Led by Assistant Professor of Computer Science Dr. Zibin Zheng, the team's research focuses on detecting phishing attacks through novel means. Dr. Zheng explains that traditional methods tend to be reactive, such as relying on firewalls or antivirus software to protect systems. They aim to flip the script by adopting a proactive approach that catches phishers in real time.
"We want to be able to catch the phisher before they even succeed in getting any sensitive data from a user," Dr. Zheng says. "Right now, they're able to steal credentials and other information, and sometimes it takes a while for us to even know that an attack has happened. We want to stop them at the moment of the attack so they don't have a chance to do damage."
To achieve this goal, the team leverages diverse data sources, including network traffic logs and user behaviors, and analyzes them with sophisticated machine learning algorithms. By combining historical and real-time data, they create advanced models that recognize the early signs of phishing attacks, allowing prompt action to be taken.
However, Dr. Zheng emphasizes the importance of understanding how phishers think and how their techniques evolve over time. He draws parallels between the cyber realm and the world of predators and prey.
"Phishers are constantly evolving their techniques, just like how predators in nature adapt their hunting methods. They're always trying to find new ways to trick people into falling for their schemes," he says. "We, on the other hand, need to be one step ahead. We need to continuously learn and keep pace with their evolution to be able to effectively counter their attacks."
The team's ongoing research is crucial in the ongoing battle against phishing, enhancing cybersecurity measures and safeguarding individuals and organizations from the growing threat of online fraud.
