All

What are you looking for?

All
Projects
Results
Organizations

Quick search

  • Projects supported by TA ČR
  • Excellent projects
  • Projects with the highest public support
  • Current projects

Smart search

  • That is how I find a specific +word
  • That is how I leave the -word out of the results
  • “That is how I can find the whole phrase”
EN
ČeštinaEnglish

Exploring Current E-mail Cyber Threats Using Authenticated SMTP Honeypot

The result's identifiers

  • Result code in IS VaVaI

    <a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216305%3A26230%2F20%3APU138617" target="_blank" >RIV/00216305:26230/20:PU138617 - isvavai.cz</a>

  • Result on the web

    <a href="https://www.scitepress.org/PublicationsDetail.aspx?ID=KjbiWwxR+9s=&t=1" target="_blank" >https://www.scitepress.org/PublicationsDetail.aspx?ID=KjbiWwxR+9s=&t=1</a>

  • DOI - Digital Object Identifier

    <a href="http://dx.doi.org/10.5220/0009591002530262" target="_blank" >10.5220/0009591002530262</a>

Alternative languages

  • Result language

    angličtina

  • Original language name

    Exploring Current E-mail Cyber Threats Using Authenticated SMTP Honeypot

  • Original language description

    Today, spam is a major attack vector hackers use to cause harm. Let it be through phishing or direct malicious attachments, e-mail can be used to steal credentials, distribute malware, or cause other illegal activities. Even nowadays, most users are unaware of such danger, and it is the responsibility of the cybersecurity community to protect them. To do that, we need tools to gain proper threat intelligence in the e-mail cyber landscape. In this work, we show how an e-mail honeypot requiring authentication can be used to monitor current e-mail threats. We study how such honeypot performs in place of an open relay server. The results show this kind of solution provides a powerful tool to collect fresh malicious samples spreading in the wild. We present a framework we built around this solution and show how its users are automatically notified about unknown threats. Further, we perform analysis of the data collected and present a view on the threats spreading in the recent months as captured by this authentication-requiring e-mail honeypot.

  • Czech name

  • Czech description

Classification

  • Type

    D - Article in proceedings

  • CEP classification

  • OECD FORD branch

    10201 - Computer sciences, information science, bioinformathics (hardware development to be 2.2, social aspect to be 5.8)

Result continuities

  • Project

  • Continuities

    N - Vyzkumna aktivita podporovana z neverejnych zdroju

Others

  • Publication year

    2020

  • Confidentiality

    S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Data specific for result type

  • Article name in the collection

    Proceedings of the 17th International Conference on Security and Cryptography (SECRYPT 2020)

  • ISBN

    978-989-758-446-6

  • ISSN

  • e-ISSN

  • Number of pages

    10

  • Pages from-to

    253-262

  • Publisher name

    SciTePress - Science and Technology Publications

  • Place of publication

    Paris

  • Event location

    Paris

  • Event date

    Jul 8, 2020

  • Type of event by nationality

    WRD - Celosvětová akce

  • UT code for WoS article

    000615962200021

Similar results(10)

Flow-based Monitoring of HoneypotsStudy of Internet Threats and Attack Methods Using Honeypots and HoneynetsPOSTER: Dragging Attackers to Honeypots for Effective Analysis of Cybernetic Threats