{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,14]],"date-time":"2026-01-14T20:44:15Z","timestamp":1768423455595,"version":"3.49.0"},"publisher-location":"Cham","reference-count":33,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319990729","type":"print"},{"value":"9783319990736","type":"electronic"}],"license":[{"start":{"date-parts":[[2018,1,1]],"date-time":"2018-01-01T00:00:00Z","timestamp":1514764800000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2018,1,1]],"date-time":"2018-01-01T00:00:00Z","timestamp":1514764800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018]]},"DOI":"10.1007\/978-3-319-99073-6_12","type":"book-chapter","created":{"date-parts":[[2018,8,10]],"date-time":"2018-08-10T18:09:38Z","timestamp":1533924578000},"page":"243-262","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":6,"title":["Phishing Attacks Modifications and Evolutions"],"prefix":"10.1007","author":[{"given":"Qian","family":"Cui","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Guy-Vincent","family":"Jourdan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Gregor V.","family":"Bochmann","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Iosif-Viorel","family":"Onut","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jason","family":"Flood","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2018,8,8]]},"reference":[{"key":"12_CR1","doi-asserted-by":"crossref","unstructured":"Cui, Q., Jourdan, G.V., Bochmann, G.V., Couturier, R., Onut, I.V.: Tracking phishing attacks over time. In: Proceedings of the 26th International Conference on World Wide Web, International World Wide Web Conferences Steering Committee, pp. 667\u2013676 (2017)","DOI":"10.1145\/3038912.3052654"},{"key":"12_CR2","unstructured":"Anti-Phishing Working Group: Global Phishing Survey: Trends and Domain Name Use in 2016 (2017). http:\/\/docs.apwg.org\/reports\/APWG_Global_Phishing_Report_2015-2016.pdf"},{"key":"12_CR3","unstructured":"Anti-Phishing Working Group: Phishing Activity Trends Report 1st Half 2017 (2017). http:\/\/docs.apwg.org\/reports\/apwg_trends_report_h1_2017.pdf"},{"key":"12_CR4","unstructured":"Anti-Phishing Working Group: Phishing Activity Trends Report 3rd Quarter 2017 (2017). http:\/\/docs.apwg.org\/reports\/apwg_trends_report_q3_2017.pdf"},{"key":"12_CR5","unstructured":"FBI: 2017 Internet Crime Report. https:\/\/pdf.ic3.gov\/2017_IC3Report.pdf"},{"issue":"3","key":"12_CR6","doi-asserted-by":"publisher","first-page":"151","DOI":"10.1016\/j.cosrev.2009.03.001","volume":"3","author":"J Tekli","year":"2009","unstructured":"Tekli, J., Chbeir, R., Yetongnon, K.: An overview on XML similarity: background, current trends and future directions. Comput. Sci. Rev. 3(3), 151\u2013173 (2009)","journal-title":"Comput. Sci. Rev."},{"key":"12_CR7","doi-asserted-by":"publisher","first-page":"157","DOI":"10.1016\/j.is.2015.08.004","volume":"56","author":"M Pawlik","year":"2016","unstructured":"Pawlik, M., Augsten, N.: Tree edit distance: robust and memory-efficient. Inf. Syst. 56, 157\u2013173 (2016)","journal-title":"Inf. Syst."},{"key":"12_CR8","doi-asserted-by":"crossref","unstructured":"Manku, G.S., Jain, A., Das Sarma, A.: Detecting near-duplicates for web crawling. In: Proceedings of the 16th International Conference on World Wide Web, WWW 2007, New York, NY, USA, pp. 141\u2013150 (2007)","DOI":"10.1145\/1242572.1242592"},{"key":"12_CR9","doi-asserted-by":"crossref","unstructured":"Fuhr, N., Gro\u00dfjohann, K.: XIRQL: a query language for information retrieval in XML documents. In: Proceedings of the 24th Annual International ACM SIGIR Conference on Research and Development in Information Retrieval, pp. 172\u2013180. ACM (2001)","DOI":"10.1145\/383952.383985"},{"key":"12_CR10","unstructured":"Grabs, T.: Generating vector spaces on-thefly for flexible xml retrieval. In: [1, Citeseer] (2002)"},{"key":"12_CR11","unstructured":"Alexa: Top 500 Sites in Each Country. http:\/\/www.alexa.com\/topsites\/countries"},{"key":"12_CR12","unstructured":"WWW: HTML Tag Set. https:\/\/www.w3.org\/TR\/html-markup\/elements.html"},{"issue":"1","key":"12_CR13","doi-asserted-by":"publisher","first-page":"28","DOI":"10.1016\/j.ijcip.2013.01.002","volume":"6","author":"AK Sood","year":"2013","unstructured":"Sood, A.K., Enbody, R.J.: Crimeware-as-a-service-a survey of commoditized crimeware in the underground market. Int. J. Crit. Infrastruct. Prot. 6(1), 28\u201338 (2013)","journal-title":"Int. J. Crit. Infrastruct. Prot."