Preventing phishing attacks
First Claim
1. A method performed by a data processing system for preventing phishing attacks, comprising:
- acquiring, by a computing device, a plurality of links in a Web page;
classifying, by a computing device, the acquired links according to link types to form classified links; and
determining, by a computing device prior to conditionally displaying the Web page to a user, whether a phishing attack exists according to the classified links,wherein the acquired links are classified into two types;
internal links belonging to a same domain as an internet protocol (IP) address of the Web page, andexternal links belonging to a different domain from the IP address of the Web page;
wherein determining whether a phishing attack exists includes;
calculating a percentage of links of a respective type in a total number of the links,comparing the calculated percentage of links of the respective type in the total number of links with a preset percentage threshold, anddetermining whether a phishing attack exists using the comparison result, andwarning a user of a possible phishing attack in response to determining that the phishing attack exists.
3 Assignments
0 Petitions
Accused Products
Abstract
A method, system and program product for preventing phishing attacks, wherein the method comprises: acquiring links in a Web page; classifying the acquired links according link types; and determining whether a phishing attack exists according to the classified links, wherein the links are classified into two types: internal links belonging to the same domain as the address of the Web page, and external links belonging to a different domain from the address of the Web page. By carrying out the method or system according to the above one or more embodiments of the present disclosure, since it is first detected whether a Web page is a fake website of a phishing attack before displaying the reproduced Web page to the user and the user is warned upon detecting a fake website, unnecessary losses due to phishing attacks can be prevented.
46 Citations
12 Claims
-
1. A method performed by a data processing system for preventing phishing attacks, comprising:
-
acquiring, by a computing device, a plurality of links in a Web page; classifying, by a computing device, the acquired links according to link types to form classified links; and determining, by a computing device prior to conditionally displaying the Web page to a user, whether a phishing attack exists according to the classified links, wherein the acquired links are classified into two types; internal links belonging to a same domain as an internet protocol (IP) address of the Web page, and external links belonging to a different domain from the IP address of the Web page; wherein determining whether a phishing attack exists includes; calculating a percentage of links of a respective type in a total number of the links, comparing the calculated percentage of links of the respective type in the total number of links with a preset percentage threshold, and determining whether a phishing attack exists using the comparison result, and warning a user of a possible phishing attack in response to determining that the phishing attack exists. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
Specification
-
- Resources
-
Current AssigneeBeijing Zitiao Network Technology Company Limited (ByteDance Ltd.)
-
Original AssigneeInternational Business Machines Corporation
-
InventorsWang, Bin, Xie, Lin, Song, Yin, Zhang, Lei, Sun, Man, Li, Dong
-
Primary Examiner(s)Pham, Luu
-
Assistant Examiner(s)Baum, Ronald
-
Application NumberUS13/564,797Publication NumberTime in Patent Office1,853 DaysField of Search726 22US Class CurrentCPC Class CodesG06F 21/54 by adding security routines...G06F 21/56 Computer malware detection ...G06F 21/577 Assessing vulnerabilities a...
