Mobile Phishing Attacks and Mitigation Techniques


Mobile devices have taken an essential role in the portable computer world. Portability, small screen size, and lower cost of production make these devices popular replacements for desktop and laptop computers for many daily tasks, such as surfing on the Internet, playing games, and shopping online. The popularity of mobile devices such as tablets and smart phones has made them a frequent target of traditional web-based attacks, especially phishing. Mobile device-based phishing takes its share of the pie to trick users into entering their credentials in fake websites or fake mobile applications. This paper discusses various phishing attacks using mobile devices followed by some discussion on countermeasures. The discussion is intended to bring more awareness to emerging mobile device-based phishing attacks.

Share and Cite:

Shahriar, H. , Klintic, T. and Clincy, V. (2015) Mobile Phishing Attacks and Mitigation Techniques. Journal of Information Security, 6, 206-212. doi: 10.4236/jis.2015.63021.

Conflicts of Interest

The authors declare no conflicts of interest.


[1] CAPEC-164: Mobile Phishing.
[2] Ashford, W. (2014) Phishing Attacks Track Mobile Adoption, Research Shows.
[3] Kessem, L. (2012) Rogue Mobile Apps, Phishing, Malware and Fraud.
[4] Klein, A. (2010) The Golden Hour of Phishing Attacks.
[5] Symantec Internet Security Threat Report 2014, Vol. 19.
[6] Todorova, A. (2010) “Phishing” Scams Cast Net on Mobile Banking.
[7] Trend Micro eBook (2013) Trend Micro. yourself-against-mobile-phishing/files/assets/downloads/protecting-yourself-against-mobile-phishing.pdf
[8] Morrison, D. (2010) Mobile Phishing Highlights Need for Greater Security.
[9] Jevan, D. (2012) Latest Threats against Mobile Devices. Information Systems Security Association.
[10] Wilson, S. (2014). Smishing, Yes It Is All Bad.
[11] Foozy, C.F.M., Ahmad, R. and Abdollah, M.F. (2013) Phishing Detection Taxonomy for Mobile Device. International Journal of Computer Science, 10, 338-344.
[12] (2014) Hackers Target Wi-Fi Hotspots in New Phishing Attack.
[13] Johnston, S. (2013) How to Protect Yourself from Smishing and Vishing.
[14] Yoon, J.W., et al. (2010) Hybrid Spam Filtering for Mobile Communication. Computers & Security, 29, 446-459.
[15] Mahmoud, T.M. and Mahfouz, A.M. (2012) SMS Spam Filtering Technique Based on Artificial Immune System. International Journal of Computer Science, 9, 589-597.
[16] Zhang, Y., Hong, J. and Cranor, L. (2007) Cantina: A Content-Based Approach to Detecting Phishing Web Sites. Proceedings of the 16th International Conference on World Wide Web, Banff, May, 639-648.
[17] Sheng, S., Wardman, B., Warner, G., Cranor, L., Hong, J. and Zhang, C. (2009) An Empirical Analysis of Phishing Blacklists. 6th Annual Conference on Email and AntiSpam (CEAS), Mountain View.
[18] COMODO Security Solutions.

Copyright © 2023 by authors and Scientific Research Publishing Inc.

Creative Commons License

This work and the related PDF file are licensed under a Creative Commons Attribution 4.0 International License.