Papasavva et al.

SYSTEMATIC REVIEW*

Application of AI-based Models for Online Fraud

Detection and Analysis
Antonis Papasavva1* , Shane Johnson1 , Ed Lowther3 , Samantha Lundrigan2 , Enrico Mariconti1 , Anna
Markovska2 and Nilufer Tuptuk1
*NOTE: This manuscript is currently under peer review. Please be aware that the content may
arXiv:2409.19022v1 [cs.CL] 25 Sep 2024

be subject to revision in future versions.

Abstract
Background: Fraud is a prevalent offence that extends beyond financial loss, impacting victims emotionally,
psychologically, and physically. The advancements in online communication technologies, allow for online fraud
to thrive in this vast network, with fraudsters increasingly using these channels for deception. With the
progression of technologies like Generative Artificial Intelligence (GenAI), there is a growing concern that fraud
will increase and scale, using these advanced methods such as deep-fakes in phishing campaigns. However, the
application of AI in detecting and analyzing online fraud remains understudied. This review addresses this gap
by investigating AI’s role in analyzing online fraud using text data.
Methods: We conducted a Systematic Literature Review (SLR) on AI and Natural Language Processing (NLP)
techniques for online fraud detection. The review adhered to the PRISMA-ScR protocol, with eligibility criteria
including language, publication type, relevance to online fraud, use of text data, and AI methodologies. Out of
2, 457 academic records screened, 350 met our eligibility criteria, and 223 were analyzed and included herein.
Results: We report the state-of-the-art NLP techniques used to analyse various online fraud categories; the
data sources used for training the NLP models; the NLP algorithms and models built; and the performance
metrics employed for model evaluation. We find that the current state of research on online fraud is broken
into the various scam activities that take place, and more specifically, we identify 16 different frauds that
researchers focus on. Finally, we present the latest and best performing AI methods used towards detecting
online scam and fraud activities.
Conclusions: This SLR enhances the academic understanding of AI-based detection methods for online fraud
and offers insights for policymakers, law enforcement, and businesses on safeguarding against such activities.
We conclude that focusing on specific scams lacks generalization, as multiple models are required for different
fraud types. Furthermore, the evolving nature of scams limits the effectiveness of models trained on outdated
data. We also identify issues in data limitation or training bias reporting from researchers, along with issues on
model performance reporting, with some studies selectively presenting metrics, leading to potential biases in
model evaluation.
Keywords: Artificial Intelligence; Natural Language Processing; Online Fraud; Systematic Literature Review

Background impersonation, taking place on the Internet, towards

Online fraud has emerged as one of the most pervasive
and challenging threats in the digital age affecting in-
dividuals of all ages, businesses of different sizes, and
governments. Defined broadly, online fraud is an um-
brella term that involves acts of deception or deliberate
*
Correspondence:
the personal gain of the fraudster, often resulting in
a financial loss for the victim [1]. Other than finan-
cial losses, fraud can have a wide range of impacts on
victims. These include emotional and psychological ef-
fects such as anger, fear, shame, depression, decrease in
confidence, and trauma; impacts on physical and men-

[email protected]

1
Security and Crime Science, University College London, London, United
Kingdom
Full list of author information is available at the end of the article
tal well-being; harms relationships and leads to loneli-
ness and isolation; and causes negative changes in be-
haviour [2]. Although there is evidence suggesting that
Papasavva et al.
certain socio-demographic groups face higher risks of
fraud–such as women aged 25-34 or 35-44 experiencing
fraud at rates of 7.6%, and individuals in the highest
income bracket at 8.3%–fraud is impacting individuals
across all demographics [2] and sometimes in different
ways. For example, victims earning £20,000 or less,
those aged 65 and over, and female victims, reported
impacts on their self-confidence, at rates of 46%, 43%,
and 41%, respectively, compared to the overall victim
rate of 35%.
For the year ending March 2023, the Crime Survey
for England and Wales estimated 3.5 million fraud of-
fences including online fraud [3]. For example, advance
fee fraud increased significantly highly from 60,000 to
391,000 offences compared to the year ending March
2020. This increase is largely due to society’s growing
reliance on the Internet and digital platforms for ev-
eryday services, transactions and communications. Ac-
cording to The Office of Communication (Ofcom) [4],
92% of adults in the UK use the Internet for a wide va-
riety of activities including communication, education,
and entertainment. Activities such as banking, shop-
ping, and socialising are increasingly happening via on-
line platforms, expanding the landscape for fraudsters
to exploit vulnerabilities or use these platforms to de-
ceive victims. In 2020, online shopping scams made up
38% of all reported scams worldwide, an increase of
6% compared to pre-Covid-19 outbreak [5].
Online fraud encompasses a wide range of decep-
tive activities, including identity theft, phishing, ad-
vance fee fraud, romance scams, fraudulent invest-
ment scams, and more. It is important to highlight
that there is no universally accepted definition of “on-
line fraud,” and the term is often used interchange-
ably with the term “scam.” Legally, “fraud is defined
as false representation to cause loss to another or to
expose another to a risk of loss” [6], and scam is the
process where criminals gain the trust of victims to
deceive or cheat victims [7], through false representa-
tion and other means, so that the victim trust them,
which in turn results in various kinds of losses for the
victim. The National Fraud Authority published a lit-
erature review [8] where they compared the distinction
of the term fraud as defined by the amended Fraud Act
2006 [6] and the typology produced by Levi [9]. They
found fraud embraces a broad scope of different crimes,
whereas scams often are focused on fraud against indi-
viduals and small firms. For example, different scams
like advance fee, romance, tech support, etc., all fall
under the fraud umbrella, but they are also deception
methods, which are in part scams. Hence, in this SLR,
we use both terms as the various scams are the differ-
ent deception methods scammers use to trick victims,
and fraud is the term that includes all scams.
Page 2 of 37
Online frauds exploit the virtual nature of the In-
ternet and the anonymity it provides to reach out to
victims. This virtual environment, coupled with juris-
dictional challenges (where offenders and victims may
be in different regions of the world), makes fraud dif-
ficult to detect and prevent using traditional policing
techniques. The complexity of online fraud is further
heightened by its evolving nature, as fraudsters contin-
uously adapt their techniques to bypass new security
measures and exploit emerging technologies to target
on new victims [10].
Given the scale and impact of online fraud, there
is a need for new methods to detect and prevent
such activities. The use of NLP, in combination with
other AI, has been proposed for identifying, charac-
terising, and detecting fraudulent patterns in appli-
cations like phishing [11], fake job advertisement [12]
and analysing scam patterns [13] which could help de-
velop preventive measures and mitigate risks of on-
line fraud. However, understanding the current state
of AI techniques in combating online fraud, the data
sources used, the evaluation methods for AI models,
and the specific types of fraud that are most prevalent
remain a significant challenge. This is due to the con-
stant emergence of new fraud activities that use var-
ious communication mediums and social engineering
attacks, in an attempt by fraudsters to remain unde-
tected. Therefore, there is a pressing need to shift from
detecting and analysing the effects of fraud to early de-
tecting emerging fraudulent activities online and new
methods of social engineering.
This systematic literature review (SLR) aims to ad-
dress these challenges by providing a comprehensive
overview of the state-of-the-art AI techniques used to
detect fraudulent activities online. More specifically,
we explore the data sources widely used by researchers
to study online fraud, how researchers evaluate the
methodologies employed to assess AI models, and iden-
tify the most popular types of online fraud targeted
by researchers. By synthesising findings from academic
papers, this review aims to provide a thorough under-
standing of the current landscape of online fraud de-
tection and prevention, highlighting gaps in existing
research, and proposing directions for future studies.
Research Questions. The research question for the
Systematic Literaure Review (SLR) is as follows:
– RQ1: What is the state-of-the-art of AI techniques
used to detect online fraud?
– RQ2: What are the data sources that researchers
use to analyse online fraud?
– RQ3: How do researchers evaluate their AI models?
– RQ4: What are the most popular fraud activities
that researchers study that fraudsters use to ap-
proach their potential victims?
Papasavva et al.
Although a wide number of studies have explored the
application of AI for fraud detection and other types
of cybercrime, we are not aware of any systematic lit-
erature reviews that have examined the application of
AI models using text data. The focus of this SLR is
AI-based models that study textual data to detect and
gain insights related to online fraud. Thus, the focus of
this study is to identify Natural Language Processing
models that are used to detect online fraud.
1 Online Fraud and AI
We now discuss online fraud and various AI method-
ologies in detail for further reader information. Online
fraud refers to any deliberate act of deception con-
ducted over the Internet to obtain an unlawful or un-
fair gain. It involves exploiting online platforms, ser-
vices, and technologies to deceive individuals or organ-
isations for financial, personal, or material gain. Online
fraud can take many forms, each characterised by the
method of deception and the medium used to perpe-
trate the fraud.
1.1 Fraud Categories
The list of online fraud activities is extensive and con-
stantly evolving with new types or sub-types emerging.
Developing a comprehensive taxonomy or classification
for all online fraud activities requires special attention,
which is beyond scope of this work. Below we outline
some of the well-known online fraud types.
– Phishing is the process where fraudsters imperson-
ate representatives of legitimate organisations or ac-
quaintances of the targeted victim to trick them into
providing personal information such as usernames,
passwords, credit card details, or bank account de-
tails. This activity can be done through various
mediums, like email, phone calls (aka Vishing), SMS
(aka Smishing), and any other way of online com-
munication. There are various phishing scams that
surfaced over the years, including the Royal Mail
scam [14], banking scams [15], HMRC scams [16],
and many others. Notably, phishing scams often
include deceptive web addresses created by cyber-
criminals to trick victims into believing they are vis-
iting legitimate websites. The primary goal of these
URLs is to steal personal data including usernames,
passwords and credit card details for financial gain.
– Fake Reviews are deceptive or fraudulent reviews
created to mislead potential customers about the
quality, reliability, or legitimacy of a product, ser-
vice, or app. On fraudulent e-commerce websites and
app stores, fake reviews play a crucial role in trick-
ing victims into trusting and using fraudulent apps
or purchasing substandard or non-existent products.
This leads to potential victims trusting fraudulent
Page 3 of 37
websites, services, or apps, providing them with
their credit card details for a purchase, that leads
the victim to a vulnerable position [17].
– Recruitment Fraud is a type of online scam where
fraudsters pose as legitimate employers or recruiters
to deceive job seekers. The primary goal of these
scams is to receive “fees” for a job application, steal
personal information, extort money, or exploit the
victim in some other way. This type of fraud preys
on individuals seeking employment, often target-
ing those who are most vulnerable or desperate for
work [18].
– Romance fraud (aka romance scams or dating
scams) involves fraudsters creating fake profiles on
dating websites, social media, or other online plat-
forms to deceive victims into believing they are in
a genuine romantic relationship. The primary ob-
jective is to exploit the victim’s emotions to ex-
tort money, personal information, or other benefits.
This is an elaborate scam that is extremely diffi-
cult to detect, since it is also underreported due
to victims feeling ashamed and hurt for being a
victim from someone they considered to be a ro-
mantic partner [19]. In this scams, fraudsters com-
municate with victims for a long time before pre-
senting them with an “investment opportunity” or
requesting their financial aid. Romance scams are
closely related to the Cryptocurrency Pig Butchering
scams [20], where victims are gradually lured into
making increasing contributions over a long period
of time, usually in cryptocurrency, to a fraudulent
scheme [21].
– Fraudulent Investment include scams where
fraudsters promise victims significant winnings or
lucrative opportunities [22]. These scams are usually
associated with the romance scams discussed above.
Once the victims try to withdraw their “winnings”
the scammers will extort them by asking for “fees”
and “taxes” to be paid in advance. The promised
benefits and winnings never materialize, and the
initial investment sums and fees are lost [23]. Fraud-
ulent investment is the umbrella that covers Cryp-
tocurrency Pig Butchering scams explained above,
and various Ponzi schemes [24] where early investors
greatly benefit from the investments of later in-
vestors, also known as pyramid schemes.
– Crypto market manipulation involves artifi-
cially increasing or decreasing the price of cryp-
tocurrencies to achieve financial gain. It often in-
volves coordinated efforts by individuals or groups
to manipulate the market to create false perceptions
of supply, demand, or market sentiment. Some com-
mon techniques used in crypto market manipulation
include: Pump and Dump which inflates the price of
Papasavva et al.
a cryptocurrency through misleading or false state-
ments (pumping), encouraging others to buy, and
then selling off the cryptocurrency at a profit once
the price has been pumped up (dumping); Wash
Trading occurs when a trader buys and sells the
same cryptocurrency simultaneously to create de-
ceptive activity on the market; Spoofing involves
placing significant buy or sell orders to withdrawn
them before execution to mislead perceptions re-
lated to the market demand or supply;Front-running
involves placing orders ahead of a large trade that
is known to occur, to benefit from the subsequent
price movement caused by the large trade; and many
others [25].
– Fraudulent e-commerce involves deceptive prac-
tices or scams conducted through online e-commerce
platforms. These scams aim to exploit the digital
payment systems to deceive consumers or businesses
via paying for a fraudulent product or service.
– Fraudulent crowdfunding refers to the misuse of
crowdfunding platforms to deceive donors or back-
ers, often by providing false or misleading infor-
mation about the nature, purpose, or outcome of
a crowdfunding campaign. Crowdfunding itself is a
method of raising money from a large number of
people via online platforms to fund projects, prod-
ucts, or causes [26]. A fraud similar to crowdfunding
is Charity Fraud and Disaster Scams where scam-
mers seek donations for organisations that do not
exist or do no or little work at all. These scams are
particularly common after high profile disasters as
criminals often use tragedies to exploit people who
are looking to donate [27].
– Gambling Fraud is any illegal activity that is
intended to cheat players or an online gambling
platform. Fraudsters manage to trick victims and
platforms in different ways, including rigged games,
fake websites (phishing URLs described above), ac-
count takeovers (via stealing legitimate users’ access
codes), and via creating fake apps with fake reviews,
as discussed above to gain the trust of users. Online
gambling fraud can happen on multiple platforms
and involve wide variety of games inclduing casino
scams, sports betting scams, and lottery scams [28].
– Tax Scams occurs when scammers falsify infor-
mation regarding pending tax money, or via ma-
liciously impersonating tax officials to trick indi-
viduals or business entities to willfully pay them
‘fees” [29]. Scams similar to tax scams are Coun-
cil Tax Scams, various Utility bill scams, Insurance
Scams, etc., where scammers impersonate officials
and trick the victim that they own money. These
scams fall under the umbrella of Phishing as they
often take place via SMS, phone calls, or emails.
Page 4 of 37
– Pension Scams are similar to Tax Scams. Scam-
mers aim to make money through fees, direct access
to pension savings or by receiving investments [30].
Overall, in this section we briefly described some well
known scams and online fraud activities. The com-
plexity and interconnected nature of scams and frauds
make it challenging to categorise them under a sin-
gle typology. Phishing scams, for instance, serve as a
broad umbrella that currently encompasses phishing
conducting using various methods like vishing (voice)
and smishing (sms), yet they can also be integral parts
of investment scams when scammers develop phish-
ing websites to gain the trust of victims. Similarly,
scams often involve tricking victims through decep-
tive tactics, ultimately leading to defrauding them of
their money or personal information. As such, different
scam types frequently overlap, blurring the lines be-
tween distinct categories and demonstrating the intri-
cate web of fraudulent activities that exist today. The
multifaceted nature of these scams highlights the diffi-
culty in creating a comprehensive classification system
that can effectively encompass all types of fraudulent
schemes.
1.2 AI techniques
This study investigates AI-based techniques for pro-
cessing unstructured text data to analyse fraud. Much
of this text data, such as news articles, research papers,
government reports, books, social media posts (such
as tweets and Facebook comments), communications
(such as emails, SMS messages, and chat logs), and
web content (such as reviews on online marketplaces,
travel and hospitality platforms, and comments on
video sharing platforms), is inherently unstructured.
Statista reported the global data created, captured,
copied, and consumed is 64.2 zettabytes in 2020, and it
is expected to exceed 180 zettabytes by 2025 [31]. With
each new digital platform or communication channel,
this data is increasing. Most of this created data is
unstructured text data that provides opportunities for
understanding human behaviour, habits, opinions and
experiences. It contains information about users’ expe-
riences, events, themes, opinions and sentiments that
can be important for deriving meaningful insight from
their experience related to fraudulent activities. Man-
ual traditional data analysis techniques like keyword
searches and coding of themes, are often limited and
unachievable to extract meaningful insights, making
advanced computer-driven automated techniques nec-
essary.
However, this data often demonstrates significant
challenges due to the diversity of natural (human) lan-
guage. This includes dealing with noise, which includes
irrelevant data, a wide array of linguistic variations
Papasavva et al.
Figure 1 Common pipeline for NLP-based models
– Feature engineering and selection: Feature en-
Figure 2 Confusion Matrix
of human language due to regional or cultural nu-
ances, use of slang or jargon, abbreviations, spelling
errors, typos and grammatical mistakes, which often
pose challenges for analysing text data efficiently. NLP
techniques were designed to effectively understand the
structure (syntax) and comprehend (semantic) spoken
and written human language the way humans do. Ad-
vancements in AI, including machine and deep learn-
ing, along with improvements in technology (such as
– AI technique/algorithm selection: This step in-
increased computing power) and software (such as the
availability of programming tools and libraries), have
significantly improved the ability to process and un-
derstand large volumes of unstructured text. These
tools have been widely used in many fields from sales
and marketing to spam detection. The process of col-
lecting, pre-processing, and training AI-based models
using text data often involves the pipeline shown in
Figure1:
– Problem statement: Using domain knowledge, a
suitable research question is formulated for AI to ad-
dress. This could be a classification problem (e.g. to
classify text into a number of categories), or explana-
tory analysis involving identifying patterns within a
text.
– Data preparation: AI-based models require the
collection of appropriate data to train models to
analyse the research question. Often, the acquired
data comes as unstructured data and requires clean-
ing and pre-processing. The data collection involves
the collection of appropriate data and building a
corpus. A corpus is a collection of large and struc-
tured sets of documents (e.g. emails, news articles,
social media posts or transcripts). The data clean-
ing and pre-processing involves removing unwanted
Page 5 of 37
or redundant data to reduce the noise in the data.
This may include removing duplicates or incomplete
entries, removing symbols, punctuation, numbers,
stop-words, converting acronyms to full words, and
handling non-English words and slang or a particu-
lar jargon. Further pre-processing may involve text
normalisation techniques like stemming or lemmati-
sation to reduce words to their root or base form to
improve the accuracy of text analysis.
gineering involves preparing data for machine learn-
ing models, and it involves the extraction and se-
lection of predictive features in supervised learning)
or find patterns and structures in unlabeled data
in unsupervised learning. This task requires using
domain knowledge to develop and select appropri-
ate features. Common text features often used are
n-grams (sequences of n consecutive words); Term
Frequency-Inverse Document Frequency (TF-IDF)
(a statistical method that weighs the importance of
a word/term to a document within a corpus) matrix;
sentiments and emotions present; lexical features
(e.g. presence of certain words, Keyword-in-Context
and lexical diversity); syntactic features (e.g. part-
of-speech tags); semantic features (e.g. entities men-
tioned, word-embedding); readability scores; struc-
tural features (e.g. length of the text, number of
paragraphs); and domain-specific features (e.g. pres-
ence of certain specialised terms).
volves selecting an appropriate AI algorithm for
building the AI-based model. The text tasks often
involve two main categories of AI-based models: su-
pervised and unsupervised machine learning. The
choice of the algorithm will depend on the learning,
and type of AI required. Supervised machine learn-
ing algorithms are often used for text classification
problems. The learning algorithm is provided with
input features (training data) and labels (discrete
outputs). The goal of the supervised machine learn-
ing algorithm is to map input features to discreet
outputs. Traditional supervised machine learning al-
gorithms include Logistic Regression, Naive Bayes,
decision trees, Random Forest (RF) (multiple de-
cision trees), Support Vector Machines (SVM) and
K-Nearest Neighbors (KNN). New techniques of su-
pervised machine learning include neural networks
and deep learning-based models. Unsupervised ma-
chine learning models, often used in exploratory
data analysis, involve working with unlabelled data
to discover hidden patterns and themes. Unsuper-
vised machine learning algorithms including cluster-
ing techniques using algorithms like K-means, hi-
erarchical clustering and DBSCAN (Density-Based
Papasavva et al.
Spatial Clustering); and topic modelling using algo-
rithms like Latent Dirichlet Allocation and Latent
Semantic Analysis (LSA).
– Model training: Often machine learning algo-
rithms will have parameters that need to be tuned
before learning begins, these are known as hyper-
parameters.The tuning process involves re-training
the model multiple times using different values for
these hyperparameters and selecting the best com-
bination of values based on model performance on a
metric of interest. In the case of supervised machine
learning, the hyperparameters might be tuned using
model performance on different “folds” of the data
in an approach known as cross-validation, with some
randomly-selected proportion of the data kept sepa-
rate from the training data, known as a test dataset,
for final model evaluation, giving the best available
indication of how the model is likely to perform on
new, unseen data. In the case of unsupervised mod-
elling, heuristics will be used to identify the optimal
number of clusters or topic modelling.
– Model evaluation: The performance of the model
needs to be evaluated. In the case of supervised mod-
elling, this will involve measuring the performance
of the model on the test data. The classic supervised
machine learning algorithms can be evaluated using
performance metrics such as confusion matrix (Fig-
ure 2), accuracy, precision, recall, F1-score, sensi-
tivity, specificity, Receiver Operating Characteristic
(ROC) curve, and the Area Under the Curve (AUC)
curve:
TP + TN
Accuracy =
TP + TN + FP + FN
TP
P recision =
TP + FP
TP
Recall =
TP + FN
2 ∗ P recision ∗ Recall
F 1 − score =
P recision + Recall
Where:
True Positives (TP): The model correctly predicts
positive class (e.g., those that were classified as
scam.)
True Negatives (TN): The model correctly predicts
negative class (e.g., those classified as not-scam).
False Positives (FP): The model incorrectly predicts
the positive class but it is not (e.g. not-scam is pre-
dicted as a scam).
Page 6 of 37
False Negatives (FN): The model incorrectly pre-
dicts the negative class but it is not (e.g. scam pre-
dicted as not scam).
Sensitivity and specificity are two other performance
measures. Sensitivity is the same as recall, or true
positive rate that captures the model’s ability to
correctly identify positive class (i.e. scam cases):
TP
Sensitivity(T P R) = Recall =
TP + FN
Specificity, also known as false positive rate (FPR)
measures the proportion of true negatives, and it
captures the model’s ability to correctly identify
negative class (i.e. not-scam cases):
TN
Specif icity =
FP + TN
The ROC curve is a graph illustrating the perfor-
mance of one or more binary classifiers. It plots the
sensitivity against the 1 - 1-specificity for various
thresholds. The AUC is calculated as the area un-
der the ROC curve.
– Deploy model: Once the models are working well
they can be deployed. When considering deployment
of the model, one must address questions regarding
why others should trust the model, how the model
arrived at its conclusions and usability, and carefully
assess the ethical implications of AI to ensure its
suitability for deployment and that it is not biased.
In cases of unsupervised machine learning models,
due to a lack of ground truth labels, the performance of
the model evaluation may involve subjective interpre-
tation to interpret the outputs (e.g. clusters or topics)
generated by the model.
1.3 Advanced NLP techniques
This section provides a brief introduction to advanced
NLP techniques, aiming to familiarise the reader with
these concepts as they are later referred to during the
SLR findings.
Word embeddings is a technique in NLP that encodes
words as vectors of real numbers to capture their simi-
larities. Words that are closer together in the vector
space are expected to have similar meanings or re-
lationships. Two of the widely used word embedding
techniques are Word2Vec and GloVe. Word2Vec uses
a simple neural network trained on large text datasets
iteratively to predict either context words or target
words. Word2Vec uses two approaches [32]: Continu-
ous Bag of Words (CBOW) predicts the target word
Papasavva et al.
based on its surrounding context words, whereas Skip-
gram predicts surrounding context words based on a
given target word. In the sentence ’The quick brown
fox jumps over the lazy dog’, if ’fox’ is used as the
target word, the CBOW model uses ’The’, ’quick’,
’brown’, ’jumps’, ’over’, ’the’, ’lazy’, and ’dog’ as con-
text and predicts the word ’fox’. In Skip-gram, ’fox’
is used to predict the surrounding words like ’The’,
’quick’, ’brown’, ’jumps’, ’over’, ’the’, ’lazy’, and ’dog’.
Global Vectors for Word Representation (GloVe [33]
learns the vector representation of words using global
word-word co-occurrence statistics obtained from the
training data to show the semantic relationships be-
tween words.
Word embeddings are often used by Large Language
Models to comprehend and respond to language.
Large Language Models(LLMs) [34] are advanced
NLP tools trained on billions of words from a wide vari-
ety of sources such as newspapers, books and websites,
which are designed to perform complex tasks such as
translations, summarisation and the performance of
human-like conversational abilities. Most LLMs are de-
veloped using a transformer-based architecture (trans-
formers) [35] and they have billions of parameters
used for training. Transformers are a type of deep-
learning neural network model, and they are more effi-
cient compared with predecessor state-of-the-art mod-
els which were based on Recurrent Neural Network
(RNN ). Transformers use a complicated architecture
that has encoder and decoder layers to understand se-
quences of words and provide an output [35]. While
the encoder layer processes input text data, extract-
ing hierarchical representations through mechanisms
like self-attention, the decoder layers generate output
sequences based on the input received from the en-
coder. Transformer-based LLMs include GPT models
including GPT3 (Generative Pre-trained Transformer
3 ), GPT-4 and GPT-4o by OpenAI. Both GPT-4
and GPT-4o are multimodal models that accept text
and image and produce text [36]. Other transform-
ers include Bidirectional Encoder Representations from
Transformers (BERT ), and its smaller and lighter
version of DistilBERT which is designed for applica-
tions where computational resources might be limited.
BERT and DistilBERT are also designed to under-
stand context in language processing and are suitable
for NLP tasks like text classification, answering ques-
tions and named entity recognition. The difference be-
tween models like BERT and GPT is the way their
architecture is designed and the objectives of learn-
ing. BERT uses only the encoder of the transformer
architecture and processes text bidirectionally by con-
sidering both preceding and following words. On the
other hand, GPT models use only a decoder of the
Page 7 of 37
Search String
("Online Fraud*" OR "scam*") AND (("machine learning")
OR "NLP" OR ("natural language processing") OR "classifier"
OR ("Large Language Models") OR "LLM"
OR ("Generative Artificial Intelligence") OR "GenAI" OR "GAI")
Table 1 Query for the literature selection in various academic
libraries.
transformer architecture and process text in an uni-
directional manner by processing text based only on
preceding words.
LLMs can assist in analysing large amounts of text
data and identify patterns automatically which can be
useful when dealing with fraud and other crime-related
data, they can be misused by criminals to generate
content for fraudulent activities. Generative AI refers
to AI techniques that can be used to generate new
text, audio, images and video that closely resembles
human-generated content. LLMs have been success-
fully applied in various areas of human communica-
tions including chatbots in customer support systems
by generating human-like text, content generation and
performing language translation. However, this same
technology can be exploited by criminals to create con-
tent for deception including fake websites, targeted
phishing emails and scam advertisements to deceive
potential victims.
1.4 Research approach
Although there are some literature reviews related to
the application of AI for fraud and crime, to our best
knowledge there are currently no SLRs that attempt to
understand the state-of-the-art towards detecting on-
line fraud in general. Overall, the literature reviews
that we found discuss the state-of-the art towards
detecting specific online fraud or scams, e.g., credit
card fraud alone. In this work, we aim to understand
whether there are universal AI methodologies that at-
tempt to detect online fraud, focusing on textual data.
2 Systematic Review
Systematic reviews differ from traditional literature re-
views as they aim to identify all relevant studies that
address a set of research questions using a methodol-
ogy that is structured and can be replicated [37].
2.1 Methods
The following methodology was employed to conduct
the SLR, and address the selection process for identi-
fying relevant publications and to avoid biases.
2.1.1 Protocol
For this SLR we follow the Preferred Reporting Items
for Systematic Reviews and Meta-Analysis extensions
for Scoping Reviews (PRISMA-ScR), as proposed by
Moher et al. [38].
Papasavva et al.
2.1.2 Eligibility
This review focuses on studies that use AI-based mod-
els, specifically NLP models, including Machine Learn-
ing (ML) and Deep Learning (DL) techniques using
text data. For example, studies that employ AI to de-
tect fraudulent bank accounts, fraudulent credit card
transactions, or fraudulent networks of users online,
are not to be included.
To be considered for inclusion in the SLR, we used the
following eligibility criteria:
– Peer-Reviewed Studies: We focused on peer-
reviewed studies published in English between 2019
and March 2024. Our search was restricted to aca-
demic records found in journals and conference
proceedings. We excluded theses, legal documents,
patents, and citations from these studies.
– Grey Literature:To capture the latest AI-based
models, we also included grey literature, specifically
pre-prints from ArXiv published in 2023 that have
not yet been incorporated into conference proceed-
ings or book chapters.
– Search Strategy: Table 1 shows the search strings
used to detect related literature in ACM Library,
ProQuest, Web of Science, IEEE Xplore, ArXiv, and
Google Scholar. The authors finalized this string af-
ter trying various searches in these libraries.
– Scope and Focus: Studies must address fraud per-
formed online and use AI-based methodologies for
analysing online fraudulent activities. The focus is
on studies using textual data, whether from scam-
mers, victims, or victim reports, to understand, de-
tect, or analyse online fraud activities. Our goal
is to understand what is the state-of-the-art on
models that are designed to prevent and detecting
scams (tricking the victim) before the victim gets
defrauded which will lead them to monetary losses.
Studies that analyse money transactions, credit card
transactions, and cryptocurrency transactions are
excluded, from this review, as they do not use text
data.
– AI-Methodology: Papers must include a method-
ology section or a similar section where the authors
discuss their AI implementation and fine-tuning
along with the accuracy of their model. Finally, we
consider studies published after 2019.
– Publication timeframe: Papers published be-
tween 2019 and March 2024 are included in this
review. This period was selected to manage the over-
whelmingly large volume of papers on online fraud
and to align with our available resources. Also, we
believe that studies conducted before 2019 are less
likely to reflect recent advancements in AI methods.
Given the rapid evolution of AI-based models, fo-
cusing on the 2019-March 2024 period ensures the
Page 8 of 37
inclusion of the most up-to-date and relevant re-
search.
2.1.3 Data extraction
Next, the authors agreed on the data that should be
extracted from the included studies. The task of ex-
tracting data was carried out by only one of the three
reviewers. This was deemed sufficient since the re-
viewer’s role involved extracting the required details
from the papers, and it was unnecessary for a second
reviewer to check accuracy. The only aspect of the data
extraction that the reviewer had to conceptualize was
the specific Fraud Type analyzed by the study under
question. For example, if a study is analyzing Phishing
URLs, then it is labelled as Phishing URLs.
Not all papers explicitly specified the type of fraud
they were analysing. Due to the diversity of scams,
there is no agreed way of labelling fraud types. As as
result, we used an umbrella term to categorise them.
For example, online scam campaigns, made by bot
users to advertise fraudulent phishing URLs include
fake users and phishing URLs fraud analysis, hence
we agreed to label papers of broad online scam cam-
paigns as social media scams.
To ease the representation of our findings, we do not
classify a paper with more than one fraud type. More
specifically, the reviewer had to resort to the main goal
of the paper towards annotating the kind of fraud it
analyses. For example, if a paper used phishing emails
to extract phishing URLs towards detecting phishing
URLs, then that paper would be labelled as Phishing
URLs, as that is the main goal of the study. The fi-
nal version of the data extracted from each record is
depicted in Table 2, along with relevant examples.
3 Results
3.1 Study selection and characteristics
The PRISMA-ScR flow diagram in Figure 3 sum-
marises the study selection process for the two aca-
demic searches. 2, 617 stuides were identified for eli-
gibility screening. The ACM Digital Library returned
389 documents, IEEE Xplore returned 712 documents,
Web of Science returned 253 documents, ProQuest re-
turned 783 documents, Google Scholar returned 399
documents, and ArXiv returned 47 documents. An ad-
ditional 15 papers were recommended by the experts
in the area. After removing duplicates, 2, 457 papers
remained for further review.
At this stage, 10% of these papers were selected
(N = 242) for Inter-Rater Reliability, to calculate the
multi-annotator agreement between the three annota-
tors of this review. The Fleiss Kappa score between
all three annotators was 0.83, indicating almost per-
fect agreement. The Cohen Kappa Agreement was also
Papasavva et al. Page 9 of 37

