| Authors | M. Abdolrazzagh-Nezhad and N. Langarib |
|---|---|
| Journal | Data Science: Journal of Computing and Applied Informatics |
| Paper Type | Full Paper |
| Published At | 2025 |
| Journal Grade | ISI |
| Journal Type | Typographic |
| Journal Country | Indonesia |
Abstract
This comprehensive review article provides a systematic analysis of contemporary phishing detection techniques, categorizing them into four primary groups: anti-phishing tools, heuristic approaches, machine learning-based methods, and metaheuristic algorithms. The authors, Majid Abdolrazzagh-Nezhad and Nafise Langarib, meticulously evaluate the effectiveness, strengths, and limitations of each approach, offering a clear and structured overview of the current landscape in cybersecurity defense against phishing. By synthesizing a wide array of research, the paper successfully identifies significant advancements in the field, such as the development of hybrid techniques and real-time detection systems, while also pinpointing critical gaps that challenge existing solutions.
A key achievement of this review is its organized and critical comparative analysis. The authors not only list various methods but also provide a detailed evaluation using metrics like detection accuracy, as summarized in a comparative table. For instance, they highlight how heuristic methods like visual similarity analysis achieve high accuracy (e.g., 93%) but may suffer from high false positive rates, whereas sophisticated machine learning models like Neuro-Fuzzy can reach up to 98.5% accuracy but at the cost of high computational complexity. This balanced presentation allows readers to understand the trade-offs involved in selecting a detection strategy for different scenarios.
The paper positively emphasizes the evolution and integration of advanced computational techniques. It notably showcases the promising role of metaheuristic algorithms—such as Particle Swarm Optimization (PSO), Ant Colony Optimization (ACO), and the Inclined Planes Optimization (IPO) algorithm—in optimizing feature selection and improving detection models. The authors specifically highlight their own prior work with IPO, demonstrating its effectiveness in e-banking phishing detection and its enhanced performance when combined with fuzzy rules. This underscores a trend towards adaptive, intelligent systems that can navigate complex search spaces more efficiently than traditional methods.
Furthermore, the review thoughtfully addresses pressing challenges and future directions, which constitutes one of its most valuable contributions. It candidly discusses limitations such as the inability of many current methods to handle zero-day phishing attacks, scalability issues with large datasets, and problems related to class imbalance in training data. The authors advocate for future research to focus on developing real-time, adaptive detection systems, hybrid frameworks that combine multiple techniques, and more user-centric designs that incorporate human feedback. By providing this roadmap, the article serves as a foundational guide for researchers and practitioners aiming to build next-generation, robust phishing defense mechanisms that can keep pace with the growing sophistication of cyber threats.
tags: Phishing Detection