Effective Phishing Emails Detection Method

Main Article Content

Dalia Shihab Ahmed , Hanan Abed Alwally Abed Allah , IshraqKhudhair Abbas


The term “phishing” is a type of cyber-attack where the attacker sends fraudulent emails, then asks the user to follow an embedded link, where the user is asked to enter private information. As a social engineering attack, a phishing attack causes huge financial losses to the recipients. Therefore, there is an urgent need for high-accuracy phishing detection.In this paper, we propose a phishing email detection model based on two classification algorithms that are discussed and compared to detect and classify phishing attacks, such as; Multi-Layer Perceptron (MLP) and Random Forest (RF) Classification algorithms with publicly available datasets for both phishing and benign emails, with the main objective is to develop the phishing email classification with the greatest accuracy and least features. From a dataset of 4600 phishing and benign emails messages, we extract three feature tess from the header, and hyperlinks, The features are extracted using a well-known scheme called Term
Frequency-Inverse Document Frequency (TF-IDF) principle to weight the features in each email message. Furthermore, we selected 25 of the most important features using Information Gain (IG) based feature selection. Ten-fold cross-validation was applied for training, testing, and validation. The best experimental result was achieved by using 25 out of 32 features and applying them to the classification algorithms. The model achieved an accuracy of 99.46% for the Random Forest (RF) algorithm, the highest recorded so far for a validated data set.

Article Details