Label Description Example

Title The title of the manuscript Detecting Phishing URLs Using Deep
Learning
Author Author’s full name plus the abbreviation et al. if Smith, John or Smith et al.
applicable
Year The year the work got published (YYYY) 2020
Fraud Type The type of scam the authors try to detect, anal- Phishing URLs
yse, or discuss in their manuscript
Data Type The type of data the authors use for their analysis URLs
Data Quantity The amount of data used for the analysis 5000 phishing URLs and 5000 legitimate
URLs
Models Used All models the authors experimented with Random Forest, Linear Regression, LDA,
W2V
Best Model The model with the best accuracy Random Forest
Model Stats All performance metrics A=0.95, P=0.80, R=0.9, AUC=0.89
Table 2 Data items and characteristics extracted from the literature.

Reviewing the abstract of those papers resulted in

2, 107 papers being excluded from the study as they
IDENTIFICATION

did not fit the eligibility criteria discussed in Sec-

Records identified through
Additional records identified tion 2.1.2. This resulted in 350 full-papers passing to
through other sources eligibility screening, out of which 127 did not fit the
database search (N=2583)
(N=34)
eligibility criteria and was excluded. Overall, this pro-
cess resulted in 223 full-text papers being included for
qualitative analysis.
SCREENING

Records after duplicate

removal (N=2457) 3.2 Types of Online Fraud
Figure 4 shows the types of fraud analyzed in the full-
text papers that were included in the qualitative analy-
Record abstracts eligibility Records excluded sis. The reviewer of these studies manually coded each
ELIGIBILITY

check (N=2457)
Full paper records
eligibility check (N=350)
INCLUDED
(N=2107) paper with the scam type that the study is focusing on,
based on the title, abstract, and methodology of the
studies. The majority of studies that were included for
Full-text records excluded
(N=127) qualitative analysis focus on phishing detection, with
about a third (29%) of the studies focusing on detect-
ing phishing URLs online (N = 64). More specifically,

Studies Included in
Qualitative Synthesis
(N=223)
Figure 3 PRISMA Chart
calculated between each pair of annotators. The agree-
ment between the annotator A and the annotator B
was 0.65 (substantial agreement), between A and an-
notator C was 0.66, and between B and C was 0.52
(moderate agreement).[1] The three annotators com-
pared their annotation process and reviewed the eligi-
bility criteria and goals of this review. Following this
discussion, the lead annotator moved to perform the
rest of the annotation of the papers to be included in
this review.
[1] AnnotatorsA, B, and C will be replaced with the initials of
authors after the reviewing process.
these works tackle the problem of automatically de-
tecting whether a given URL is likely to be fraudu-
lent. A large number of papers were related to detect-
ing phishing emails (N = 29), followed by studies on
SMS phishing detection (N = 20). Other studies on
phishing include phone call transcripts towards under-
standing and detecting voice call phishing (N = 12)
and a small number of studies attempt to understand
phishing methods via victim reports (N = 4).
Moving on to other types of fraud, we found many
studies that attempted to detect fake reviews on vari-
ous platforms like Google Play Store, Apple App Store,
Yelp, and TripAdvisor (N = 23). Another widely stud-
ied scam focus was recruitment fraud (N = 20). We
also found a number of studies that employed AI tech-
niques to detect fake accounts on Facebook, Insta-
gram, and Twitter (N = 18).
A few studies used Generative AI (GenAI) to gain a
better understanding of some of the latest methods of
phishing and other fraud types. GenAI represents cases
where advanced LLMs are misused towards social en-
gineering attacks. GenAI models, have revolutionised
Papasavva et al. Page 10 of 37

64

e n g o) it d s) s g k ts d g s s) s)
29

erc atio din pt Ba rau ort am hin ttac un rau hin iew ail RL
om pul fun (cry amce FRep a Sc Visg A ccont F misRev (emg (U
23

E-C ani wd nt Sc an er di rin e A e S ke ng in

20

nt M Cro me nAI om Us Me ee Fak uitm Fa ishiPhish

Online Fraud Type
20
18
Ph 13
12
6
ule pto nt st Ge R g ( ial gin cr
hin Soc al En Re

