Probst T., Kompella R. (2013) PhishLive: A View of Phishing and Malware Attacks from an Edge Router. In: Roughan M., Chang R. (eds) Passive and Active Measurement. PAM 2013. Lecture Notes in Computer Science, vol 7799. Springer, Berlin, Heidelberg

Abstract

Malicious website attacks including phishing, malware, and drive-by downloads have become a huge security threat to today’s Internet. Various studies have been focused on approaches to prevent users from being attacked by malicious websites. However, there exist few studies that focus on the prevalence and temporal characteristics of such attack traffic. In this paper, we developed the PhishLive system to study the behavior of malicious website attacks on users and hosts of the campus network of a large University by monitoring the HTTP connections for malicious accesses. During our experiment of one month, we analyzed over 1 billion URLs. Our analysis reveals several interesting findings.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag Berlin Heidelberg 2013

Authors and Affiliations

  • Lianjie Cao
    • 1
  • Thibaut Probst
    • 2
  • Ramana Kompella
    • 1
  1. 1.Purdue UniversityWest LafayetteUSA
  2. 2.INSA de ToulouseToulouseFrance

Personalised recommendations