},{"key":"12_CR14","doi-asserted-by":"crossref","unstructured":"Rosiello, A.P.E., Kirda, E., Kruegel, C., Ferrandi, F.: A layout-similarity-based approach for detecting phishing pages. In: Proceedings of the 3rd International Conference on Security and Privacy in Communication Networks, SecureComm, Nice, pp. 454\u2013463 (2007)","DOI":"10.1109\/SECCOM.2007.4550367"},{"issue":"2","key":"12_CR15","doi-asserted-by":"publisher","first-page":"5:1","DOI":"10.1145\/1754393.1754394","volume":"10","author":"TC Chen","year":"2010","unstructured":"Chen, T.C., Dick, S., Miller, J.: Detecting visually similar web pages: application to phishing detection. ACM Trans. Internet Technol. 10(2), 5:1\u20135:38 (2010)","journal-title":"ACM Trans. Internet Technol."},{"key":"12_CR16","doi-asserted-by":"crossref","unstructured":"Chang, E.H., Chiew, K.L., Sze, S.N., Tiong, W.K.: Phishing detection via identification of website identity. In: 2013 International Conference on IT Convergence and Security, ICITCS 2013, pp. 1\u20134. IEEE (2013)","DOI":"10.1109\/ICITCS.2013.6717870"},{"key":"12_CR17","doi-asserted-by":"crossref","unstructured":"Geng, G.G., Lee, X.D., Wang, W., Tseng, S.S.: Favicon - a clue to phishing sites detection. In: eCrime Researchers Summit (eCRS), pp. 1\u201310, September 2013","DOI":"10.1109\/eCRS.2013.6805775"},{"key":"12_CR18","doi-asserted-by":"crossref","unstructured":"Liu, W., Huang, G., Xiaoyue, L., Min, Z., Deng, X.: Detection of phishing webpages based on visual similarity. In: Special Interest Tracks and Posters of the 14th International Conference on World Wide Web - WWW 2005, pp. 1060\u20131061 (2005)","DOI":"10.1145\/1062745.1062868"},{"key":"12_CR19","doi-asserted-by":"publisher","first-page":"20","DOI":"10.1155\/2017\/5421046","volume":"2017","author":"AK Jain","year":"2017","unstructured":"Jain, A.K., Gupta, B.B.: Phishing detection: analysis of visual similarity based approaches. Secur. Commun. Netw. 2017, 20 (2017)","journal-title":"Secur. Commun. Netw."},{"key":"12_CR20","doi-asserted-by":"crossref","unstructured":"Zhang, Y., Hong, J., Lorrie, C.: Cantina: a content-based approach to detecting phishing web sites. In: Proceedings of the 16th International Conference on World Wide Web, Banff, AB, pp. 639\u2013648 (2007)","DOI":"10.1145\/1242572.1242659"},{"key":"12_CR21","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"194","DOI":"10.1007\/978-3-642-27901-0_15","volume-title":"Foundations and Practice of Security","author":"JH Huh","year":"2012","unstructured":"Huh, J.H., Kim, H.: Phishing detection with popular search engines: simple and effective. In: Garcia-Alfaro, J., Lafourcade, P. (eds.) FPS 2011. LNCS, vol. 6888, pp. 194\u2013207. Springer, Heidelberg (2012). https:\/\/doi.org\/10.1007\/978-3-642-27901-0_15"},{"issue":"2","key":"12_CR22","doi-asserted-by":"publisher","first-page":"21:1","DOI":"10.1145\/2019599.2019606","volume":"14","author":"G Xiang","year":"2011","unstructured":"Xiang, G., Hong, J., Rose, C.P., Cranor, L.: Cantina+: a feature-rich machine learning framework for detecting phishing web sites. ACM Trans. Inf. Syst. Secur. 14(2), 21:1\u201321:28 (2011)","journal-title":"ACM Trans. Inf. Syst. Secur."},{"key":"12_CR23","doi-asserted-by":"publisher","first-page":"23","DOI":"10.1016\/j.cose.2013.10.004","volume":"40","author":"R Gowtham","year":"2014","unstructured":"Gowtham, R., Krishnamurthi, I.: A comprehensive and efficacious architecture for detecting phishing webpages. Comput. Secur. 40, 23\u201337 (2014)","journal-title":"Comput. Secur."},{"key":"12_CR24","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"539","DOI":"10.1007\/978-3-642-02490-0_66","volume-title":"Advances in Neuro-Information Processing","author":"D Miyamoto","year":"2009","unstructured":"Miyamoto, D., Hazeyama, H., Kadobayashi, Y.: An evaluation of machine learning-based methods for detection of phishing sites. In: K\u00f6ppen, M., Kasabov, N., Coghill, G. (eds.) ICONIP 2008. LNCS, vol. 5506, pp. 539\u2013546. Springer, Heidelberg (2009). https:\/\/doi.org\/10.1007\/978-3-642-02490-0_66"},{"key":"12_CR25","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"370","DOI":"10.1007\/978-3-319-66402-6_22","volume-title":"Computer Security \u2013 ESORICS 2017","author":"I Corona","year":"2017","unstructured":"Corona, I., et al.: DeltaPhish: detecting phishing webpages in compromised websites. In: Foley, S.N., Gollmann, D., Snekkenes, E. (eds.) ESORICS 2017. LNCS, vol. 10492, pp. 370\u2013388. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-66402-6_22"},{"key":"12_CR26","unstructured":"Cova, M., Kruegel, C., Vigna, G.: There is no free phish: an analysis of \u201cFree\u201d and Live phishing kits. In: 2nd Conference on USENIX Workshop on Offensive Technologies (WOOT), San Jose, CA , vol. 8, pp. 1\u20138 (2008)"},{"key":"12_CR27","series-title":"IFIP Advances in Information and Communication Technology","doi-asserted-by":"publisher","first-page":"155","DOI":"10.1007\/978-3-642-24212-0_12","volume-title":"Advances in Digital Forensics VII","author":"H McCalley","year":"2011","unstructured":"McCalley, H., Wardman, B., Warner, G.: Analysis of back-doored phishing kits. In: Peterson, G., Shenoi, S. (eds.) DigitalForensics 2011. IAICT, vol. 361, pp. 155\u2013168. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-24212-0_12"},{"key":"12_CR28","doi-asserted-by":"crossref","unstructured":"Han, X., Kheir, N., Balzarotti, D.: Phisheye: live monitoring of sandboxed phishing kits. In: Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, pp. 1402\u20131413. ACM (2016)","DOI":"10.1145\/2976749.2978330"},{"key":"12_CR29","doi-asserted-by":"crossref","unstructured":"Moradpoor, N., Clavie, B., Buchanan, B.: Employing machine learning techniques for detection and classification of phishing emails. In: IEEE Computing Conference, pp. 149\u2013156 (2017)","DOI":"10.1109\/SAI.2017.8252096"},{"key":"12_CR30","doi-asserted-by":"crossref","unstructured":"Akinyelu, A.A., Adewumi, A.O.: Classification of phishing email using random forest machine learning technique. J. Appl. Math. 2014, 6 p. (2014)","DOI":"10.1155\/2014\/425731"},{"key":"12_CR31","doi-asserted-by":"crossref","unstructured":"Smadi, S., Aslam, N., Zhang, L., Alasem, R., Hossain, M.: Detection of phishing emails using data mining algorithms. In: 2015 9th International Conference on Software, Knowledge, Information Management and Applications (SKIMA), pp. 1\u20138. IEEE (2015)","DOI":"10.1109\/SKIMA.2015.7399985"},{"key":"12_CR32","doi-asserted-by":"crossref","unstructured":"Irani, D., Webb, S., Giffin, J., Pu, C.: Evolutionary study of phishing. In: ECrime Researchers Summit, pp. 1\u201310. IEEE (2008)","DOI":"10.1109\/ECRIME.2008.4696967"},{"key":"12_CR33","unstructured":"Clayton, R., Moore, T., Christin, N.: Concentrating correctly on cybercrime concentration. In: WEIS (2015)"}],"container-title":["Lecture Notes in Computer Science","Computer Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-99073-6_12","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,6]],"date-time":"2025-07-06T08:59:04Z","timestamp":1751792344000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-319-99073-6_12"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018]]},"ISBN":["9783319990729","9783319990736"],"references-count":33,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-99073-6_12","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2018]]},"assertion":[{"value":"8 August 2018","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ESORICS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Symposium on Research in Computer Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Barcelona","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Spain","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2018","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"3 September 2018","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"9 September 2018","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"23","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"esorics2018","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/esorics2018.upc.edu\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"This content has been made available to all.","name":"free","label":"Free to read"}]}}