4
3
3
3
i
oc
IS

2
nA

2
Ge

his

1
P

0 5 10 15 20 25 30
e
ud ry ule Inv

Percentage (%)
Fra C ud nt
Fra ule
ud
Fra

Figure 4 Percentage of scam types analyzed in the studies included for qualitative analysis

various industries as they are now able to promptly victims. We also identified 3 studies that try to un-
generate human-like text in response to input com- derstand fraudulent cryptocurrency investment scams
mands. 3 studies employed GenAI models to automat- and 2 studies that attempt to detect the likelihood of
ically interact with scammers to waste the scammers’ cryptocurrency manipulation. Finally, we identified 2
resources or time, and to collect information regarding studies that analysed fraudulent crowdfunding online
the methods with which the scammers try to defraud and 1 that studies fraudulent e-commerce websites.
users to disrupt their operation. This is defined as scam
baiting, the process of using generative AI models to 4 Summary of Findings
deceive and engage with scammers. Interestingly, this We now provide a summary of our findings, categorized
is a countermeasure against online fraud (GenAI Scam per fraud activity analyzed within the papers that are
Bait in the figure). included in our SLR for qualitative analysis.
Our search also returned many studies that discuss
the misuses of GenAI towards Social Engineering At- 4.1 Data Sources
tacks (N = 13), where scammers use these advanced First, we report the most popular data sources used
models to create legitimate-looking emails or SMS to and the datasets analyzed.
earn the trust of potential victims. While GenAI mod-
Phishing URLs. We start with understanding the
els offer numerous benefits, these studies show that
preferable data sources and methodologies employed
they pose significant risks when leveraged for malicious
for the analysis and detection of Phishing URLs, as it
purposes, particularly in the realm of social engineer-
is the most popular scam type category we detected in
ing. GenAI can generate coherent, contextually rele-
our SLR. In total, we analyze the data sources and de-
vant, and grammatically correct emails that mimic the
tection methodologies of the identified 63 papers that
style and tone of professional communication. This in-
attempt to tackle this issue. Table 3 summarizes the
creases the likelihood of victims perceiving fraudulent
data sources and methodologies used to detect Phish-
emails as legitimate and trusting the message [39].
ing URLs, as found in the literature.
Regarding other scams, we found a variety of stud-
First, we find that researchers used various websites
ies that try to detect Social Media Scams (N = 6).
that offer information on URLs for the analysis of ma-
These scams included a variety of fraudulent activities
licious and legitimate domains. This information may
including fake user accounts and online groups, adver-
be webpage rankings (how trusted the webpage is),
tisement of fraudulent apps or fake phishing website
phishing reports, and historical data. By far, the most
aimed at stealing personal information or money.
popular data source used was PhishTank,[2] a website
Similarly, 3 studies focus on Romance Fraud via
analysing profiles on social media and discussions with [2] https://phishtank.org/
Papasavva et al.
that allows users to report webpages that might be
malevolent or suspicious, with 25 studies using it as
already labeled malicious websites [40–65].
Another website that offers a list of phishing URLs is
OpenPhish[3] and it was used by 3 studies [41, 58, 59].
Two studies used URLhaus[4] , a project for sharing ma-
licious URLs, for the collection and analysis of phish-
ing URLs [46, 64]. We also find one work that used
SpamHaus[5] for the collection of IP and domain rep-
utation [66], and one that used URLscan[6] [67]. Inter-
estingly, [67] also collected user-reported domains from
ScammerInfo[7] , a forum where users post and discuss
various scams. Lastly, the webpage WhoIs[8] , a web-
page that offers historical data on webpages, was used
for feature collection from [51, 68].
The most used data source for collection of legitimate
webpages was Amazon Alexa, a webpage that offers
webpage rankings, with 10 studies using it to collect
legitimate annotated webpages [40, 52, 55, 56, 62–64,
69–71, 71]. Google’s Search Engine was used for one
study [72], while another used Majestic Million site[9]
for legitimate webpage collection [44], a site similar to
Alexa.
We also find that many records use previously pub-
licly available datasets for their analysis. More specif-
ically, 11 studies [65, 73, 74, 74–81] used already pub-
licly available datasets published on Kaggle. Similarly,
other 5 studies [45, 69, 82–84] used the UCI Phish-
ing Dataset.[10] Other studies used publicly available
datasets from other sources [65, 85–90].
The most recent studies (published in 2023) that
attempt to detect Phishing URLs automatically, at-
tempt to do so by collecting data from alternative
sources like social networks, and user-reported phish-
ing URLs [70, 70, 91, 91–93], while others used datasets
from Telecom and Security institutions [71, 75, 94]
Alas, we failed to detect the data source used for 9
studies, as they do not clearly report how or from
where they acquired the dataset they use for their
study [95–103].
Phishing Emails. We now discuss the data sources
used in the 29 works that tackle the Phishing Email
detection problem. The data extracted from the lit-
erature and presented in this section are depicted in
Table 4.
[3] https://openphish.com/
[4] https://urlhaus.abuse.ch/
[5] https://www.spamhaus.org/
[6] https://urlscan.io/
[7] https://scammer.info/
[8] https://who.is/
[9] https://majestic.com/reports/majestic-million
[10] https://archive.ics.uci.edu/dataset/327/phishing+
websites
Page 11 of 37
The overwhelming majority of the works focusing on
phishing email detection use datasets made available
by previous works [104–111], or used datasets pub-
lished on Kaggle [106, 111–119], or datasets published
at UCI ML repository [120–124].
Two works [125, 126] used emails received on the
author’s personal or professional email spam folder.
Other works that include datasets from alternative
sources is the one of Mehdi et al. [127], which used
various techniques to develop their dataset, like GPT2
generated synthetic phishing emails made available by
previous research [128], along with TextAttack[11] , a
Python framework for adversarial attacks, data aug-
mentation, and model training in NLP, Textfooler[12] ,
a Model for Natural Language Attack on Text Clas-
sification, and PWWS [129]. Another alternative data
source for phishing email detection was used by Janez
et al. [111] who used data from SPAM Archive[13] ,
a website that publishes spammy email repositories
at the end of every month and is constantly up-
dated. [130] used user reported e-mails. Lastly, the
data source used by three works was not clearly stated
within the manuscript [131–133].
Phishing SMS. Regarding Phishing SMS (smishing),
we included and analyzed 20 papers in this SLR. For
the detailed data, refer to Table 5.
Similarly to previous analyses, we find that the over-
whelming majority of works opted for using already
publicly available datasets for their analysis and train-
ing a model to detect fraudulent SMS automatically.
More specifically, a variety of subsets from a pub-
licly available dataset on Kaggle[14] was used by 14
studies [134–147]. Another study [148] used the Kag-
gle dataset, but incorporated Fake Base Station data
and made it available to researchers.[15] Similarly, this
work [134] used a subset of the Kaggle dataset in com-
bination with emails and YouTube comments for spam
content detection, while Lai et al. [149] used data pro-
vided by users.[16] Tang et al. [150] collected tweets
where users were reporting smishing for their analysis.
Two other works used data from the Korean Internet
and Security Agency [151] and 360 Mobile Safe [152].
Lastly, Timko et al. [153] proposed a platform where
users can freely post Phishing SMS for researchers to
use.[17]
[11] https://github.com/QData/TextAttack
[12] https://github.com/jind11/TextFooler
[13] http://untroubled.org/spam/
[14] https://www.kaggle.com/datasets/uciml/
sms-spam-collection-dataset
[15] https://github.com/Cypher-Z/FBS_SMS_Dataset
[16] https://www.datafountain.cn/competitions/508
[17] https://smishtank.com/
Papasavva et al. Page 12 of 37

