Ecole d'ingénieur et centre de recherche en Sciences du numérique

Inside the SCAM jungle: A closer look at 419 scam email operations

Isacenkova, Jelena; Thonnard, Olivier; Costin, Andrei; Balzarotti, Davide; Francillon, Aurelien

IWCC 2013, International Workshop on Cyber Crime (co-located with the 34th IEEE Symposium on Security and Privacy (IEEE S&P 2013), May 24, 2013, San Francisco, CA, USA

Nigerian scam is a popular form of fraud in which the fraudster tricks the victim into paying a certain amount of money under the promise of a future, larger payoff. Using a public dataset, in this paper we study how these forms of scam campaigns are organized and evolve over time. In particular, we discuss the role of phone numbers as important identifiers to group messages together and depict the way scammers operate their campaigns. In fact, since the victim has to be able to contact the criminal, both email addresses and phone numbers need to be authentic and they are often unchanged and re-used for a long period of time. We also present in details several examples of Nigerian scam campaigns, some of which last for several years - representing them in a graphical way and discussing their characteristics.

Document Doi Bibtex

Titre:Inside the SCAM jungle: A closer look at 419 scam email operations
Ville:San Francisco
Département:Sécurité numérique
Eurecom ref:3955
Copyright: © 2013 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.
Bibtex: @inproceedings{EURECOM+3955, doi = {}, year = {2013}, title = {{I}nside the {SCAM} jungle: {A} closer look at 419 scam email operations }, author = {{I}sacenkova, {J}elena and {T}honnard, {O}livier and {C}ostin, {A}ndrei and {B}alzarotti, {D}avide and {F}rancillon, {A}urelien}, booktitle = {{IWCC} 2013, {I}nternational {W}orkshop on {C}yber {C}rime (co-located with the 34th {IEEE} {S}ymposium on {S}ecurity and {P}rivacy ({IEEE} {S}\&{P} 2013), {M}ay 24, 2013, {S}an {F}rancisco, {CA}, {USA} }, address = {{S}an {F}rancisco, {\'{E}}{TATS}-{UNIS}}, month = {05}, url = {} }
Voir aussi: