TY - JOUR
T1 - OFF-The-Hook
T2 - A Tool to Detect Zero-Font and Traditional Phishing Attacks in Real Time
AU - Saqib, Nazar Abbas
AU - AlMuraihel, Zahrah Ali
AU - AlMustafa, Reema Zaki
AU - AlRuwaili, Farah Amer
AU - AlQahtani, Jana Mohammed
AU - Aodah Alahmadi, Amal
AU - Alqahtani, Deemah
AU - Alharthi, Saad Abdulrahman
AU - Chabani, Sghaier
AU - AL Kubaisy, Duaa Ali
N1 - Publisher Copyright:
© 2025 by the authors.
PY - 2025/8
Y1 - 2025/8
N2 - Phishing attacks continue to pose serious challenges to cybersecurity, with attackers constantly refining their methods to bypass detection systems. One particularly evasive technique is Zero-Font phishing, which involves the insertion of invisible or zero-sized characters into email content to deceive both users and traditional email filters. Because these characters are not visible to human readers but still processed by email systems, they can be used to evade detection by traditional email filters, obscuring malicious intent in ways that bypass basic content inspection. This study introduces a proactive phishing detection tool capable of identifying both traditional and Zero-Font phishing attempts. The proposed tool leverages a multi-layered security framework, combining structural inspection and machine learning-based classification to detect both traditional and Zero-Font phishing attempts. At its core, the system incorporates an advanced machine learning model trained on a well-established dataset comprising both phishing and legitimate emails. The model alone achieves an accuracy rate of up to 98.8%, contributing significantly to the overall effectiveness of the tool. This hybrid approach enhances the system’s robustness and detection accuracy across diverse phishing scenarios. The findings underscore the importance of multi-faceted detection mechanisms and contribute to the development of more resilient defenses in the ever-evolving landscape of cybersecurity threats.
AB - Phishing attacks continue to pose serious challenges to cybersecurity, with attackers constantly refining their methods to bypass detection systems. One particularly evasive technique is Zero-Font phishing, which involves the insertion of invisible or zero-sized characters into email content to deceive both users and traditional email filters. Because these characters are not visible to human readers but still processed by email systems, they can be used to evade detection by traditional email filters, obscuring malicious intent in ways that bypass basic content inspection. This study introduces a proactive phishing detection tool capable of identifying both traditional and Zero-Font phishing attempts. The proposed tool leverages a multi-layered security framework, combining structural inspection and machine learning-based classification to detect both traditional and Zero-Font phishing attempts. At its core, the system incorporates an advanced machine learning model trained on a well-established dataset comprising both phishing and legitimate emails. The model alone achieves an accuracy rate of up to 98.8%, contributing significantly to the overall effectiveness of the tool. This hybrid approach enhances the system’s robustness and detection accuracy across diverse phishing scenarios. The findings underscore the importance of multi-faceted detection mechanisms and contribute to the development of more resilient defenses in the ever-evolving landscape of cybersecurity threats.
KW - emails
KW - machine learning
KW - multi-layered
KW - phishing
KW - Zero-Font
UR - https://www.scopus.com/pages/publications/105014349036
U2 - 10.3390/asi8040093
DO - 10.3390/asi8040093
M3 - Article
AN - SCOPUS:105014349036
SN - 2571-5577
VL - 8
JO - Applied System Innovation
JF - Applied System Innovation
IS - 4
M1 - 93
ER -