Phishing Phone Calls. We identified 12 studies that used previously available Amazon product reviews,[24]
used phone call transcripts to understand Voice call- or collected Amazon reviews [182–189].
enabled phishing (vishing). Others collected Amazon Hotel and Holiday pack-
Derakhshan et al. [154] used the CallHome dataset ages reviews [190, 191], or TripAdvisor review data [174]
which includes 120 unscripted 30-minute telephone Lastly, [192] used YouTube transcripts to interpret
conversations between native speakers of English.[18] false review exaggeration. The source of the data used
Another work [155] used AI-generated deepfake voice by Ganesh et al. [193] was unclear.
recordings (Tacotron 2[19] , Deepvoice 3[20] , and Fast-
Fraudulent Recruitment. We detected 19 studies
Speech 2 [156]). For authentic voice recordings they
that focus on the detection of fraudulent job postings.
used the synplaflex dataset [157] which is a corpus of
The related data is listed in Table 7.
87 hours of audiobooks in French.
The overwhelming majority (N = 16), of papers
Various works used telecommunication operator
used the same publicly available dataset from Kag-
datasets, like [158] using fraudulent caller IDs and
gle,[25] , which holds about 18K job postings out of
phone transcripts [159] from telecommunication opera-
which 800 are fraudulent. Notably, this dataset in-
tors in China, [160] used data from the Public Security
cludes data from 2012 to 2014 [12, 194–208].
Bureau in Zhejiang Province, China, and [161] used
The other three studies developed custom crawlers
data from the Korean Financial Supervisory Service.
to collect data from various job posting sites in the
Kale et al. [162] developed their dataset via question-
UK (SEEK, Glassdoor, Indeed, and Gumtree) [209], in
naires and victim testimonies. Other works collected
Bangladesh (job.com.bd, bdjobstoday, deshijob) [210],
data from various social networks, like YouTube tran-
and in China (China–Boss, Zhipin, Liepin, and 51job) [211].
scripts [163], Facebook, online blogs and forums, public
datasets, as well as some that were developed based Fake Accounts Online. Various studies attempt to
on studies of scammers’ activities and behaviors [164]. tackle the automated detection of fake profiles online.
Others opted for using previously analyzed and pub- In Table 6 we depict the data extracted from the iden-
licly available data [165, 166], while the data used from tified records.
Zhong et al. [167] was unclear. We find that many works collect user profile data
from various online social networks for this analy-
User Reports. Four studies used user reports to un-
sis, like Twitter [212–218], Instagram [219–221], Face-
derstand phishing activities.
book [222–224], YouTube [225], and Sina Weibo [226].
First, [168] constructed a fraud complaint dataset
A different approach was used by a study [227] that
from the Internet finance service in China. Simi-
collected real names from various webpages, schools,
larly, [169] used court documents from Chinese online
and other sources to automatically detect fake names
judgement records, while [170] used incident record
online.
forms from victims and interviews in the Philippines.
Other works used previously published and openly
Lastly, [13] launch and introduce a website operated
accessible datasets that included user data from vari-
by the National Crime Prevention Council (NCPC) in
ous social networks [228, 229]
Singapore, where users can report and get informed on
the latest phishing activities. [21] GenAI-facilitated Social Engineering Attacks.
Under this category, we find many works that inves-
Fake Reviews. We move to the Fake/Fraudulent Re-
tigate how generative AI models can be misused to
view scam type. We include 23 studies in our analysis
defraud people.
and the data extracted from each record in our analysis
Various studies [39, 230, 231] develop and discuss an
is depicted in Table 8
initial taxonomy where they present how AI-generated
The overwhelming majority of papers used previ-
content can be misused by scammers. At the same
ously published YELP dataset[22] [171–178], or the
time, Carlini et al. [232] test various membership in-
OTT publicly available dataset on Kaggle[23] [175,
ference attacks on OpenAI’s GPT2 model and con-
178].
firm that the model is vulnerable to this kind of at-
Other studies used application reviews from Google
tack which poses risks of privacy. Similarly, Kumar
Play Store or Apple’s App Store [179–181]. Other’s
et al. [233] discuss the significant implications for cy-
[18] https://catalog.ldc.upenn.edu/LDC97S42
bersecurity, privacy, and ethical considerations that
[19] https://pytorch.org/hub/nvidia_deeplearningexamples_
should be considered when developing and using these
tacotron2/
[20] https://r9y9.github.io/deepvoice3_pytorch/ models.
[21] https://www.scamalert.sg/ [24] https://snap.stanford.edu/data/web-Amazon.html
[22] http://odds.cs.stonybrook.edu/yelpzip-dataset/ [25] https://www.kaggle.com/datasets/amruthjithrajvr/
[23] https://www.kaggle.com/discussions/general/281540 recruitment-scam
Papasavva et al.
Moving on to misuse cases of these models, [234] dis-
cuss how LLMs and GenAI can be used for fake pro-
fessional profile bios to trick users that the account
is legitimate. Similarly, [235] show that scammers can
use these models to create AI-generated images to be
posted on various social networks. Their case study
shows that these images tend to receive high volumes
of engagement on Facebook as many users do not
seem to recognize that the images are synthetic. Other
works show how these models can be jailbroken to pro-
duce code to immitate legitimate webpages (phishing
URLs) [236], malware code, phishing emails, phishing
SMS, SQL injection attacks, and many more poten-
tially dangerous material [237–239].
At the same time other works show that humans may
be able to accurately detect phishing AI-generated
content [240], while Roy et al. [241] discuss and ex-
periment with countermeasure to prevent malicious
prompts (jailbreaking) in GPT and they provide valu-
able insights into how the model can become more ro-
bust against this vulnerability.
Social Media Scams. Six studies examine various
scams and spammers facilitated through various Social
Networks. [242] used data from WeChat and Konect
repository to detect users that use WeChat to defraud
people. [243] and [244] used Telegram data to charac-
terize and detect Fake Telegram channels, while [245]
collected data from Telegram and compared it to Twit-
ter data to understand and detect fake users. Simi-
larly, [246] collect and analyzed Twitter and Institute
of Informatics and Telematics data to detect scam-
mers on Twitter. [247] collect Youtube data to detect
scammers that attempt to lure in victims via YouTube
comments on videos.
GenAI Scam Baiting. We identified three works
that used LLMs and Generative AI to automatically
engage with scammers online towards wasting their re-
sources and collect data on various fraud activities. For
this section we do not identify data sources used as re-
searchers use data received on their baiting accounts.
Romance Fraud. Moving on to Romance Fraud, [248]
attempt to automatically detect malicious accounts on
Momo, a dating website. Similarly, [249] collect data
from DatingMore and scamdigger.com to develop au-
tomated methods to understand fraudulent profiles
within dating social networks. Lastly, [250] analyzed
the sentiment of tweets with the hashtag #tinder-
swindler to provide an understanding on users sharing
their experiences regarding romance fraud.
Fraudulent Investment. Studies that attempted to
understand fraudulent investment scams did so em-
ploying various datasets and methodologies.
Page 13 of 37
First, [251] analyze investment scam advertisements
found in Bitcointalk.[26] Li et al. [252] collect YouTube
comments to automatically detect bots that advertise
fraudulent investment content. Lastly, [253] develop a
scam detection model based on emotional fluctuations
of user discussions collected from one of the most pop-
ular instant messaging app in Taiwan.
Crypto Manipulation. Market, and more specifi-
cally, cryptocurrency coin manipulation is when users
collectively attempt to alter investor interactions to-
wards manipulating the prize of a coin.
[254] discuss this process in detail via data acquired
from Twitter, Telegram, and Discord channels. Sim-
ilarly, [255] identify and analyze cryptocurrency ma-
nipulations from user activity collected from Telegram
and Twitter.
Fraudulent Crowdfunding. Both works that anal-
yse fraudulent crowdfunding [256, 257] collect the de-
scriptions and metadata from hundreds of Kickstarter
campaigns.[27]
Fraudulent E-commerce. [120] analyze the Terms
and Conditions of various websites that sell various
products towards understanding and detecting ob-
scured financial obligations in online agreement.
4.2 Methodologies employed
We now discuss the most popular AI and NLP method-
ologies employed per online frayd type.
Phishing URLs. We find that the records included
in our SLR attempt to automatically detect phish-
ing URLs using a variety of NLP and AI methodolo-
gies. These models included classic supervised machine
learning algorithms such as Naive Bayes (NB), Ran-
dom Forest (RF), Decision Tree (DT), Support Vector
Machines (SVM), XGBoost (Extreme Gradient Boost-
ing), KNN (k-Nearest Neighbors), as well as Artificial
Neural Networks (ANN) and more advanced in deep
learning such as Long Short-Term Memory (LSTM)
and Convolutional Neural Network (CNN). LSTMs
are a type of Recurrent Neural Network (RNN) de-
signed to capture long-dependencies in sequential data,
making them suitable for handling and predicting se-
quences of text. On the other hand, CNNs aim to iden-
tify key features in the text by capturing local pat-
terns. These models were developed for binary classi-
fication tasks, whether a URL is fraudulent or not.
NLP techniques related to text mining have been
used to extract features from URLs, which are then
used as features to train the AI-based classification
[26] https://bitcointalk.org/
[27] https://www.kickstarter.com/
Papasavva et al.
models. More specifically, counts of characters, spe-
cial characters, n-grams, and URL deconstruction: de-
tection of secure scheme or not, domain and top-
level domain, along with sub-directories. Various works
used hybrid, or combination of methodologies for their
detection including some more advanced techniques,
like [40] using Bi-LSTM (Bidirectional Long Short-
Term Memory that could process sequences of text
in both forward and backward directions) with VGG
(Visual Geometry Group - a type of CNN), [41] us-
ing W2V (Word2Vec) for feature extraction along with
CNN, GRU (Gated Recurrent Unit, - like LSTM but a
more simplified RNN), and Bi-LSTM, [92] using BERT
with RF, [91] developed a hybrid system that uses RF,
SVM, FNN, and XGBoost, [47] used Linear Regression
(LR) and DT, and [86] used LSTM and GRU.
Other stand-alone AI methodologies, like LightGBM
(Light Gradient Boosting Machine - an ensemble learn-
ing technique designed for handling large datasets with
large features), RF, NB, and ANN also seem to work
well on detecting phishing URLs, but by far the one
with the best performance seems to be RF.
Phishing Emails. The methodologies used for phish-
ing email recognition weigh more on the NLP analysis.
The majority of studies used various NLP method-
ologies for feature extraction, including, but not lim-
ited to topic analysis (LDA, BERT, BERTLARGE),
n-gram extraction (TF-IDF, BOW, Clustering, W2V),
and sentiment analysis (VADER, WordNet).
Then, the studies that also opted for automated de-
tection of phishing emails employed LLM analysis, RF,
NB, SVM, CatBoost, LSTM, RNN, and many more.
Phishing SMS. Similar to phishing email detection,
phishing SMS detection also relies on state-of-the-art
NLP methodologies, including LLMs, LDA, BERT and
W2V. The existing literature also used AI methodolo-
gies like LR, SVM, CNN, GNN, LSTM, NB, and KNN
for automated detection.
Phishing Phone Calls. Studies on Vishing used var-
ious AI-methods for automated detection. The major-
ity of studies used transcript text data for their analy-
sis, with the exception of [155] who analyzed deepfake
voice analysis. For that study, the authors found that
RNN had the best performance.
On text data, various NLP and AI methodologies
were used, including but not limited to SVM, NB,
LSTM, CNN, RF, BERT, W2V, LR, and KNN.
Phishing User Reports. We find that for the anal-
ysis of user reports of various phishing activities, the
use of BERT, SMO, J48, NB, RF, XGBoost, D2V,
Jaccard, NER, and TF-IDF were applied.
Page 14 of 37
Fake Reviews. The most popular NLP methodolo-
gies that apply on Fake Review detection lean heav-
ily on Sentiment Detection methodologies including
VADER and WordNet. Similar to previous fraud anal-
ysis, the AI methods applied include various Neural
Network Models like CNN.
Fraudulent Job Postings. The methodologies em-
ployed for the automated detection of Fraudulent Job
Postings include stand-alone machine learning algo-
ritunsm used for classification tasks including LR,
SVM, KNN, RF, XBoost, and ANN, and deep learning
models including Bi-LSTM.
Scam Baiting. One of the Scam Baiting studies,
[258] used OpenAI’s ChatGPT to reply to scam-
mer emails. Similarly, [259] experimented with Ope-
nAI’s ChatGPT and DistillBERT to categorize vari-
ous scam emails they received and provided a qualita-
tive analysis of how well the two models perform. The
other study, [260] set up a mailserver and used data
from Scambaiter mailserver, Enron Email Dataset, and
ScamLetters.Info while employing their own Distill-
BERT model to engage with scammers towards cat-
egorizing and analyzing the various emails.
Romance Fraud. Studies on Romance Fraud detec-
tion used various NLP methodologies, including sen-
timent detection using BOW, TF-IDF, and textBlob,
finding that RF works best. For the detection of ma-
licious accounts in dating applications, LSTM works
best, while another study [249] found that EML also
works well.
Fraudulent Investment. Three of the studies re-
lated to Fraudulent Investment used data from dif-
ferent sources (forum, messaging app, and YouTube).
The reported studies indicate that DT was the best
performed machine learning model for detecting emo-
tional flactuations on victims, while XGBoost worked
well on detecting malicious advertisement of fraudu-
lent investment websites.
Crypto Manipulation. The two identified studies
on Cryptocurrency Market Manipulation used pre-
existing methods for detecting fake users, along with
CorEx Topic Analysis [254]. The other study found
that SVM with SGD and TF-IDF works best for de-
tecting discussions that aim to manipulate the mar-
ket [255].
Fraudulent Crowdfunding. One of the papers on
fraudulent crowdfunding detection used NLP method-
ologies including Named Entity Recognition and other
NLP featurues detected in the descriptions of Kick-
starter campaigns and build a LR model that performs
Papasavva et al.
well [256]. The other study, [257] developed an LSTM-
LDA topic detection model that analyses the crowd-
funding campaign, along with the comments of people
towards estimating whether a campaign is a scam or
not.
Fraudulent E-Commerce. Finally, the only study
that we identified that used text data towards un-
derstanding Fraudulent E-Commerce activities, used
OpenAI’s GPT-4 model to automatically detect ob-
scure financial obligations in the Terms and Conditions
of the focused websites [120].
4.3 Key Findings
Given the findings of this SLR, we attempt to address
our Research Questions.
Phishing URLs. While established datasets have
played a crucial role in the development of phishing
URL detection models, there is a clear need to incorpo-
rate more dynamic and current data sources. Leverag-
ing user-reported phishing URLs from social networks,
along with data from Telecom and Security organiza-
tions, offers a more effective approach to combating
phishing attacks. These sources provide real-time, di-
verse, and relevant data that enhance the robustness
and accuracy of detection models, keeping pace with
the evolving nature of phishing threats. By combin-
ing the strengths of both traditional and modern data
sources, researchers can develop more comprehensive
and adaptive phishing detection systems, better pro-
tecting users from phishing URLs.
Regarding the methodologies used, we find that the
existing literature used state-of-the-art methodologies
for the analysis and detection of phishing URLs. No-
tably, RF seems to be the stand-alone model that
works best, while other hybrid methodologies also re-
port promising performance.
Phishing Emails. While publicly available datasets
have laid the groundwork for phishing email detection
research, the rapidly evolving nature of phishing at-
tacks requires the use of more dynamic and up-to-date
data sources. Leveraging user-reported emails, real-
time spam collections, and advanced synthetic data
generation techniques can significantly enhance the
robustness and accuracy of phishing detection mod-
els. By combining traditional datasets with innovative
data sources, researchers can develop more comprehen-
sive and adaptive phishing detection systems, better
equipped to detect phishing activities via email.
All of the works that opted for automated phishing
email detection report very good performance on their
detection models, with RF, BERT, LSTM, RNN, and
SVM being the most popular.
Page 15 of 37
Phishing SMS By this point we established that
many works in various scam type analysis rely on es-
tablished datasets. Alas, the rapidly evolving nature
of smishing requires a more dynamic and diversified
approach to data collection. By integrating publicly
available datasets with real-time, user-reported data
and specialized security sources, researchers can de-
velop more effective and resilient smishing detection
models. This approach will ensure that models remain
relevant and capable of addressing new and sophisti-
cated smishing threats as they arise.
Contrary to the phishing email detection, we find
that in the case of phishing SMS detection, which tends
to be much smaller text, SVM and various applications
of Neural Networks perform best.
Phishing Phone Calls. Regarding the data sources
used for automated vishing detection, most works
used text data via transcribing voice recordings. Other
works also used caller ID information from various
telecommunication operators. Some works collected
data from user reports and only one work attempted
to detect deepfake signals in voice recordings. The best
performing methodology used for automated vishing
detection is SVM.
Phishing User Reports Reviewing the four works
that studied phishing via user reports, we find that
researchers used data from various sources, includ-
ing court judgements, public data from forums, and
user reports from Financial Institutions. The method-
ologies applied vary as there is use of Named En-
tity Recognition, various NLP methodologies, and AI
methodologies.
Fake Reviews. Although many works used previously
available datasets to establish and compare their de-
tection models, we notice a clear trend where later
studies tend to collect data from platforms like Ama-
zon, Google Play, Apple App Store, and YouTube for
their analysis. This is extremely encouraging as the
data used for these detection models need to be con-
stantly updated. Hybrid models including LR, SVM,
CNN, and LSTM seem to perform best for the detec-
tion of fake reviews.
Fraudulent Job Postings. While the Kaggle dataset
has been pivotal in advancing research on fraudulent
job postings, the rapidly evolving nature of job scams
necessitates the use of more current and diverse data
sources. Custom data collection methods, which tap
into active job posting sites, represent a crucial step
forward in enhancing the effectiveness of detection
models. By leveraging a mix of established and new
data sources, researchers can develop more compre-
hensive systems to effectively combat fraudulent job
Papasavva et al.
postings. The models that perform best for this fraud-
ulent activity vary. We find that Bi-LSTM, KNN, RF,
DNN, and LightGBM perform well.
GenAI Social Engineering. Only two works here
use data collected from real use cases, namely Ayoobi
et al. [234] discuss fake profile AI-generated content on
professional social networks, while Diresta et al. [235]
present deep fakes posted on Facebook. Other works
discuss the potential sybersecurity, privacy, and ethical
issues with these models and how they can be misused
to automatically create fraudulent content.
5 Discussion
We now discuss our findings, detailing recognised lim-
itations and shortcomings detected in the reporting of
AI models related to the performance and data sources
used. We also provide recommendations for researchers
developing detection models for online fraud.
5.1 Data Sources
Overall, we analyzed the data sources and detection
methodologies of 222 papers that aim to address a
range of online fraud problems. Although our findings
reveal a preference for well-established datasets, espe-
cially in the automated detection of various phishing
and fake reviews detection, more recent studies (pub-
lished after 2023) seem to shift towards more dynamic
and recent sources.
We found that the overwhelming majority of the
Phishing domain detection studies relied on well-
known and extensively studied datasets from web-
sites like PhishTank, OpenPhish, and SpamHaus. In
contrast, others used datasets made available from
previous studies or publicly available repositories like
Kaggle, University of California Irvine (UCI) Machine
Learning Repository, and GitHub. This is also the case
for studies that focused on phishing email detection,
fake review detection, and fraudulent recruitment de-
tection. However, while these established datasets pro-
vide a valuable foundation for research, they come with
limitations.
Online fraud is dynamic, with new scam techniques
frequently emerging and older methods, like phishing
URLs and websites, continually evolving. Studies show
hat LLM empowered bots or scammers could be de-
ployed to generate and automate sophisticated and
targeted fraudulent and phishing content online, either
that being an email, a professional profile, or deceptive
Terms and Conditions for fake e-commerce websites.
Hence, relying on outdated datasets may limit the ef-
fectiveness of detection models when applied to cur-
rent or evolving threats. At the same time, the static
nature of previously used datasets does not capture
Page 16 of 37
the latest trends and variations of various online fraud
techniques and activities.
To address these limitations, recent studies have
started leveraging more dynamic and real-time data
sources. Regarding automated phishing detection, re-
cent studies used user-reported phishing URLs from
social networks, as well as data from Telecom and Se-
curity organizations. For instance, studies published in
2023 utilized data from sources like Twitter, Facebook,
and specialized security institutions [70, 70, 71, 75, 91,
91–94].
At the same time, recent works on automated
phishing email detection have utilised user-reported
emails, providing a real-time perspective on phishing
threats [130]. Genc and Jiang[125, 126] used emails
from their personal or professional spam folders, cap-
turing a more realistic and up-to-date snapshot of
phishing attacks. Mehdi et al.[127] took an inno-
vative approach by incorporating various techniques
to develop their dataset; GPT-2 generated synthetic
phishing emails, along with tools like TextAttack,
TextFooler, and PWWS. This approach not only pro-
vides a diverse dataset but also ensures that the model
is robust against sophisticated phishing techniques.
Janez et al. [111] used data from the SPAM Archive[28] ,
a continuously updated repository of spam emails.
Similarly, several studies on automated phishing
SMS detection have extended their datasets by com-
bining pre-existing publicly available datasets with ad-
ditional sources to improve the robustness and gen-
eralizability of their models, like incorporating addi-
tional data from Fake Base Stations [148], emails and
YouTube comments [134], user reported data for re-
search [149] or on Twitter [150]. Notably, Timko et
al. [153] proposed a platform, SmishTank, where users
can post phishing SMS messages, creating an ongo-
ing and up-to-date repository for researchers. We also
observed studies using data from specialized security
agencies [151] and mobile security services [152], which
offer a more targeted collection of smishing examples.
On Fake Review detection, one study [192] used
YouTube transcripts to interpret false review exagger-
ation, showcasing an innovative approach to identify-
ing fraudulent content in multimedia contexts. Others
have adopted similar techniques and developedtheir
own data collection methodologies to collect reviews
from sources like App stores, e-commerce websites, and
location and travel research platforms.
The overwhelming amount of studies focus on Fraud-
ulent Recruitment detection using the same dataset.
In contrast, three studies employed custom crawlers to
gather data from various job posting websites in differ-
ent countries, providing a more diverse and up-to-date
[28] http://untroubled.org/spam/
Papasavva et al.
perspective. Mahbub et al. [209] collected data from
job posting sites in the UK, Tabassum et al. [210] gath-
ered job postings from Bangladeshi sites, and Zhang
et al. [211] sourced data from Chinese job sites. The
use of up-to-date data collection from these sources of-
fer some advantages. For one, by scraping data from
active job posting sites, these studies can capture the
most recent and relevant data, reflecting current fraud-
ulent practices. Secondly, collecting data from multiple
sources across different regions provides a richer and
more varied dataset, which can enhance the robust-
ness and generalizability of detection models. Finally,
custom datasets often include a wider variety of job
postings, including niche or less common types of em-
ployment scams, which can be critical for developing
more comprehensive detection systems.
Overall, combining publicly available datasets with
recent data from other sources, such as social me-
dia, user reports, and specialized agencies, may signif-
icantly enhance the robustness and relevance of detec-
tion models. This approach could ensure that models
are exposed to a wider variety of fraud tactics and can
adapt to new threats more effectively.
There are various advantages of using such dynamic
data sources:
– Real-time Updates: Social networks and security or-
ganizations provide data that is continuously up-
dated. This ensures that the detection models are
trained on the most recent phishing URLs, making
them more robust against new and emerging threats.
– Diverse Data: User-reported data from social net-
works and institutions often include a wide variety
of phishing techniques and strategies. This diversity
enhances the model’s ability to generalize and detect
a broader range of phishing attacks.
– Early Detection: These sources can help in the early
detection of new phishing campaigns. Social net-
works, in particular, can act as early warning sys-
tems where new phishing URLs are often first re-
ported.
– Enhanced Relevance: Data from Telecom and Secu-
rity organizations are often more relevant to current
threats and can include targeted phishing attacks
that are not present in older datasets.
However, despite the advancements in data col-
lection methods, there are still gaps. For instance,
the data sources for various works on various online
fraud categories were not clearly stated within the
manuscripts. This lack of transparency can hinder re-
producibility and the ability to compare results across
different studies.
5.2 Methodologies
The methodologies employed across various studies on
phishing and fraudulent activities involve a wide range
Page 17 of 37
of AI that incorporate NLP, machine learning and
deep learning techniques. Most of these techniques in-
volve using extracting features using NLP techniques
and then applying supervised machine learning (i.e.
labelled data) and deep learning algorithms to build
binary classifiers.
For phishing URLs, Machine Learning and Deep
learning algorithms such as CNN, ANN, KNN, LSTM,
NB, RF, DT, SVM, and XGBoost were commonly
used, often with URL feature extraction through NLP
methods like character counts and n-grams. We also
found various works that applied hybrid approaches
where they combined multiple methodologies, demon-
strating strong detection capabilities. Similarly, phish-
ing email detection heavily relied on NLP for feature
extraction (e.g., LDA, BERT) followed by AI models
like RF, NB, and SVM for classification. Similar tech-
niques were applied for phishing SMS detection.
In vishing (phishing phone calls), transcript anal-
ysis primarily conducted using NLP and AI models,
with some studies examining deepfake voice detection.
User reports on phishing activities utilized models like
BERT and RF, while fake reviews often involved sen-
timent analysis with methods like VADER.
Fraudulent job postings detection involved both use
of machine learning and deeep learning models such as
LR and Bi-LSTM. Romance fraud detection used sen-
timent detection methods and machine learning mod-
els (e.g. RF) and deep learning models (e.g. LSTM).
For fraudulent investment and crypto manipulation,
classic machine learning models like DT, XGBoost,
and SVM were employed. Studies on fraudulent e-
commerce and crowdfunding leveraged advanced NLP
and machine learning techniques, including GPT-4 and
LR, respectively.
Although the research and detection methodologies
applied by the detected literature perform well, they
are not without theirlimitations. Overall, popular ma-
chine learning algorithms like RF and SVM often rely
heavily on the quality of features extracted, which can
be labor-intensive and may miss out on subtle indica-
tors when dealing with large set of data.
In addition, complex models based on deep learn-
ing techniques like Bi-LSTM with VGG or hybrid ap-
proaches can be computationally expensive and diffi-
cult to implement in real-time systems due to the large
amount of data processing resources required.
Notably, models developed that work well for one
kind of fraud, might not generalize well on different
fraud activities. For example, SMS messages are typ-
ically short, providing limited data for accurate fea-
ture extraction and classification. In addition, natural
language processing techniques used may struggle to
capture the features for extracting the understanding
Papasavva et al.
the context (semantics) or syntax of phishing content
or , leading to potential false positives/negatives (i.e.
incorrect misclassificaitons).
Models trained on specific languages or datasets may
not perform well on emails in other languages or dif-
ferent styles. Many of the challenges that may arise
regarding the trained AI models, are often result of
the poor quality of data. More specifically, effective
feature extraction is critical but can be difficult due to
the varied nature of how natural language is used. At
the same time, the textual content used in online fraud
activities - such as fraudulent email, sms, or job post-
ing - keeps evolving, making it challenging for static
models to remain effective over time.
Although collecting data from various websites, fo-
rums, social networks, and telecommunication oper-
ators for online fraud detection is invaluable, at the
same time, different platform hold data inconsistently,
or have unique features and user behaviors, complicat-
ing model generalization. Also, identifying fraudulent
activities in real-time is challenging due to the dynamic
nature of these scams and the lack of real-time obser-
vance in the various data sources.
Overall, while these methodologies offer powerful
tools for detecting phishing and fraudulent activities,
they have challenges related to feature extraction,
model complexity, generalizability, and data quality.
Finally, one of the major issues higlighted in many of
these studies is that these models are using supervised
machine learning models that require labeled data.
Creating labeled data is often challenging and time-
consuming. As a result, researchers have been using
existing labeled data, which may become less effective
as fraud is evolving over time (e.g. content of phishing
emails changing).
5.3 Recommendations
Datasets. The reliance on older, established datasets
for training AI-based models is a double-edged sword.
While they offer a solid foundation for model develop-
ment and are used for omparative analysis, their static
nature may limit their effectiveness in detecting evolv-
ing or emerging fraud trends, hence limiting their ef-
fectiveness for detecting new types of fraud. Therefore,
there is a strong case for incorporating more dynamic
and diverse data sources. Recent studies that use cus-
tom crawlers to gather data from a variety of online
platforms that focus on on a range of fraud types exem-
plify best practices in this area. These approaches pro-
vide real-time, relevant data that can significantly im-
prove the adaptability and accuracy of detection mod-
els. Going forward, it is recommended that researchers
consider combining established datasets with freshly
Page 18 of 37
collected data to create more robust and resilient AI
models.
Methodologies Used. Overall the majority of works
used stand-alone machine learning and deep learning
models for the detection of online fraud. In many cases,
NLP use for feature extraction was under-reported or
ignored. Work on online fraud activities that involve
textual data, should utilize more sophisticated NLP
techniques such as transformer-based models (e.g.,
BERT, GPT) for deeper semantic understanding and
better context handling. Although LLMs on their own
have their limitations such as generating hallucinated
or inconsistent results, they are extremely powerful for
context extraction.
Recent works demonstrate hybrid models, where
they combine different AI and NLP methodologies
to leverage their strengths, which is performing very
well. Most existing studies use supervised machine
learning models that require labeled data to detect
fraudulent activities. Due to challenges in obtaining
new labeled data, researchers often rely on existing
datasets which may not capture the content of new
techniques and tactics employed by scammers. To ad-
dress these challenges, further exploration of active
learning, semi-supervised learning and anomaly-based
models that rely on small amount of labelled data or
no labelled data is needed. For example, unsupervised
or semi-supervised anomaly detection techniques could
be studied to identify outliers and novel fraud pat-
terns that may not be present in the training data. Fi-
nally, we observed that almost non of these models had
real-time applications. There should be a shift in focus
where works attempt to optimize models for real-time
processing to ensure timely detection and mitigation
of fraudulent activities.
Model Performance Reporting. While going through
the detected literature for this SLR, we observed many
works that were only reporting a subset of performance
metrics of their models and frequently relying on ac-
curacy. However, using accuracy on its own especially
when the dataset is unbalanced can be misleading. In a
dataset where one class has more observations than an-
other (for example having fewer phishing emails com-
pared to not-phishing emails), a model could achieve
very high accuracy simply by predicting the majority
class (i.e. not-phishing emails) without doing a good
job on detecting the phishing emails.
Overall, it is essential that the researchers report a
more comprehensive range of performance metrics be-
yond accuracy alone. This should include precision, re-
call, F1-score, AUC score or ROC curve. These met-
rics provide a more complete and nuanced picture of a
model’s performance, especially in dealing with imbal-
anced datasets. In addition, there is a need to conduct
Papasavva et al.
and report detailed error analysis to identify common
failure cases and the reasons behind them. This can
help in understanding the limitations of the model
and areas for improvement. Finally, models need to
be cross-validated to ensure the robustness of the re-
ported performance metrics. For example, reporting
results from multiple folds of data samples can provide
a more reliable estimate of the model’s performance.
Reproducibility. Many of the studies failed to clearly
explain key and critical aspects of their model devel-
opment. These include the features engineered and se-
lected, methods used for extracting features, the data
used, size of the dataset, partition of the data into
training-test sets, and the hyper-parameters used for
tuning and training the models.
To this end, we recommend researchers provide ac-
cess to the code, datasets, and pre-trained models used
in their studies through platforms like GitHub, Git-
Lab, or institutional repositories,. This would help im-
prove the reproducibility of their work. Researchers
should also ensure that the methodology section is
sufficiently detailed to allow others to replicate their
study and model. This should include a clear descrip-
tion of pre-processing steps, feature engineering and
selection, model hyperparameters, the training-testing
data split and training protocols. Furthermore, the use
of standardized frameworks and libraries for model im-
plementation (e.g., TensorFlow, PyTorch) could im-
prove reproducibility. Providing comprehensive docu-
mentation and setup instructions will further help oth-
ers understand and reproduce the work easily.
Usability. Most of the studied papers are proof-of-
concept, and as a result, the usability of AI-based
models has not been addressed. The effective appli-
cation and use of AI-based approaches depend on suc-
cessful usability studies that enable users to develop
these models into toolkits and provide user feedback.
Usability goals are generally determined by efficiency,
effectiveness, engagement, error tolerance and ease of
use. It is thus imperative to ensure collaboration be-
tween the developers of AI based tools and practition-
ers. However, while the field of technology usability
assessment in front line policing is growing [261, 262],
there is a lack of usability studies considering the use
of AI in preventive policing, including cybercrimes like
online fraud.
Limitation/Bias discussion. The majority of stud-
ies do not discuss the limitations of their models or
data. Researchers should clearly identify and report
the limitations of the study, including any assump-
tions made, potential biases in the data, and limita-
tions of the methodologies used. The overuse of exist-
ing labeled datasets could impact the performance of
Page 19 of 37
the models, potentially leading to issues such as over-
fitting. However, issues like this are not discussed in
the majority of works in our SLR. Researchers should
be examining the distribution of different classes and
any potential sources of bias in the data used for
training and testing. Lastly, there is limited discussion
on the generalizability of the models across different
datasets, contexts, and evolving fraud patterns. Hence,
research studies should test their models on a variety
of experiments to evaluate generalization performance
of the models.
6 Conclusion
In this systematic literature review, we have examined
a wide range of studies focusing on the detection of var-
ious fraudulent activities using AI based models that
use techniques from Natural Language Processing in-
cluding machine learning and deep learning. Our goal
was to examine the current state-of-the-art AI-based
models used for development and training, investigate
the sources of data, and assess how these models are
evaluated for effectiveness in analysing and detecting
fraudulent activities. Due to limited resources, we have
restricted the data collection for the SLR to the years
2019-2024. The studies we identified highlight a focus
on a wide range of fraudulent activities, with particu-
lar attention given to phishing attacks. However, there
is growing interest towards the use of more advanced
AI like ChatGPT for creating deceptive content as well
as a tool that can be used for scam-baiting.
While significant attention have been given to build-
ing classification models that could be used to detect
fraudulent activities, particularly with hybrid and ad-
vanced NLP techniques and deep learning, including
LLMs , there remains a considerable room for improve-
ment. The key AI-model development areas that re-
quire attention include performance reporting, repro-
ducibility and transparency. Providing detailed perfor-
mance reporting will help compare and evaluate dif-
ferent models. Improving reproducibility requires en-
suring that the studies can be replicated and there
is sufficient content for others to achieve this. Increas-
ing transparency means providing clear information on
how the AI-based models work and make decisions.
This will help fraud practitioners to interpret and un-
derstand the models, and mitigate any biases in AI-
based models.
Furthermore, most existing models rely heavily on
labelled data and supervised machine-learning tech-
niques. Future studies should give some attention to
the application of unsupervised and semi-supervised
machine learning for detecting fraud. Similarly, the
data sources used for training these models are not
suitable for capturing dynamic nature of fraud. Future
Papasavva et al. Page 20 of 37

studies should investigate building AI-based models

that are able to capture emerging fraudulent patterns.
Addressing these gaps is crucial for creating more
robust, reliable, fair, and ethical AI-based systems to
detect fraud. By considering the recommended prac-
tices, the research community can better understand,
detect, and mitigate fraudulent activities and reduce
victimisation, ultimately contributing to a safer and
more secure digital environment.

