Phishing Techniques in Mobile Devices

TL;DR

This paper analyzes various phishing attack methods targeting mobile devices, evaluates mitigation techniques, and offers guidance to users on how to recognize and prevent such attacks, emphasizing increased awareness and security measures.

Contribution

It provides a comprehensive analysis of mobile phishing techniques, assesses existing mitigation strategies, and summarizes effective steps to enhance user awareness and security.

Findings

Different types of mobile phishing attacks are identified and explained.

Evaluation of anti-phishing techniques highlights their strengths and weaknesses.

Guidelines for users to avoid falling victim to mobile phishing are summarized.

Abstract

The rapid evolution in mobile devices and communication technology has increased the number of mobile device users dramatically. The mobile device has replaced many other devices and is used to perform many tasks ranging from establishing a phone call to performing critical and sensitive tasks like money payments. Since the mobile device is accompanying a person most of his time, it is highly probably that it includes personal and sensitive data for that person. The increased use of mobile devices in daily life made mobile systems an excellent target for attacks. One of the most important attacks is phishing attack in which an attacker tries to get the credential of the victim and impersonate him. In this paper, analysis of different types of phishing attacks on mobile devices is provided. Mitigation techniques - anti-phishing techniques - are also analyzed. Assessment of each technique and a summary of its advantages and disadvantages is provided. At the end, important steps to guard against phishing attacks are provided. The aim of the work is to put phishing attacks on mobile systems in light, and to make people aware of these attacks and how to avoid them