Learn More
Malicious web pages are among the major security threats on the Web. Most of the existing techniques for detecting malicious web pages focus on specific attacks. Unfortunately, attacks are getting more complex whereby attackers use blended techniques to evade existing countermeasures. In this paper, we present a holistic and at the same time lightweight(More)
Organized cybercrime on the Internet is proliferating due to exploit kits. Attacks launched through these kits include drive-by-downloads, spam and denial-of-service. In this paper, we tackle the problem of detecting whether a given URL is hosted by an exploit kit. Through an extensive analysis of the workflows of about 40 different exploit kits, we develop(More)
—In spite of the potential advantages that the World Wide Web offers to the way we interact with businesses and people via web applications, its advancement is paralleled with risks and vulnerabilities leading to attacks of diverse complexities and consequences. Among the pressing security risks in web applications, misconfiguration of security-related(More)
—ICT seems well understood as a tool and an infrastructure for delivering information and services for the society and for allowing communications through interactions among the service users —mostly, the digital society. Using ICT for ensuring better life requires far more than good infrastructure, ICT know-how and the various techniques and tools in(More)
—The emergence of exploit kits is one of the most important developments in modern cybercrime. Much of cyber-security research in the recent years has been devoted towards defending citizens from harm delivered through exploit kits. In this paper, we examine an alternate, counter-offensive strategy towards combating cybercrime launched through exploit kits.(More)
In pervasive medical systems with context-aware computing facility, the quality of decisions made by medical professionals is influenced by the quality of context information supplied by the context management subsystem. Central to context management is context information refinement aimed at deriving context information that can assist applications in(More)