Appendix
 Papasavva et al.
Performance
# URL Source Collection Method Models Used Best Model
P R A F1 AUC
[47](2019) phishtank.org* Custom crawler RF RF 0.98
[56](2019) phishtank.org and Alexa* UNK J48, RF, SMO, LR, MLP, RF 0.99 0.99
BN, SVM, AdaBoost
[58](2019) phishtank.org and Previous work [59] BNET, NB, J48, LR, RF, RF 0.98
openphish.com* MLP
[59](2019) Alexa, phishtank.org, UNK RF, SVM, NB, C4.5, RF 0.94
openphish.com, and JRip, PART
commoncrawl.org*
[60](2019) Alexa and phishtank.org* UNK SVM, KNN, DT, RF, Hybrid (GBoost, 0.97
GBDT, XGBoost, LGB, XGBoost, and
Hybrid (GBoost, XG- LightGBM)
Boost, and LightGBM)
[101](2019) UNK UNK C4.5, AdaBoost, KNN, Hybrid 0.98 0.98 0.98 0.99
RF, SMO, NB (XCS/UNK)
[61](2019) phishtank.org, Yandex Search Open dataset [263] DT, AdaBoost, Kstar, DT 0.96 0.97 0.97
API, and GitHub and custom crawler KNN, RF, SMO, NB
[71](2019) NetLab360 and Alexa* UNK LR, SVM, LSTM LSTM 0.98 0.98
[81](2020) Kaggle Open dataset [264] NB, KNN, SVM, RF, Hybrid (NN, RF, 0.95 0.98 0.97 0.96
Bagging, NN and Bagging)
[62](2020) Alexa and phishtank.org* Previous work [56] DNN, LSTM, CNN LSTM 0.99
[63](2020) Alexa, phishtank.org, Mende- Open dataset [265] NB, SVC, KNN SVC, KNN
ley, openphish.com, and and custom crawler
commoncrawl.org*
[64](2020) phishtank.org, URLHaus, Open datasets [266– SVM, RF RF 0.98 0.97 0.99
Majestic, Kaggle 268] and custom
crawler
[88](2020) Refer to open dataset GitHub open NB NB 1 0.95 0.97
dataset [269]
[77](2020) Kaggle* UNK open dataset MLP MLP 0.93
[42](2020) UNK* Previous works [270, RF, RNN, CNN CNN 0.94 0.91
271]
[84](2020) UCI ML Repository Open dataset [272] RF, DT, ANN, KNN RF 0.95
[53](2020) phishtank.org and Google UNK SVM, DT, LR, RF, XG- Hybrid (RF, XG- 0.98
Search* Boost, AdaBoost, ET Boost and ET)
[98](2020) phishtank.org* UNK KNN KNN 0.98
[100](2021) Kaggle and Canadian Institute UNK SVC, LR, KNN, NB, RF KNN 0.98 0.98 0.98 0.98
of Cybersecurity*
[67](2021) scammer.info and urlscan. Custom crawler LGBM LGBM 1 0.96 0.98 0.97 0.98
io*
[103](2021) UNK* Previous work [273] RF, DT, NB, LR RF 0.83
[96](2021) UNK* UNK LR, DT, NB LR, DT 1 1 1 1
[99](2021) Alexa and cryptoscamdb.org* Custom crawler NB, SVM, KNN, RF RF 0.98 0.95 0.97 0.96
[54](2021) Alexa, phishtank.org, and Custom crawler and XBoost, RF, SVM, KNN, ANN 0.96 0.97 0.97 0.97
Mendeley* open dataset [274] ANN, LR, DT, NBB

Page 21 of 37
[57](2021) phishtank.org, relbanks.com, Custom crawler ANFIS, NB, PART, J48, PART 0.98 0.99 0.99 0.99 0.98
and millersmiles.co.uk* JRip
[72](2022) Google Rankings and Custom crawler RF, DNN RF 1 0.99 0.99
whoscall.com
 Papasavva et al.
[40](2022) Alexa and phishtank.org* Custom crawler Bi-LSTM, Hybrid (Bi- Hybrid (Bi-LSTM 0.96 0.96 0.96
LSTM and CNN), Hybrid and VGG)
(Bi-LSTM and VGG)
[68](2022) who.is* Custom crawler BPNN, RBFN, SVM, NB 0.96
NB, DT, RF, KNN
[95](2022) UNK* UNK DT, RF RF 0.8
[69](2022) Alexa, UCI, phishtank.org UNK open dataset KNN, RF, DT, CBoost, CBoost 0.98 0.98
and Kaggle* LGBM, ABoost, VC
[45](2022) phishtank.org and UCI ML Custom Crawler and Hybrid (CNN) Hybrid (CNN) 0.97
Repository open dataset [272]
[87](2022) Canadian Institute for Cyber- Open dataset [275] LSTM LSTM 0.99 0.99 0.99
security
[73](2022) Kaggle* UNK RF, KNN, XGBoost XGBoost 0.96 0.96
[48](2022) pishitank.org* Custom crawler RF,DT RF 0.87
[86](2022) GitHub Open dataset [263] LR, NB, LSTM, GRU LSTM or GRU 0.95
[83](2022) UCI ML Repository Open datasets [272] AdaBoost, CART, SEM 0.98
and UNK GBoost, MLP, SVM, RF,
NB, SEM
[50](2022) phishtank.org and Alexa* Custom crawler DT, RF RF 0.87
[66](2022) Farsight SIE [276], spamhaus. UNK J48, RF RF
org, and surbl.org*
[52](2022) UNK* Previous work [273] Hybrid (CNN and (CNN and LSTM) 0.98 0.99 0.99 0.99 0.99
LSTM)
[85](2022) Mendeley and previous works Mendeley open Hybrid DLM, Stack Hybrid DLM 0.93 0.93
dataset [277] and pre- model, URLNet
vious works [278, 279]
[55](2022) phishtank.org and Alexa* UNK SVM, NB Hybrid (UNK) 0.99 0.99 0.99 0.99
[65](2022) Canadian Institute of Cyber- UNK SVM, RF RF 0.99 0.99 0.99
security, phishtank.org, and
Kaggle*
[93](2022) Twitch* Twitch API XGBoost, RF, NB RF 0.93 0.93 0.93
[41](2023) phishtank.org and Custom crawler CNN SharkEyes (CNN, 0.94 0.94 0.95 0.94
openphish.com W2V, GRU, Bi-
LSTM)
[92](2023) Tweets, spamhunter.io, and Twitter APi and cus- Hybrid (BERT and RF) Hybrid (BERT and 0.96 0.95 0.95
tweetfeed.live* tom crawler RF)
[70](2023) Twitter and Meta’s Twitter API and cus- UNK Pre-trained 0.96 0.97 0.97 0.96
crowdtangle.com* tom crawler model [60]
[74](2023) Kaggle* Data no longer avail- RF, LR, KNN RF 0.97 0.99 0.97
able
[91](2023) reddit.com/r/Scams/ and Custom crawler RF, XGBoost, SVM, BeyondPhish (RF 0.98
Paolo Alto Networks* FFNN and XGBoost and
SVM and FFNN)
[75](2023) Kaggle and Canadian Institute Open datasets [275, KNN, LR KNN 0.9
of Cybersecurity 280]
[76](2023) Kaggle* UNK open dataset DT, KNN, RF, SVM SVM 0.99 0.96 0.98 0.97

Page 22 of 37
[89](2023) Mendeley Open dataset [265] RF, J48, NB, KNN, LR RF 0.97 0.9 0.94
[78](2023) Kaggle Open dataset [281] DT, KNN, RF, GBoost UNK hybrid 0.98
[43](2023) Mendeley Open dataset [265] MLP, RF, RT, KNN, RF 0.98 0.98 0.98
SVM
 Papasavva et al.
[90](2023) UNK* Previous work [90] DT, KNN, SVM, NB, Hybrid (DT, SVM, 0.99 0.98 0.99 0.99
LR, XBoost, Aboost LR)
[44](2023) phishTank, Kaggle, and Majes- UNK BERT BERT 0.97 0.96 0.97 0.97
tic*
[46](2023) URLHaus and phishtank.org Custom crawler Custom rule based Custom rule based 0.93 0.93 0.93 0.93
[82](2023) UCI ML Reposiroty and Open dataset [265, LGBM, XGBoost, Ad- Hybrid 0.97 0.97 0.97 0.97
Mendeley 272, 274] aBoost, CatBoost, GB, (BMLSELM)
Hybrid (BMLSELM)
[79](2023) Kaggle* UNK LR, NB, DT, SVM, RF, KNN 0.99
KNN
[80](2023) Kaggle* UNK RF, XGBoost, LightG- RF 0.99 0.94 0.96 0.96
BBM
[97](2023) UNK* UNK RF, AdaBoost, XGBoost, RF 0.91
GBoost, KNN
[49](2023) phishtank.org* UNK LR, RF RF 0.93 0.79 0.96 0.85
[102](2023) PubMed Open dataset [282] RF, NB, LSTM, CNN UNK
[51](2023) phishtank.org and who.is* Custom crawler LSTM, CNN, Hybrid Hybrid (LSTM and 0.93
(LSTM and CNN) CNN)
[94](2024) Zhejiang Mobile Innovation UNK MBERT, XGBoost, MBERT 0.94 0.94 094
Research Institute* LBoost, LSTM, NB, LR,
RF, SVM, KNN
Table 3: Data sources and Detection Methods used for Phishing URL detection.
A single asterisk (*) indicates that the data is not publicly available. UNK
indicates Unclear details. Empty cells indicate missing values. P: Precision, R:
Recall, A: Accuracy, F1: F1 Score, AUC: Area under the Curve.

Performance
# URL Source Collection Method Models Used Best Model
P R A F1 AUC
[120](2019) UNK* UNK RF, KNN, ANN, SVM, RF 0.97
LR, NB
[130](2019) Spam emails received by a UNK GNB, DT, SVM, NN, RF RF, SVM 0.92 0.97 0.89
company*
[113](2019) cs.cmu.edu Open dataset [283] RF, KNN, SVM, DT RF 0.92 0.94 0.91
[114](2020) aclweb.org and previous work Open dataset [284] NB, Dt, RF, SVM SVM 0.98 0.97 0.98 0.97
and previous
work [285]
[133](2020) Spam emails received by a UNK Clustering Clustering 0.89
company*
[115](2021) Open datasets* UNK LR, SVM, RF, XGBoost XGBoost
[105](2021) cs.cmu.edu Open dataset [283] LSTM LSTM 0.97
[107](2021) UNK UNK Various topic modelling N/A N/A N/A N/A N/A N/A
[125](2021) Author’s spam folder* Custom LDA, Jaccard N/A N/A N/A N/A N/A N/A
[110](2021) UNK* UNK RNN, LSTM, CNN, UNK
BERT

Page 23 of 37
[111](2021) Questionnaires and Open dataset[29] NB, SVM, RF, LR NB 0.88 0.8
untroubled.org/spam
[132](2022) UNK* Custom crawler BOW (Rule based) BOW (Rule based) 0.99 %

[29] https://untroubled.org/spam/
 Papasavva et al.
[117](2022) Kaggle Open dataset [286] CBoost, LR, DT, RF, CBoost 0.97 0.96 0.97
GNB, SVM, KNN, XG-
Boost, LGBM, AdaBoost
[119](2022) Kaggle Open dataset [287] RF, NB, SVM, Ad- RF 0.99
aBoost, LR
[104](2022) Previous work* Previous work [288] RF, LR, SVM, MNB RF, LR, SVM, 0.95 0.95 0.95
[108](2022) GitHub, monkey.org, cs.cmu. Open datasets [283, K-Means, DBSCAN, and Agglomerative N/A N/A N/A N/A
edu 289, 290] Agglomerative Clustering Clustering
[131](2022) UNK UNK SVM, DT, LR, DNN, RF DT 1 1 1 1
[121](2022) UCI ML Reposiroty* UNK NB, SVM, KNN, J48, DT DT 0.98
[106](2023) Previous work, cs.cmu.edu, Previous NB, SVM UNK
spamassassin.apache.org, work [291, 292], open
and csmining.org[30] datasets [283, 293],
and UNK
[127](2023) Synthetic data Data generated ALBERT, RoBERTa, ALBERT 0.94 0.95
using various tech- BERT, DBERT, SQ,
niques [294] YOSO
[116](2023) Kaggle* UNK RNN, LSTM, CNN RNN 0.99 0.92 0.99 0.95
[122](2023) UCI ML Repository Open dataset[295] BERT BERT 0.95 0.93 0.98 0.94
[123](2023) UCI ML Repository* Previous work [123] SVM, RF, NB RF 0.95
[109](2023) Previous work* Previous work [296] KNN, NB, DT, RF, BERT 0.97 0.97 0.97 0.97
SVM, LR, XGBoost,
BERT
[124](2023) UCI ML Repository* UNK CatBoost CatBoost 0.97 0.96 0.96 0.97 0.99
[297](2023) Previous work, Kaggle, and Previous work [298– Various topic modelling N/A N/A N/A N/A N/A N/A
monkey.org 300] and open
datasets [290, 301]
[118](2023) Kaggle Open dataset [302] MLP, DT, LR, RF, KNN, MLP, SVM 0.99 0.99 0.99 0.99
SVM
[112](2024) Kaggle Open dataset [303] GPT-3.5, GPT-4, Cus- Custom (Cy- 0.97
tom (CyberGPT) berGPT)
[126](2024) UNK* UNK GPT-3.5, GPT-4 UNK
Table 4: Data sources and Detection Methods used for Phishing Email detec-
tion. A single asterisk (*) indicates that the data is not publicly available. UNK
indicates Unclear details. Empty cells indicate missing values. P: Precision, R:
Recall, A: Accuracy, F1: F1 Score, AUC: Area under the Curve.

Performance
# URL Source Collection Method Models Used Best Model
P R A F1 AUC
[136](2019) Previous work* Previous work [285] SVM, LR, NN, NB, RF RF 0.98
[148](2020) 360 Mobile Safe* UNK SVM, NB, LR, RF SVM 0.96 0.96 0.96
[152](2021) 360 Mobile Safe* UNK LR, DT, NB, SVM LR 0.93 0.93 0.93
[146](2021) UCI ML repository Open dataset [295] CNN, GRU, MLP, SVM, Hybrid (CNN, 0.99 0.96 0.98
XGBoost, Hybrid (CNN, GRU)

Page 24 of 37
GRU)
[149](2022) https://www.datafountain.cn/* Custom crawler CNN, BERT, RoBERTa, Hybrid (Se- 0.96 0.84 0.89
ChineseBERT morph/UNK)

[30] Data link broken

 Papasavva et al.
[150](2022) Twitter* Twitter API Custom/UNK Custom/UNK 0.98 0.97 0.97
[147](2022) UCI ML repository* UNK SVM, NB, LR, DT SVM 0.96 0.93 0.98 0.95
[134](2022) Kaggle and YouTube* UNK NB, DT, KNN NB 0.97
[138](2022) Kaggle Open dataset [304] LR, SVC, RF, NB, GBM RF 0.99 0.95 0.99 0.97
[153](2023) smishtank.com* Custom crawler Various NLP methods N/A
[145](2023) Kaggle and inaccessible website Open dataset [304] LinearDA, QDA, SVM, SVM 0.97
and custom crawler PCA, NB
[144](2023) Kaggle Open dataset [304] KNN, NB, RF, SVC, NBB 1 0.95
ETC, LR, XGBoost, Ad-
aBoost, GBDT, DT,
[143](2023) Previous work* Previous work [148] BERT-GCN BERT-GCN 0.92 0.96 0.93
[142](2023) UCI ML repository* UNK LSTM, CNN, RF, Hy- Hybrid (CNN, 0.99 0.99 0.99 0.99
brid (various), BERT, LSTM)
LSTM, XGBoost
[141](2023) Kaggle Open dataset [304] DNN, LSTM DNN 0.95
[140](2023) UCI ML repository Open dataset [295] LSTM, GRU, NB, BERT 0.99 0.99
BERT
[139](2023) Kaggle and Mendeley* UNK SNN, RNN, CNN CNN 0.99
[137](2023) UNK UNK BPA, RF, NB, DT BPA 0.97 0.98
[135](2023) UNK UNK NB, RF, ETC ETC 0.99 0.96
[151](2024) Korean Internet and Security UNK NB, RF, LGBM, CNN, CharCNN 0.99 0.99
Agency KoELECTRA
Table 5: Data sources and Detection Methods used for Phishing SMS detection.
A single asterisk (*) indicates that the data is not publicly available. UNK
indicates Unclear details. Empty cells indicate missing values. P: Precision, R:
Recall, A: Accuracy, F1: F1 Score, AUC: Area under the Curve.

Performance
# Data Collection Method Models Used Best Model
P R A F1 AUC
[216](2019) Twitter user profiles Open dataset [305] GCNN, MLP, BP GCNN 0.94
[222](2019) Facebook user profiles* UNK ID3, KNN, SVM ID3 0.98 0.98 0.97
[214](2019) Twitter User Profiles Open dataset [306] SVM, RF, MADAFE MADAFE
(NN and LR)
[223](2019) Twitter and Facebook (UNK)* UNK HDBSCAN HDBSCAN N/A N/A N/A N/A N/A
[212](2020) Tweets* Twitter API KNN, RF, NB, DT RF 0.95
[226](2021) Sina Weibo User profiles* Custom crawler CatBoost, RF CatBoost 0.87
[229](2021) Twitter user profiles Open dataset [307] NB, QDA, SVM, KNN, RF 0.87 0.88 0.94
RF, NN
[221](2021) Instagram user profiles* Instagram API RF, AdaBoost, MLP, RF 0.99 0.98 0.98 0.98 0.98
ANN, SGD
[224](2022) Facebook user profiles* Manual collection ANN, SVM, RF ANN 0.96
[219](2022) Instagram user profiles* UNK LR, KNN, SVM, RF, NB RF 0.99 0.97 0.94 0.98
[218](2022) Twitter user profiles Open dataset [308] GA, GP GP 0.76 0.78
[217](2022) Twitter user profiles Open dataset [309] SVM, CNB, BNB, MP, TweezBot (Un- 0.99 0.93 0.98 0.99

Page 25 of 37
DT, RF clear)
[225](2023) YouTube video and user meta- YouTube API Sentence-BERT, YouTuBERT 0.63 0.81 0.90 0.71
data and comments* RoBERTa, YouTuBERT (LLM and DB-
SCAN)
[227](2023) List of names* UNK NB, KNN, SVM, LR, RF NB 0.94 0.94 0.95 0.94
 Papasavva et al.
[213](2023) Twitter user profiles* UNK NB, DT, NN, Ensem- Ensemstack 0.98
stack
[220](2023) Instagram user profiles* UNK ANN ANN 0.74
[228](2023) Instagram user profiles* UNK LR, DT, RF RF 0.9
[215](2023) Twitter user profiles and tweets* Twitter API LR LR 0.93 0.93 0.93 0.93
Table 6: Data sources and Detection Methods used for Fake User detection.
A single asterisk (*) indicates that the data is not publicly available. UNK
indicates Unclear details. Empty cells indicate missing values. P: Precision, R:
Recall, A: Accuracy, F1: F1 Score, AUC: Area under the Curve.

Performance
# Job postings source Collection Method Models Used Best Model
P R A F1 AUC
[201](2019) Kaggle Open dataset [310] J48, LR, RF Ensemble 0.95 0.94
[197](2020) Kaggle Open dataset [310] GLoVE GLoVE 0.99
[202](2021) Kaggle Open dataset [310] ANN ANN 0.91 0.96 0.93
[204](2021) Kaggle Open dataset [310] LR LR 0.89 0.92 0.96
[208](2021) Kaggle Open dataset [310] LightGBM, LR, DT, LightGBM 0.93 0.94 0.95 0.93
XGBoost, AdaBoost
[210](2021) job.com.bd, bdjobstoday, and Custom crawler LR, AdaBoost, DT, LightGBM or 0.95
deshijob* RF, VC, LGBM, GB GBoost
[198](2021) Kaggle Open dataset [310] KNN, RF, DT, SVM, DNN 0.97
NB, DNN
[12](2022) Kaggle Open dataset [310] RF, LR, SVM, ETC, ETC 0.99
KNN, MP
[207](2022) Kaggle Open dataset [310] KNN, RF KNN 0.79 0.73 0.98 0.76
[209](2022) SEEK, Glassdoor, Indeed, and Custom crawler RF, JRip, NB, J48 RF 0.82 0.69 0.91
Gumtree job postings*
[194](2022) Kaggle Open dataset [310] GRU GRU 0.93
[195](2022) Kaggle Open dataset [310] LR, NB, MLP, KNN, RF 0.98 0.97 0.97 0.98
RF, DT, Adaboost,
GB, NLP
[196](2022) Kaggle Open dataset [310] RF, SVM, Bi-LSTM Bi-LSTM 0.98 0.98
[311](2023) Kaggle Open dataset [310] SVM, NB, RF, Bi- RF
LSTM, LR
[199](2023) Kaggle Open dataset [310] RF, XBoost, Light- XGBoost 0.95 0.9 0.96 0.92
GBM, CatBoost,
DT
[200](2023) Kaggle Open dataset [310] RF, SVM, NB, Ensem- RF 0.98
ble
[203](2023) Kaggle Open dataset [310] RF, NB, SVM, DT, RF 0.97
KNN
[205](2023) Kaggle Open dataset [310] LR, DT, RF, NB, GLM GLM 0.96 0.78 0.86 0.98
[206](2023) Kaggle Open dataset [310] AdaBoost, XGBoost, AdaBoost 0.99 0.97 0.98 0.98
RF, Voting

Page 26 of 37
[211](2023) Boss Zhipin, Liepin, 51job* Custom crawler NB, XGBoost, SVM, DRLM (DT and 0.98 0.94 0.92
LightGBM, DT, RF RF and Light-
GBM)
 Papasavva et al.
Table 7: Data sources and Detection Methods used for Fraudulent Recruitment
detection. The asterisk (*) indicates that the data is not publicly available.
Empty cells indicate missing values. P: Precision, R: Recall, A: Accuracy, F1:
F1-Score, AUC: Area Under the Curve.

Performance
# Data Collection Method Models Used Best Model
P R A F1 AUC
[185](2020) Amazon reviews* Custom crawler SVM, LR, RF, DT, 3LP 0.98 0.98 0.98 0.98
GNBSGD, KNN, 3LP,
4LP, XGBoost
[184](2020) Amazon reviews* Custom crawler SVM, KNN, NB, En- Ensemble 0.81 0.81 0.81 0.81
semble
[177](2021) Yelp and JD.com reviews Open dataset[312, 313] and GraphSAGE, Cluster- C-FATH (Un- 0.68- 0.95-
JD.com custom crawler GCN, HGT, C-FATH clear)* 0.87 0.97
(Custom)
[187](2021) Amazon reviews Open dataset [314] RF RF* 1 0.85 0.98
[171](2021) Yelp reviews* UNK CNN, SVM, LR, MLP CNN 0.93 0.92 0.92
[175](2022) Yelp reviews Open dataset [315, 316] WaveNet, LDA WaveNet, LDA N/A N/A N/A N/A N/A
[189](2022) Amazon reviews* UNK BERT, VADER, LR 0.81
LSTM, WordNet,
SGD, SVM, LR
[190](2022) Amazon hotel reviews* UNK KNN, NB, SVM SVM* 0.93
[180](2022) Smartphone App reviews* Web Scraping LDA, keyATM keyATM N/A N/A N/A N/A N/A
[181](2022) Smartphone App reviews Open dataset [317, 318] SVM, DT, NN, LR, SVM 0.94 0.84 0.89
GBT
[179](2022) Google Play reviews* Custom crawler DT, RF, MLP MLP 0.97
[182](2022) Amazon reviews* UNK CNN, SVM, NB CNN 1 1 1
[174](2022) Hotel reviews Open dataset [316, 319] SVM, KNN, LR SKL (SVM and 0.95
KNN and LR)
[173](2022) Yelp reviews Open dataset [312] Bi-LSTM Bi-LSTM 0.89
[188](2023) Amazon book reviews* UNK SVM, LR LR 0.86
[178](2023) Reviews Open dataset [316] and CNN, LSTM, KNN, CNN, LSTM 0.93
UNK NB, SVM, W2V
[183](2023) Amazon reviews* Custom crawler AdaBoost, RF, Lr, RF 0.99 0.99 0.99 0.99
SVM, KNN
[176](2023) Yelp reviews* UNK SVM, MLP, CNN, LR CNN 0.85 0.85 0.85 0.85
[191](2023) Yelp reviews* UNK NB, LR, SVM, DT SVM 0.96 0.98 0.97
[172](2023) Yelp reviews Open dataset [312] GPT-3, BERT, RF, GPT-3 0.73 0.64 0.68 0.75
XGBoost
[193](2023) Undefined reviews* UNK ANN, CNN, LR, SVM, LR 0.89
NB, KNN, RF, DT,
SGD
[186](2023) Hotel reviews* UNK SVM SVM

Page 27 of 37
[192](2024) Product reviews* YouTube API SVM,LR LR 0.74 0.99 0.85 0.95
Table 8: Data sources and Detection Methods used for Fake Review detection.
A single asterisk (*) indicates that the data is not publicly available. UNK
indicates Unclear details. Empty cells indicate missing values. P: Precision, R:
Recall, A: Accuracy, F1: F1-Score, AUC: Area Under the Curve.
Papasavva et al. Page 28 of 37

Acknowledgements 7. The Law Society: Legal glossary.

