Recognition and evaluation of cybersecurity threats in reported emails
Autor(a) principal: | |
---|---|
Data de Publicação: | 2023 |
Tipo de documento: | Dissertação |
Idioma: | eng |
Título da fonte: | Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
Texto Completo: | http://hdl.handle.net/10451/62950 |
Resumo: | Tese de mestrado, Engenharia Informática, 2023, Universidade de Lisboa, Faculdade de Ciências |
id |
RCAP_920b8bbb9808aeee03a44e07089c29cc |
---|---|
oai_identifier_str |
oai:repositorio.ul.pt:10451/62950 |
network_acronym_str |
RCAP |
network_name_str |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
repository_id_str |
7160 |
spelling |
Recognition and evaluation of cybersecurity threats in reported emailsCibersegurançaPhishingDeteção de AmeaçasCiberataquesSegurança da InformaçãoTeses de mestrado - 2023Departamento de InformáticaTese de mestrado, Engenharia Informática, 2023, Universidade de Lisboa, Faculdade de CiênciasPhishing is a specific type of cyberattack where attackers take advantage of, for example, malicious emails with the intent of tricking entities into disclosing private and sensitive information such as credentials for different types of accounts, financial data, and also personal information. This type of fraudulent activity has become very common and very well structured, where also attentive and informed companies and individuals pose as victims to the most sophisticated threats. To note that falling victim to such attacks pose as an unquestionably risk, from one’s career to financial losses and reputational damage. To lessen the probability of these risk’s occurrence, several companies are actively seeking for prevention solutions. One known, and very used, approach is the adoption of recognition tools that can automatically detect suspicious emails and mark them for further investigation. Yet, it is important to acknowledge that these tools may not consistently generate precise results. There exists the potential for inaccurately categorizing genuine emails as suspicious, also known as "false positives", or malicious emails as non-malicious, known as "false negatives". In order to address this issue, organizations may employ a blend of human knowledge and expertise partnered with intelligent software. For instance, by deploying automated and intelligent security ‘filters‘, such as firewalls, and Intrusion Detection Systems, a company can confidently trust that most illegitimate emails will be filtered out. In the event that a potential phishing email passes these security measures and reaches the company’s employees, the most detailed analysis can be done by trained personnel. This project focuses on evaluating these emails that may be potentially classified as phishing. The goal is to provide useful information to both email recipients who initially report such emails and the company’s security team. The information collected and analyzed can be crucial in helping the company make informed decisions on how to handle these situations. The proposed strategy will be based on the implementation of various methods that offer distinct approaches to tackling the phishing problem. Methods include URL analysis, assessing the similarity between sender and recipient domains, and using user relationships within the platform to obtain general information about malicious URLs.Sá, Alan Oliveira deRepositório da Universidade de LisboaMurteira, Tiago Filipe Ferreira2024-02-26T17:56:13Z202320232023-01-01T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesisapplication/pdfhttp://hdl.handle.net/10451/62950engmetadata only accessinfo:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2024-03-04T01:20:34Zoai:repositorio.ul.pt:10451/62950Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireopendoar:71602024-03-20T03:12:31.819143Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse |
dc.title.none.fl_str_mv |
Recognition and evaluation of cybersecurity threats in reported emails |
title |
Recognition and evaluation of cybersecurity threats in reported emails |
spellingShingle |
Recognition and evaluation of cybersecurity threats in reported emails Murteira, Tiago Filipe Ferreira Cibersegurança Phishing Deteção de Ameaças Ciberataques Segurança da Informação Teses de mestrado - 2023 Departamento de Informática |
title_short |
Recognition and evaluation of cybersecurity threats in reported emails |
title_full |
Recognition and evaluation of cybersecurity threats in reported emails |
title_fullStr |
Recognition and evaluation of cybersecurity threats in reported emails |
title_full_unstemmed |
Recognition and evaluation of cybersecurity threats in reported emails |
title_sort |
Recognition and evaluation of cybersecurity threats in reported emails |
author |
Murteira, Tiago Filipe Ferreira |
author_facet |
Murteira, Tiago Filipe Ferreira |
author_role |
author |
dc.contributor.none.fl_str_mv |
Sá, Alan Oliveira de Repositório da Universidade de Lisboa |
dc.contributor.author.fl_str_mv |
Murteira, Tiago Filipe Ferreira |
dc.subject.por.fl_str_mv |
Cibersegurança Phishing Deteção de Ameaças Ciberataques Segurança da Informação Teses de mestrado - 2023 Departamento de Informática |
topic |
Cibersegurança Phishing Deteção de Ameaças Ciberataques Segurança da Informação Teses de mestrado - 2023 Departamento de Informática |
description |
Tese de mestrado, Engenharia Informática, 2023, Universidade de Lisboa, Faculdade de Ciências |
publishDate |
2023 |
dc.date.none.fl_str_mv |
2023 2023 2023-01-01T00:00:00Z 2024-02-26T17:56:13Z |
dc.type.status.fl_str_mv |
info:eu-repo/semantics/publishedVersion |
dc.type.driver.fl_str_mv |
info:eu-repo/semantics/masterThesis |
format |
masterThesis |
status_str |
publishedVersion |
dc.identifier.uri.fl_str_mv |
http://hdl.handle.net/10451/62950 |
url |
http://hdl.handle.net/10451/62950 |
dc.language.iso.fl_str_mv |
eng |
language |
eng |
dc.rights.driver.fl_str_mv |
metadata only access info:eu-repo/semantics/openAccess |
rights_invalid_str_mv |
metadata only access |
eu_rights_str_mv |
openAccess |
dc.format.none.fl_str_mv |
application/pdf |
dc.source.none.fl_str_mv |
reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação instacron:RCAAP |
instname_str |
Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação |
instacron_str |
RCAAP |
institution |
RCAAP |
reponame_str |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
collection |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
repository.name.fl_str_mv |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação |
repository.mail.fl_str_mv |
|
_version_ |
1799137774238957568 |