Journal of Information and Telecommunication (Jul 2020)

SEADer++: social engineering attack detection in online environments using machine learning

  • Merton Lansley,
  • Francois Mouton,
  • Stelios Kapetanakis,
  • Nikolaos Polatidis

DOI
https://doi.org/10.1080/24751839.2020.1747001
Journal volume & issue
Vol. 4, no. 3
pp. 346 – 362

Abstract

Read online

Social engineering attacks are one of the most well-known and easiest to apply attacks in the cybersecurity domain. Research has shown that the majority of attacks against computer systems was based on the use of social engineering methods. Considering the importance of emerging fields such as machine learning and cybersecurity we have developed a method that detects social engineering attacks that is based on natural language processing and artificial neural networks. This method can be applied in offline texts or online environments and flag a conversation as a social engineering attack or not. Initially, the conversation text is parsed and checked for grammatical errors using natural language processing techniques and then an artificial neural network is used to classify possible attacks. The proposed method has been evaluated using a real dataset and a semi-synthetic dataset with very high accuracy results. Furthermore, alternative classification methods have been used for comparisons in both datasets.

Keywords