The authors would like to thank the reviewers for their feedback and https://www.lawsociety.org.uk/public/for-public-
reviews. visitors/resources/glossary. Accessed: 2024-07-09
8. National Fraud Authority: Fraud typologies and victims of fraud.
Funding https://assets.publishing.service.gov.uk/media/5a7ad8c2ed915d670dd7efad/fraud-
This work was funded by the Dawes Trust. typologies.pdf. Accessed: 2024-07-09
Abbreviations 9. Levi, M.: Organized fraud and organizing frauds: Unpacking research
PRISMA-ScR: Preferred Reporting Items for Systematic reviews and on networks and organization. Criminology & Criminal Justice 8(4),
Meta-Analyses extension for Scoping Reviews; NLP: Natural Language 389–419 (2008). doi:10.1177/1748895808096470.
Processing; AI: Artificial Intelligence; ML: Machine Learning; SLR: https://doi.org/10.1177/1748895808096470
Systematic Literature Review. 10. Michael Skidmore: Perspectives on Online Fraud. Accessed:
2024-07-03. https://www.police-foundation.org.uk/
Availability of data and materials wp-content/uploads/2010/10/perspectives_online_fraud.pdf
The data extracted from the academic papers included in this review will Accessed 2024-07-03
be released with the full accepted paper. 11. Salloum, S., Gaber, T., Vadera, S., Shaalan, K.: A systematic
literature review on phishing email detection using natural language
Ethics approval and consent to participate processing techniques. IEEE Access 10, 65703–65727 (2022).
Not applicable. doi:10.1109/ACCESS.2022.3183083
12. Amaar, A., Aljedaani, W., Rustam, F., Ullah, S., Rupapara, V., Ludi,
Competing interests
S.: Detection of fake job postings by utilizing machine learning and
The authors declare that they have no competing interests.
natural language processing approaches. Neural Processing Letters,
Consent for publication 1–29 (2022). RECRUITEMENT FRAUD
Not applicable. 13. Lwin Tun, Z., Birks, D.: Supporting crime script analyses of scams
with natural language processing. Crime Science 12(1), 1 (2023).
Authors’ contributions PHISHING USER REPORTS
AP and NT drafted the final manuscript. AP conducted the updated 14. Royal Mail: Typical online scams to look out for.
academic literature review, designed and conducted the grey literature https://www.royalmail.com/help/scam-examples. Accessed:
review, extracted data from the literature, and analysed and interpreted the 2024-07-09
results of all aspects of the scoping review. SJ and ED provided substantial 15. Rodger, J.: Barclays issues warning to anyone with £14,000 in their
feedback on the review process and editing of the document. EM bank account. https://shorturl.at/dGjpU. Accessed: 2024-07-09
contributed to the coding process. AM and SL contributed to the editing 16. HM Revenue & Customs: Examples of HMRC related phishing
process. emails, suspicious phone calls and texts.
https://www.gov.uk/government/publications/phishing-and-bogus-
Authors’ information
1 emails-hm-revenue-and-customs-examples/phishing-emails-and-
Security and Crime Science, University College London, London, United
bogus-contact-hm-revenue-and-customs-examples. Accessed:
Kingdom.
2 2024-07-09
Humanities and Social Sciences, Anglia Ruskin University, London, United
17. Paul, H., Nikolaev, A.: Fake review detection on online e-commerce
Kingdom.
3 platforms: a systematic literature review. Data Mining and Knowledge
Advanced Research Computing Centre, University College London,
Discovery 35(5), 1830–1881 (2021)
London, United Kingdom.
18. Mehboob, A., Malik, M.: Smart fraud detection framework for job
Author details recruitments. Arabian Journal for Science and Engineering 46(4),
1 3067–3078 (2021)
Security and Crime Science, University College London, London, United
Kingdom. 2 Humanities and Social Sciences, Anglia Ruskin University, 19. Coluccia, A., Pozza, A., Ferretti, F., Carabellese, F., Masti, A.,
London, United Kingdom. 3 Advanced Research Computing Centre, Gualtieri, G.: Online romance scams: relational dynamics and
University College London, London, United Kingdom. psychological characteristics of the victims and scammers. a scoping
review. Clinical practice and epidemiology in mental health: CP &
References EMH 16, 24 (2020)
1. UK Finance: Over £1.2 billion stolen through fraud in 2022: Nearly 80 20. Cross, C.: Romance baiting, cryptorom and ‘pig butchering’: an
percent of attacks were online. Accessed: 2024-08-01 (2023). https: evolutionary step in romance fraud. Current Issues in Criminal
//www.ukfinance.org.uk/news-and-insight/press-release/ Justice, 1–13 (2023)
over-ps12-billion-stolen-through-fraud-in-2022-nearly-80-cent-app 21. Ordekian, M., Papasavva, A., Mariconti, E., Vasek, M.: A sinister
fattening: Dissecting the tales of pig butchering and other
2. UK Parliament: Social and Psychological Implications of Fraud. cryptocurrency scams. In: 2024 APWG Symposium on Electronic
Accessed: 2024-07-03. https://researchbriefings.files. Crime Research (eCrime) (2024). IEEE
parliament.uk/documents/POST-PN-0720/POST-PN-0720.pdf 22. Vasek, M., Moore, T.: There’s no free lunch, even using bitcoin:
Accessed 2024-07-03 Tracking the popularity and profits of virtual currency scams. In:
3. Office for National Statistics: Crime in England and Wales: Year Financial Cryptography and Data Security: 19th International
ending March 2023. Accessed: 2024-08-01 (2023). https://www. Conference, FC 2015, San Juan, Puerto Rico, January 26-30, 2015,
ons.gov.uk/peoplepopulationandcommunity/crimeandjustice/ Revised Selected Papers 19, pp. 44–61 (2015). Springer
bulletins/crimeinenglandandwales/yearendingmarch2023 23. Agarwal, S., Atondo Siu, J., Ordekian, M., Hutchings, A., Mariconti,
4. Ofcom: Adults’ Media Use and Attitudes Report 2023. E., Vasek, M.: Defi deception–uncovering the prevalence of rugpulls
https://www.ofcom.org.uk/siteassets/resources/documents/ in cryptocurrency projects (2023)
research-and-data/media-literacy-research/adults/ 24. Vasek, M., Moore, T.: Analyzing the bitcoin ponzi scheme ecosystem.
adults-media-use-and-attitudes-2023/ In: Financial Cryptography and Data Security: FC 2018 International
adults-media-use-and-attitudes-report-2023.pdf. Accessed: Workshops, BITCOIN, VOTING, and WTSC, Nieuwpoort, Curaçao,
2024-07-01 (2023) March 2, 2018, Revised Selected Papers 22, pp. 101–112 (2019).
5. Statista: E-commerce Fraud - Statistics & Facts. Springer
https://www.statista.com/topics/9240/e-commerce-fraud/. 25. Hamrick, J., Rouhi, F., Mukherjee, A., Feder, A., Gandal, N., Moore,
Accessed: 2024-07-03 (2024) T., Vasek, M.: An examination of the cryptocurrency
6. UK Legislation: Fraud Act 2006. pump-and-dump ecosystem. Information Processing & Management
https://www.legislation.gov.uk/ukpga/2006/35/2023-02-07. 58(4), 102506 (2021)
Accessed: 2024-07-09 (2006)
Papasavva et al.
26. Cumming, D., Hornuf, L., Karami, M., Schweizer, D.: Disentangling
crowdfunding from fraudfunding. Journal of Business Ethics, 1–26
(2021)
27. FBI: Charity and Disaster Fraud.
https://www.fbi.gov/how-we-can-help-you/scams-and-
safety/common-scams-and-crimes/charity-and-disaster-fraud.
Accessed: 2024-07-09
28. Hong, G., Yang, Z., Yang, S., Liaoy, X., Du, X., Yang, M., Duan, H.:
Analyzing ground-truth data of mobile gambling scams. In: 2022
IEEE Symposium on Security and Privacy (SP), pp. 2176–2193
(2022). IEEE
29. Brody, R.G., Haynes, C.M., Mejia, H.: Income tax return scams and
identity theft. Accounting and Finance Research 3(1), 90–95 (2014)
30. Mirza-Davies, J.: Pension scams. House of Commons (2023)
31. Taylor, P.: Amount of data created, consumed, and stored 2010-2020,
with forecasts to 2025. https://www.statista.com/statistics/
871513/worldwide-data-created/. Accessed: 2024-07-01 (2023)
32. Rong, X.: word2vec parameter learning explained. CoRR
abs/1411.2738 (2014). 1411.2738
33. Stanford NLP Group: GloVe: Global Vectors for Word Representation.
https://nlp.stanford.edu/projects/glove/. Accessed:
2024-07-03
34. Zhao, W.X., Zhou, K., Li, J., Tang, T., Wang, X., Hou, Y., Min, Y.,
Zhang, B., Zhang, J., Dong, Z., Du, Y., Yang, C., Chen, Y., Chen,
Z., Jiang, J., Ren, R., Li, Y., Tang, X., Liu, Z., Liu, P., Nie, J.-Y.,
Wen, J.-R.: A Survey of Large Language Models (2023). 2303.18223.
https://arxiv.org/abs/2303.18223
35. Vaswani, A., Shazeer, N., Parmar, N., Uszkoreit, J., Jones, L.,
Gomez, A.N., Kaiser, L., Polosukhin, I.: Attention is all you need.
CoRR abs/1706.03762 (2017). 1706.03762
36. OpenAI: ChatGPT. Accessed: 2024-07-03. https://chatgpt.com/
37. Nightingale, A.: A guide to systematic literature reviews. Surgery
(Oxford) 27(9), 381–384 (2009)
38. Moher, D., Liberati, A., Tetzlaff, J., Altman, D.G., Group, P., et al.:
Preferred reporting items for systematic reviews and meta-analyses:
the prisma statement. International journal of surgery 8(5), 336–341
(2010)
39. Schmitt, M., Flechais, I.: Digital deception: Generative artificial
intelligence in social engineering and phishing. arXiv preprint
arXiv:2310.13715 (2023). GENAI SE ATTACK
40. Li, J., Wang, D., Zhao, C., Tang, J.: Mui-vb: Malicious url
identification model combining vgg and bi-lstm. In: Proceedings of
the 2022 3rd International Conference on Control, Robotics and
Intelligent System, pp. 141–148 (2022). PHISHING URLs
41. Vo Quang, M., Bui Tan Hai, D., Tran Kim Ngoc, N., Ngo
Duc Hoang, S., Nguyen Huu, Q., Phan The, D., Pham, V.-H.:
Shark-eyes: A multimodal fusion framework for multi-view-based
phishing website detection. In: Proceedings of the 12th International
Symposium on Information and Communication Technology, pp.
793–800 (2023). PHISHING URLs
42. Al-Milli, N., Hammo, B.H.: A convolutional neural network model to
detect illegitimate urls. In: 2020 11th International Conference on
Information and Communication Systems (ICICS), pp. 220–225
(2020). IEEE. PHISHING URLs
43. Aslam, S., Nassif, A.B.: Phish-identifier: Machine learning based
classification of phishing attacks. In: 2023 Advances in Science and
Engineering Technology International Conferences (ASET), pp. 1–6
(2023). IEEE. PHISHING URLs
44. Jishnu, K., Arthi, B.: Enhanced phishing url detection using leveraging
bert with additional url feature extraction. In: 2023 5th International
Conference on Inventive Research in Computing Applications
(ICIRCA), pp. 1745–1750 (2023). IEEE. PHISHING URLs
45. Jaber, A.N., Fritsch, L., Haugerud, H.: Improving phishing detection
with the grey wolf optimizer. In: 2022 International Conference on
Electronics, Information, and Communication (ICEIC), pp. 1–6
(2022). IEEE. PHISHING URLs
46. Rafsanjani, A.S., Kamaruddin, N.B., Rusli, H.M., Dabbagh, M.:
Qsecr: Secure qr code scanner according to a novel malicious url
detection framework. IEEE Access (2023). PHISHING URLs
47. Alswailem, A., Alabdullah, B., Alrumayh, N., Alsedrani, A.: Detecting
phishing websites using machine learning. In: 2019 2nd International
Page 29 of 37
Conference on Computer Applications & Information Security
(ICCAIS), pp. 1–6 (2019). IEEE. PHISHING URLs
48. Mandadi, A., Boppana, S., Ravella, V., Kavitha, R.: Phishing website
detection using machine learning. In: 2022 IEEE 7th International
Conference for Convergence in Technology (I2CT), pp. 1–4 (2022).
IEEE. PHISHING URLs
49. Jha, A.K., Muthalagu, R., Pawar, P.M.: Intelligent phishing website
detection using machine learning. Multimedia Tools and Applications
82(19), 29431–29456 (2023). PHISHING URLs
50. Marimuthu, S.K., Kalampatti Gopalasamy, S., Ben-Othman, J.:
Intelligent antiphishing framework to detect phishing scam: A hybrid
classification approach. Software: Practice and Experience 52(2),
459–481 (2022). PHISHING URLs
51. Adebowale, M.A., Lwin, K.T., Hossain, M.A.: Intelligent phishing
detection scheme using deep learning algorithms. Journal of
Enterprise Information Management 36(3), 747–766 (2023).
PHISHING URLs
52. Shaiba, H., Alzahrani, J.S., Eltahir, M.M., Marzouk, R., Mohsen, H.,
Hamza, M.A.: Hunger search optimization with hybrid deep learning
enabled phishing detection and classification model. Computers
Materials & Continua 73(3), 6425–6441 (2022). PHISHING URLs
53. Rao, R.S., Pais, A.R.: Two level filtering mechanism to detect
phishing sites using lightweight visual similarity approach. Journal of
Ambient Intelligence and Humanized Computing 11(9), 3853–3872
(2020). PHISHING URLs
54. Salloum, S., Gaber, T., Vadera, S., Shaalan, K.: Phishing website
detection from urls using classical machine learning ann model. In:
International Conference on Security and Privacy in Communication
Systems, pp. 509–523 (2021). Springer. PHISHING URLs
55. Orunsolu, A.A., Sodiya, A.S., Akinwale, A.: A predictive model for
phishing detection. Journal of King Saud University-Computer and
Information Sciences 34(2), 232–247 (2022). PHISHING URLs
56. Rao, R.S., Pais, A.R.: Detection of phishing websites using an
efficient feature-based machine learning framework. Neural
Computing and applications 31, 3851–3873 (2019). PHISHING URLs
57. Barraclough, P.A., Fehringer, G., Woodward, J.: Intelligent
cyber-phishing detection for online. computers & security 104,
102123 (2021). PHISHING URLs
58. Almseidin, M., Zuraiq, A.A., Al-Kasassbeh, M., Alnidami, N.:
Phishing detection based on machine learning and feature selection
methods (2019). PHISHING URLs
59. Chiew, K.L., Tan, C.L., Wong, K., Yong, K.S., Tiong, W.K.: A new
hybrid ensemble feature selection framework for machine
learning-based phishing detection system. Information Sciences 484,
153–166 (2019). PHISHING URLs
60. Li, Y., Yang, Z., Chen, X., Yuan, H., Liu, W.: A stacking model using
url and html features for phishing webpage detection. Future
Generation Computer Systems 94, 27–39 (2019). PHISHING URLs
61. Sahingoz, O.K., Buber, E., Demir, O., Diri, B.: Machine learning
based phishing detection from urls. Expert Systems with Applications
117, 345–357 (2019). PHISHING URLs
62. Somesha, M., Pais, A.R., Rao, R.S., Rathour, V.S.: Efficient deep
learning techniques for the detection of phishing websites. Sādhanā
45, 1–18 (2020). PHISHING URLs
63. Tharani, J.S., Arachchilage, N.A.: Understanding phishers’ strategies
of mimicking uniform resource locators to leverage phishing attacks:
A machine learning approach. Security and Privacy 3(5), 120 (2020).
PHISHING URLs
64. Do Xuan, C., Nguyen, H.D., Tisenko, V.N.: Malicious url detection
based on machine learning. International Journal of Advanced
Computer Science and Applications 11(1) (2020). PHISHING URLs
65. Pradeepa, G., Devi, R.: Lightweight approach for malicious domain
detection using machine learning. Scientific and Technical Bulletin of
Information Technologies, Mechanics and Optics 22(2), 262–268
(2022). PHISHING URLs
66. Fernandez, S., Korczyński, M., Duda, A.: Early detection of spam
domains with passive dns and spf. In: International Conference on
Passive and Active Network Measurement, pp. 30–49 (2022).
Springer. PHISHING URLs
67. Chen, Y.-C., Chen, J.-L., Ma, Y.-W.: Ai@ tss-intelligent technical
support scam detection system. Journal of Information Security and
Papasavva et al.
Applications 61, 102921 (2021). PHISHING URLs
68. Shalke, C.J., Achary, R.: Social engineering attack and scam
detection using advanced natural langugae processing algorithm. In:
2022 6th International Conference on Trends in Electronics and
Informatics (ICOEI), pp. 1749–1754 (2022). IEEE. PHISHING URLs
69. Puri, N., Saggar, P., Kaur, A., Garg, P.: Application of ensemble
machine learning models for phishing detection on web networks. In:
2022 Fifth International Conference on Computational Intelligence
and Communication Technologies (CCICT), pp. 296–303 (2022).
doi:10.1109/CCiCT56684.2022.00062. PHISHING URLs
70. Saha Roy, S., Karanjit, U., Nilizadeh, S.: Phishing in the free waters:
A study of phishing attacks created using free website building
services. In: Proceedings of the 2023 ACM on Internet Measurement
Conference, pp. 268–281 (2023). PHISHING URLs
71. Liang, Y., Yan, X.: Using deep learning to detect malicious urls. In:
2019 IEEE International Conference on Energy Internet (ICEI), pp.
487–492 (2019). IEEE. PHISHING URLs
72. Chen, S.-W., Chen, P.-H., Tsai, C.-T., Liu, C.-H.: Development of
machine learning based fraudulent website detection scheme. In: 2022
IEEE 5th International Conference on Knowledge Innovation and
Invention (ICKII), pp. 108–110 (2022). IEEE. PHISHING URLs
73. Gu, J., Xu, H.: An ensemble method for phishing websites detection
based on xgboost. In: 2022 14th International Conference on
Computer Research and Development (ICCRD), pp. 214–219 (2022).
IEEE. PHISHING URLs
74. Jha, R., Kunwar, G.: Machine learning based url analysis for phishing
detection. In: 2023 6th International Conference on Information
Systems and Computer Networks (ISCON), pp. 1–5 (2023). IEEE.
PHISHING URLs
75. Mehndiratta, M., Jain, N., Malhotra, A., Gupta, I., Narula, R.:
Malicious url: Analysis and detection using machine learning. In: 2023
10th International Conference on Computing for Sustainable Global
Development (INDIACom), pp. 1461–1465 (2023). IEEE. PHISHING
URLs
76. Jain, S., Gupta, C.: A support vector machine learning technique for
detection of phishing websites. In: 2023 6th International Conference
on Information Systems and Computer Networks (ISCON), pp. 1–6
(2023). IEEE. PHISHING URLs
77. Saha, I., Sarma, D., Chakma, R.J., Alam, M.N., Sultana, A., Hossain,
S.: Phishing attacks detection using deep learning approach. In: 2020
Third International Conference on Smart Systems and Inventive
Technology (ICSSIT), pp. 1180–1185 (2020). IEEE. PHISHING URLs
78. Kumar, S., Dubey, G.P., Gupta, B.: Hybrid machine learning
technique for prediction of phishing websites. In: 2023 6th
International Conference on Information Systems and Computer
Networks (ISCON), pp. 1–4 (2023). IEEE. PHISHING URLs
79. P, A.N., V, H.V., H, S.P.: Phishing perception and prediction. In:
2023 4th International Conference on Innovative Trends in
Information Technology (ICITIIT), pp. 1–6 (2023).
doi:10.1109/ICITIIT57246.2023.10068585. PHISHING URLs
80. DR, U.S., Patil, A., et al.: Malicious url detection and classification
analysis using machine learning models. In: 2023 International
Conference on Intelligent Data Communication Technologies and
Internet of Things (IDCIoT), pp. 470–476 (2023). IEEE. PHISHING
URLs
81. Zamir, A., Khan, H.U., Iqbal, T., Yousaf, N., Aslam, F., Anjum, A.,
Hamdani, M.: Phishing web site detection using diverse machine
learning algorithms. The Electronic Library 38(1), 65–80 (2020).
PHISHING URLs
82. Kalabarige, L.R., Rao, R.S., Pais, A.R., Gabralla, L.A.: A boosting
based hybrid feature selection and multi-layer stacked ensemble
learning model to detect phishing websites. IEEE Access (2023).
PHISHING URLs
83. Mohammed, B.A., Al-Mekhlafi, Z.G.: Accuracy of phishing websites
detection algorithms by using three ranking techniques. In: IJCSNS,
vol. 22, p. 272 (2022). PHISHING URLs
84. Priya, S., Selvakumar, S., Velusamy, R.L.: Gravitational search based
feature selection for enhanced phishing websites detection. In: 2020
2nd International Conference on Innovative Mechanisms for Industry
Applications (ICIMIA), pp. 453–458 (2020). IEEE. PHISHING URLs
85. Ariyadasa, S., Fernando, S., Fernando, S.: Phishrepo: a seamless
Page 30 of 37
collection of phishing data to fill a research gap in the phishing
domain. International Journal of Advanced Computer Science and
Applications 13(5) (2022). PHISHING URLs
86. Villanueva, A., Atibagos, C., De Guzman, J., Cruz, J.C.D., Rosales,
M., Francisco, R.: Application of natural language processing for
phishing detection using machine and deep learning models. In: 2022
International Conference on ICT for Smart Society (ICISS), pp. 01–06
(2022). IEEE. PHISHING URLs
87. Vecile, S., Lacroix, K., Grolinger, K., Samarabandu, J.: Malicious and
benign url dataset generation using character-level lstm models. In:
2022 IEEE Conference on Dependable and Secure Computing (DSC),
pp. 1–8 (2022). IEEE. PHISHING URLs
88. Kumar, J., Santhanavijayan, A., Janet, B., Rajendran, B.,
Bindhumadhava, B.: Phishing website classification and detection
using machine learning. In: 2020 International Conference on
Computer Communication and Informatics (ICCCI), pp. 1–6 (2020).
IEEE. PHISHING URLs
89. Zin, N.A.B.M., Ab Razak, M.F., Firdaus, A., Ernawan, F., Zulkifli,
N.S.A.: Machine learning technique for phishing website detection. In:
2023 IEEE 8th International Conference On Software Engineering and
Computer Systems (ICSECS), pp. 235–239 (2023). IEEE. PHISHING
URLs
90. Pathak, P., Shrivas, A.K.: Classification of phishing website using
machine learning based proposed ensemble model. In: 2022 OPJU
International Technology Conference on Emerging Technologies for
Sustainable Development (OTCON), pp. 1–6 (2023). IEEE.
PHISHING URLs
91. Bitaab, M., Cho, H., Oest, A., Lyu, Z., Wang, W., Abraham, J.,
Wang, R., Bao, T., Shoshitaishvili, Y., Doupé, A.: Beyond phish:
Toward detecting fraudulent e-commerce websites at scale. In: 2023
IEEE Symposium on Security and Privacy (SP), pp. 2566–2583
(2023). IEEE. PHISHING URLs
92. Nakano, H., Chiba, D., Koide, T., Fukushi, N., Yagi, T., Hariu, T.,
Yoshioka, K., Matsumoto, T.: Canary in twitter mine: collecting
phishing reports from experts and non-experts. In: Proceedings of the
18th International Conference on Availability, Reliability and Security,
pp. 1–12 (2023). PHISHING URLs
93. Janet, B., Nikam, A., et al.: Real time malicious url detection on
twitch using machine learning. In: 2022 International Conference on
Electronics and Renewable Systems (ICEARS), pp. 1185–1189
(2022). IEEE. PHISHING URLs
94. Yu, B., Tang, F., Ergu, D., Zeng, R., Ma, B., Liu, F.: Efficient
classification of malicious urls: M-bert-a modified bert variant for
enhanced semantic understanding. IEEE Access (2024). PHISHING
URLs
95. Alkawaz, M.H., Steven, S.J., Mohammad, O.F., Johar, M.G.M.:
Identification and analysis of phishing website based on machine
learning methods. In: 2022 IEEE 12th Symposium on Computer
Applications & Industrial Electronics (ISCAIE), pp. 246–251 (2022).
IEEE. PHISHING URLs
96. El-Din, A.E., Hemdan, E.E.-D., El-Sayed, A.: Malweb: An efficient
malicious websites detection system using machine learning
algorithms. In: 2021 International Conference on Electronic
Engineering (ICEEM), pp. 1–6 (2021). IEEE. PHISHING URLs
97. Kundra, D.: Identification and classification of malicious and benign
url using machine learning classifiers. In: 2023 7th International
Conference on I-SMAC (IoT in Social, Mobile, Analytics and
Cloud)(I-SMAC), pp. 160–165 (2023). IEEE. PHISHING URLs
98. Chen, J.-L., Ma, Y.-W., Huang, K.-L.: Intelligent visual
similarity-based phishing websites detection. Symmetry 12(10), 1681
(2020). PHISHING URLs
99. Ou, H., Guo, Y., Huang, C., Zhao, Z., Guo, W., Fang, Y., Huang, C.:
No pie in the sky: The digital currency fraud website detection. In:
International Conference on Digital Forensics and Cyber Crime, pp.
176–193 (2021). Springer. PHISHING URLs
100. Raja, A.S., Vinodini, R., Kavitha, A.: Lexical features based malicious
url detection using machine learning techniques. Materials Today:
Proceedings 47, 163–166 (2021). PHISHING URLs
101. Yadollahi, M.M., Shoeleh, F., Serkani, E., Madani, A., Gharaee, H.:
An adaptive machine learning based approach for phishing detection
using hybrid features. In: 2019 5th International Conference on Web
Papasavva et al.
Research (ICWR), pp. 281–286 (2019). IEEE. PHISHING URLs
102. Nagy, N., Aljabri, M., Shaahid, A., Ahmed, A.A., Alnasser, F.,
Almakramy, L., Alhadab, M., Alfaddagh, S.: Phishing urls detection
using sequential and parallel ml techniques: comparative analysis.
Sensors 23(7), 3467 (2023). PHISHING URLs
103. Geyik, B., Erensoy, K., Kocyigit, E.: Detection of phishing websites
from urls by using classification techniques on weka. In: 2021 6th
International Conference on Inventive Computation Technologies
(ICICT), pp. 120–125 (2021). IEEE. PHISHING URLs
104. Al-Ghamdi, N., Alsubait, T.: Digital forensics and machine learning to
fraudulent email prediction. In: 2022 Fifth National Conference of
Saudi Computers Colleges (NCCC), pp. 99–106 (2022). IEEE.
PHISHING-Emails
105. Bhatti, P., Jalil, Z., Majeed, A.: Email classification using lstm: A
deep learning technique. In: 2021 International Conference on Cyber
Warfare and Security (ICCWS), pp. 100–105 (2021). IEEE.
PHISHING-Emails
106. Jáñez-Martino, F., Alaiz-Rodríguez, R., González-Castro, V., Fidalgo,
E., Alegre, E.: A review of spam email detection: analysis of spammer
strategies and the dataset shift problem. Artificial Intelligence Review
56(2), 1145–1173 (2023). PHISHING-Emails
107. Stojnic, T., Vatsalan, D., Arachchilage, N.A.: Phishing email
strategies: understanding cybercriminals’ strategies of crafting
phishing emails. Security and privacy 4(5), 165 (2021).
PHISHING-Emails
108. Saka, T., Vaniea, K., Kökciyan, N.: Context-based clustering to
mitigate phishing attacks. In: Proceedings of the 15th ACM
Workshop on Artificial Intelligence and Security, pp. 115–126 (2022).
PHISHING-Emails
109. Jena, D., Kumari, A., Tejaswini, K., Ankita, A., Kumar, B.: Malicious
spam detection to avoid vicious attack. In: 2023 14th International
Conference on Computing Communication and Networking
Technologies (ICCCNT), pp. 1–7 (2023). IEEE. PHISHING-Emails
110. Jonker, R.A.A., Poudel, R., Pedrosa, T., Lopes, R.P.: Using natural
language processing for phishing detection. In: International
Conference on Optimization, Learning Algorithms and Applications,
pp. 540–552 (2021). Springer. PHISHING-Emails
111. Jáñez-Martino, F., Alaiz-Rodríguez, R., González-Castro, V., Fidalgo,
E.: Trustworthiness of spam email addresses using machine learning.
In: Proceedings of the 21st ACM Symposium on Document
Engineering, pp. 1–4 (2021). PHISHING-Emails
112. Chataut, R., Gyawali, P.K., Usman, Y.: Can ai keep you safe? a study
of large language models for phishing detection. In: 2024 IEEE 14th
Annual Computing and Communication Workshop and Conference
(CCWC), pp. 0548–0554 (2024). IEEE. PHISHING-Emails
113. Marková, E., Bajtoš, T., Sokol, P., Mézešová, T.: Classification of
malicious emails. In: 2019 IEEE 15th International Scientific
Conference on Informatics, pp. 000279–000284 (2019). IEEE.
PHISHING-Emails
114. Al-Haddad, R., Sahwan, F., Aboalmakarem, A., Latif, G., Alufaisan,
Y.M.: Email text analysis for fraud detection through machine
learning techniques. In: 3rd Smart Cities Symposium (SCS 2020), vol.
2020, pp. 613–616 (2020). IET. PHISHING-Emails
115. Islam, M.K., Al Amin, M., Islam, M.R., Mahbub, M.N.I., Showrov,
M.I.H., Kaushal, C.: Spam-detection with comparative analysis and
spamming words extractions. In: 2021 9th International Conference
on Reliability, Infocom Technologies and Optimization (Trends and
Future Directions)(ICRITO), pp. 1–9 (2021). IEEE.
PHISHING-Emails
116. Ramprasath, J., Priyanka, S., Manudev, R., Gokul, M.: Identification
and mitigation of phishing email attacks using deep learning. In: 2023
3rd International Conference on Advance Computing and Innovative
Technologies in Engineering (ICACITE), pp. 466–470 (2023). IEEE.
PHISHING-Emails
117. Singh, U., Singh, V., Gourisaria, M.K., Das, H.: Spam email
assessment using machine learning and data mining approach. In:
2022 Fifth International Conference on Computational Intelligence
and Communication Technologies (CCICT), pp. 350–357 (2022).
IEEE. PHISHING-Emails
118. Emmanuel, A.A., Yamazaki, T.: Information security in social media
sites: Sentiment analysis of email. In: 2023 IEEE 18th International
Page 31 of 37
Conference on Computer Science and Information Technologies
(CSIT), pp. 1–5 (2023). IEEE. PHISHING-Emails
119. Livara, A., Hernandez, R.: An empirical analysis of machine learning
techniques in phishing e-mail detection. In: 2022 International
Conference for Advancement in Technology (ICONAT), pp. 1–6
(2022). IEEE. PHISHING-Emails
120. Salihovic, I., Serdarevic, H., Kevric, J.: The role of feature selection in
machine learning for detection of spam and phishing attacks. In:
Advanced Technologies, Systems, and Applications III: Proceedings of
the International Symposium on Innovative and Interdisciplinary
Applications of Advanced Technologies (IAT), Volume 2, pp. 476–483
(2019). Springer. FRAUDULENT ECOMMERCE
121. Ismail, S.S., Mansour, R.F., Abd El-Aziz, R.M., Taloba, A.I.: Efficient
e-mail spam detection strategy using genetic decision tree processing
with nlp features. Computational Intelligence and Neuroscience
2022(1), 7710005 (2022). PHISHING-Emails
122. Kushwaha, A., Dutta, K., Maheshwari, V.: Analysis of bert email
spam classifier against adversarial attacks. In: 2023 International
Conference on Artificial Intelligence and Smart Communication
(AISC), pp. 485–490 (2023). IEEE. PHISHING-Emails
123. Saini, A., Guleria, K., Sharma, S.: Machine learning approaches for an
automatic email spam detection. In: 2023 International Conference on
Artificial Intelligence and Applications (ICAIA) Alliance Technology
Conference (ATCON-1), pp. 1–5 (2023). IEEE. PHISHING-Emails
124. Mittal, K., Gill, K.S., Chauhan, R., Joshi, K., Banerjee, D.: Blockage
of phishing attacks through machine learning classification techniques
and fine tuning its accuracy. In: 2023 3rd International Conference on
Smart Generation Computing, Communication and Networking
(SMART GENCON), pp. 1–5 (2023). IEEE. PHISHING-Emails
125. Genc, Y., Kour, H., Arslan, H.T., Chen, L.-C.: Understanding nigerian
e-mail scams: A computational content analysis approach.
Information Security Journal: A Global Perspective 30(2), 88–99
(2021). PHISHING-Emails
126. Jiang, L.: Detecting scams using large language models. arXiv
preprint arXiv:2402.03147 (2024). PHISHING-Emails
127. Mehdi Gholampour, P., Verma, R.M.: Adversarial robustness of
phishing email detection models. In: Proceedings of the 9th ACM
International Workshop on Security and Privacy Analytics, pp. 67–76
(2023). PHISHING-Emails
128. Radford, A., Wu, J., Child, R., Luan, D., Amodei, D., Sutskever, I.,
et al.: Language models are unsupervised multitask learners. OpenAI
blog 1(8), 9 (2019)
129. Ren, S., Deng, Y., He, K., Che, W.: Generating natural language
adversarial examples through probability weighted word saliency. In:
Korhonen, A., Traum, D., Màrquez, L. (eds.) Proceedings of the 57th
Annual Meeting of the Association for Computational Linguistics, pp.
1085–1097. Association for Computational Linguistics, Florence, Italy
(2019). doi:10.18653/v1/P19-1103.
https://aclanthology.org/P19-1103
130. Gallo, L., Botta, A., Ventre, G.: Identifying threats in a large
company’s inbox. In: Proceedings of the 3rd ACM CoNEXT
Workshop on Big DAta, Machine Learning and Artificial Intelligence
for Data Communication Networks, pp. 1–7 (2019).
PHISHING-Emails
131. Mughaid, A., AlZu’bi, S., Hnaif, A., Taamneh, S., Alnajjar, A.,
Elsoud, E.A.: An intelligent cyber security phishing detection system
using deep learning techniques. Cluster Computing 25(6), 3819–3828
(2022). PHISHING-Emails
132. Venugopal, I., Bhaskari, D.L., Seetaramanath, M.: Detection of
severity-based email spam messages using adaptive threshold driven
clustering. International Journal of Advanced Computer Science and
Applications 13(10) (2022). PHISHING-Emails
133. Rahmad, F., Suryanto, Y., Ramli, K.: Performance comparison of
anti-spam technology using confusion matrix classification. In: IOP
Conference Series: Materials Science and Engineering, vol. 879, p.
012076 (2020). IOP Publishing. PHISHING-Emails
134. Vinothkumar, S., Varadhaganapathy, S., Shanthakumari, R.,
Ramkishore, D., Rithik, S., Tharanies, K.: Detection of spam
messages in e-messaging platform using machine learning. In: 2022
Fifth International Conference on Computational Intelligence and
Communication Technologies (CCICT), pp. 283–287 (2022). IEEE.
Papasavva et al.
SMISHING
135. Agrawal, N., Bajpai, A., Dubey, K., Patro, B.: An effective approach
to classify fraud sms using hybrid machine learning models. In: 2023
IEEE 8th International Conference for Convergence in Technology
(I2CT), pp. 1–6 (2023). IEEE. SMISHING
136. Jain, A.K., Gupta, B.B.: Feature based approach for detection of
smishing messages in the mobile environment. Journal of Information
Technology Research (JITR) 12(2), 17–35 (2019). SMISHING
137. Mishra, S., Soni, D.: Dsmishsms-a system to detect smishing sms.
Neural Computing and Applications 35(7), 4975–4992 (2023).
SMISHING
138. Abid, M.A., Ullah, S., Siddique, M.A., Mushtaq, M.F., Aljedaani, W.,
Rustam, F.: Spam sms filtering based on text features and supervised
machine learning techniques. Multimedia Tools and Applications
81(28), 39853–39871 (2022). SMISHING
139. Kohilan, R., Warakagoda, H.E., Kitulgoda, T.T., Skandhakumar, N.,
Kuruwitaarachchi, N.: A machine learning-based approach for
detecting smishing attacks at end-user level. In: 2023 IEEE
International Conference on e-Business Engineering (ICEBE), pp.
149–154 (2023). IEEE. SMISHING
140. Siagian, W., Setiadi, M.R., Prasetyo, S.Y.: Improving sms spam
detection through machine learning: An investigation of feature
extraction and model selection techniques. In: 2023 International
Conference on Information Management and Technology (ICIMTech),
pp. 288–293 (2023). IEEE. SMISHING
141. Gandhi, C., Sarangi, P.K., Saxena, M., Sahoo, A.K.: Sms spam
detection using deep learning techniques: A comparative analysis of
dnn vs lstm vs bi-lstm. In: 2023 International Conference on
Computational Intelligence and Sustainable Engineering Solutions
(CISES), pp. 189–194 (2023). IEEE. SMISHING
142. Al-Kabbi, H.A., Feizi-Derakhshi, M.-R., Pashazadeh, S.: Multi-type
feature extraction and early fusion framework for sms spam detection.
IEEE Access (2023). SMISHING
143. Zhang, X., Huang, R., Jin, L., Wan, F.: A bert-gcn-based detection
method for fbs telecom fraud chinese sms texts. In: 2023 4th
International Conference on Intelligent Computing and
Human-Computer Interaction (ICHCI), pp. 448–453 (2023). IEEE.
SMISHING
144. Dharani, V., Hegde, D., et al.: Spam sms (or) email detection and
classification using machine learning. In: 2023 5th International
Conference on Smart Systems and Inventive Technology (ICSSIT),
pp. 1104–1108 (2023). IEEE. SMISHING
145. Addanki, V., Durgapu, S., Dorasanaiah, K., Abhishek, S., et al.:
Safeguarding sms: A dynamic duo approach to tackle spam using lda
and qda. In: Innovations in Power and Advanced Computing
Technologies (i-PACT) (2023). SMISHING
146. Ulfath, R.E., Alqahtani, H., Hammoudeh, M., Sarker, I.H.: Hybrid
cnn-gru framework with integrated pre-trained language transformer
for sms phishing detection. In: Proceedings of the 5th International
Conference on Future Networks and Distributed Systems, pp.
244–251 (2021). SMISHING
147. Jain, T., Garg, P., Chalil, N., Sinha, A., Verma, V.K., Gupta, R.: Sms
spam classification using machine learning techniques. In: 2022 12th
International Conference on Cloud Computing, Data Science &
Engineering (confluence), pp. 273–279 (2022). IEEE. SMISHING
148. Zhang, Y., Liu, B., Lu, C., Li, Z., Duan, H., Hao, S., Liu, M., Liu, Y.,
Wang, D., Li, Q.: Lies in the air: Characterizing fake-base-station
spam ecosystem in china. In: Proceedings of the 2020 ACM SIGSAC
Conference on Computer and Communications Security, pp. 521–534
(2020). SMISHING
149. Lai, K., Long, Y., Wu, B., Li, Y., Wang, B.: Semorph: A morphology
semantic enhanced pre-trained model for chinese spam text detection.
In: Proceedings of the 31st ACM International Conference on
Information & Knowledge Management, pp. 1003–1013 (2022).
SMIHSING
150. Tang, S., Mi, X., Li, Y., Wang, X., Chen, K.: Clues in tweets:
Twitter-guided discovery and analysis of sms spam. In: Proceedings of
the 2022 ACM SIGSAC Conference on Computer and
Communications Security, pp. 2751–2764 (2022). SMISHING
151. Seo, J.W., Lee, J.S., Kim, H., Lee, J., Han, S., Cho, J., Lee, C.-H.:
On-device smishing classifier resistant to text evasion attack. IEEE
Page 32 of 37
Access (2024). SMISHING
152. Liu, M., Zhang, Y., Liu, B., Li, Z., Duan, H., Sun, D.: Detecting and
characterizing sms spearphishing attacks. In: Proceedings of the 37th
Annual Computer Security Applications Conference, pp. 930–943
(2021). SMIHSING
153. Timko, D., Rahman, M.L.: Commercial anti-smishing tools and their
comparative effectiveness against modern threats. In: Proceedings of
the 16th ACM Conference on Security and Privacy in Wireless and
Mobile Networks, pp. 1–12 (2023). SMISHING
154. Derakhshan, A., Harris, I.G., Behzadi, M.: Detecting telephone-based
social engineering attacks using scam signatures. In: Proceedings of
the 2021 ACM Workshop on Security and Privacy Analytics, pp.
67–73 (2021). VISHING
155. Djiré, A.E., Sabané, A., Kabore, A.-K., Kafando, R., Bissyandé, T.F.:
Evaluating acoustic parameters for deepfake audio identification. In:
2023 IEEE Afro-Mediterranean Conference on Artificial Intelligence
(AMCAI), pp. 1–6 (2023). IEEE. VISHING
156. Ren, Y., Hu, C., Tan, X., Qin, T., Zhao, S., Zhao, Z., Liu, T.-Y.:
Fastspeech 2: Fast and high-quality end-to-end text to speech. arXiv
preprint arXiv:2006.04558 (2020)
157. Sini, A., Lolive, D., Vidal, G., Tahon, M., Delais-Roussarie, É.:
Synpaflex-corpus: An expressive french audiobooks corpus dedicated
to expressive speech synthesis. In: Proceedings of the Eleventh
International Conference on Language Resources and Evaluation
(LREC 2018) (2018)
158. Liang, F.-Y., Li, F.-P., Xu, R.-H., Cheng, W., Deng, S.-X., Yang,
Z.-R., Wang, C.-D.: Telecom fraud detection based on feature
binning and autoencoder. In: 2023 IEEE International Conference on
Data Mining (ICDM), pp. 368–377 (2023). IEEE. VISHING
159. Huang, Z., Wu, J., Ren, L., Hu, R., Li, D.: Learning dynamic
behavior patterns for fraud detection. In: 2022 IEEE Intl Conf on
Parallel & Distributed Processing with Applications, Big Data &
Cloud Computing, Sustainable Computing & Communications, Social
Computing & Networking (ISPA/BDCloud/SocialCom/SustainCom),
pp. 621–627 (2022). IEEE. VISHING
160. Hu, Z., Yuan, Z.: Urf4cct: A text understanding framework for
chinese telecom fraud cases. In: 2023 IEEE 9th International
Conference on Cloud Computing and Intelligent Systems (CCIS), pp.
121–125 (2023). IEEE. VISHING
161. Kim, J.-W., Hong, G.-W., Chang, H.: Voice recognition and
document classification-based data analysis for voice phishing
detection. Human-centric Comput. Inf. Sci 11 (2021). VISHING
162. Kale, N., Kochrekar, S., Mote, R., Dholay, S.: Classification of fraud
calls by intent analysis of call transcripts. In: 2021 12th International
Conference on Computing Communication and Networking
Technologies (ICCCNT), pp. 1–6 (2021). IEEE. VISHING
163. Rahman, Y.M.: Phone call speaker classification using machine
learning on mfcc features for scam detection. In: 2022 6th
International Conference on Information Technology, Information
Systems and Electrical Engineering (ICITISEE), pp. 351–356 (2022).
IEEE. VISHING
164. Hong, B., Connie, T., Goh, M.K.O.: Scam calls detection using
machine learning approaches. In: 2023 11th International Conference
on Information and Communication Technology (ICoICT), pp.
442–447 (2023). IEEE. VISHING
165. Gowri, S.M., Ramana, G.S., Ranjani, M.S., Tharani, T.: Detection of
telephony spam and scams using recurrent neural network (rnn)
algorithm. In: 2021 7th International Conference on Advanced
Computing and Communication Systems (ICACCS), vol. 1, pp.
1284–1288 (2021). IEEE. VISHING
166. Malhotra, S., Arora, G., Bathla, R.: Detection and analysis of fraud
phone calls using artificial intelligence. In: 2023 International
Conference on Recent Advances in Electrical, Electronics & Digital
Healthcare Technologies (REEDCON), pp. 592–595 (2023). IEEE.
VISHING
167. Zhong, R., Zhang, Z., Lin, R., Zou, H.: Encoding broad learning
system: An effective shallow model for anti-fraud. In: 2020 IEEE
International Conference on Big Data (Big Data), pp. 5496–5504
(2020). IEEE. VISHING
168. Liu, T., Wang, S., Fu, J., Chen, L., Wei, Z., Liu, Y., Ye, H., Xu, L.,
Wang, W., Huang, X.: Fine-grained element identification in
Papasavva et al.
complaint text of internet fraud. In: Proceedings of the 30th ACM
International Conference on Information & Knowledge Management,
pp. 3268–3272 (2021). PHISHING USER REPORTS
169. Zhou, T., Zhao, H., Zhang, X.: Keyword extraction based on random
forest and xgboost-an example of fraud judgment document. In: 2022
European Conference on Natural Language Processing and
Information Retrieval (ECNLPIR), pp. 17–22 (2022). IEEE.
PHISHING USER REPORTS
170. Palad, E.B.B., Tangkeko, M.S., Magpantay, L.A.K., Sipin, G.L.:
Document classification of filipino online scam incident text using
data mining techniques. In: 2019 19th International Symposium on
Communications and Information Technologies (ISCIT), pp. 232–237
(2019). IEEE. PHISHING USER REPORTS
171. Javed, M.S., Majeed, H., Mujtaba, H., Beg, M.O.: Fake reviews
classification using deep learning ensemble of shallow convolutions.
Journal of Computational Social Science, 1–20 (2021). FAKE
REVIEWS
172. Pengqi, W., Yue, L., Junyi, C.: Unmasking deception: A comparative
study of tree-based and transformer-based models for fake review
detection on yelp. In: 2023 IEEE International Conference on
Systems, Man, and Cybernetics (SMC), pp. 1848–1853 (2023). IEEE.
FAKE REVIEWS
173. Harris, C.G.: Combining linguistic and behavioral clues to detect
spam in online reviews. In: 2022 IEEE International Conference on
e-Business Engineering (ICEBE), pp. 38–44 (2022). IEEE. FAKE
REVIEWS
174. Tufail, H., Ashraf, M.U., Alsubhi, K., Aljahdali, H.M.: The effect of
fake reviews on e-commerce during and after covid-19 pandemic:
Skl-based fake reviews detection. Ieee Access 10, 25555–25564
(2022). FAKE REVIEWS
175. Balakrishna, V., Bag, S., Sarkar, S.: Identifying spammer groups in
consumer reviews using meta-data via bipartite graph approach. In:
2022 International Conference on Data Analytics for Business and
Industry (ICDABI), pp. 650–654 (2022). IEEE. FAKE REVIEWS
176. Ashraf, S., Rehman, F., Sharif, H., Kirn, H., Arshad, H., Manzoor,
H.: Fake reviews classification using deep learning. In: 2023
International Multi-disciplinary Conference in Emerging Research
Trends (IMCERT), vol. 1, pp. 1–8 (2023). IEEE. FAKE REVIEWS
177. Wang, L., Li, P., Xiong, K., Zhao, J., Lin, R.: Modeling
heterogeneous graph network on fraud detection: A community-based
framework with attention mechanism. In: Proceedings of the 30th
ACM International Conference on Information & Knowledge
Management, pp. 1959–1968 (2021). FAKE REVIEWS
178. Singh, D., Memoria, M., Kumar, R.: Deep learning based model for
fake review detection. In: 2023 International Conference on
Advancement in Computation & Computer Technologies (InCACCT),
pp. 92–95 (2023). IEEE. FAKE REVIEWS
179. Yugeshwaran, G., Benitta, D.A., Eliyas, S., et al.: Rank fraud and
malware detection in google play using fairplay. In: 2022 2nd
International Conference on Advance Computing and Innovative
Technologies in Engineering (ICACITE), pp. 1356–1359 (2022).
IEEE. FAKE REVIEWS
180. Tushev, M., Ebrahimi, F., Mahmoud, A.: Domain-specific analysis of
mobile app reviews using keyword-assisted topic models. In:
Proceedings of the 44th International Conference on Software
Engineering, pp. 762–773 (2022). FAKE REVIEWS
181. Obie, H.O., Ilekura, I., Du, H., Shahin, M., Grundy, J., Li, L.,
Whittle, J., Turhan, B.: On the violation of honesty in mobile apps:
Automated detection and categories. In: Proceedings of the 19th
International Conference on Mining Software Repositories, pp.
321–332 (2022). FAKE REVIEWS
182. Rangar, K.P., Khan, A.: A machine learning model for spam reviews
and spammer community detection. In: 2022 IEEE World Conference
on Applied Intelligence and Computing (AIC), pp. 632–638 (2022).
IEEE. FAKE REVIEWS
183. Iqbal, A., Rauf, M.A., Zubair, M., Younis, T.: An efficient ensemble
approach for fake reviews detection. In: 2023 3rd International
Conference on Artificial Intelligence (ICAI), pp. 70–75 (2023). IEEE.
FAKE REVIEWS
184. Furia, R., Gaikwad, K., Mandalya, K., Godbole, A.: Tool for review
analysis of product. In: 2020 International Conference on Emerging
Page 33 of 37
Trends in Information Technology and Engineering (ic-ETITE), pp.
1–6 (2020). IEEE. FAKE REVIEWS
185. Gupta, V., Aggarwal, A., Chakraborty, T.: Detecting and
characterizing extremist reviewer groups in online product reviews.
IEEE Transactions on Computational Social Systems 7(3), 741–750
(2020). FAKE REVIEWS
186. Thilagavathy, A., Therasa, P., Jasmine, J.J., Sneha, M., Lakshmi,
R.S., Yuvanthika, S.: Fake product review detection and elimination
using opinion mining. In: 2023 World Conference on Communication
& Computing (WCONF), pp. 1–5 (2023). IEEE. FAKE REVIEWS
187. Chandana, P., Sree, N.P., Ramya, V., Bhavana, G.: Analyzing the
extremist reviewer groups on online products. In: 2021 Third
International Conference on Inventive Research in Computing
Applications (ICIRCA), pp. 1–4 (2021). IEEE. FAKE REVIEWS
188. Akshara, S., Shiva, S., Kubireddy, S., Arun, T., Kanthety, V.L.: A
small comparative study of machine learning algorithms in the
detection of fake reviews of amazon products. In: 2023 6th
International Conference on Contemporary Computing and
Informatics (IC3I), vol. 6, pp. 2258–2263 (2023). IEEE. FAKE
REVIEWS
189. Deekshan, S., PK, A.D., et al.: Detection and summarization of
honest reviews using text mining. In: 2022 8th International
Conference on Smart Structures and Systems (ICSSS), pp. 01–05
(2022). IEEE. FAKE REVIEWS
190. Rangari, K., Khan, A.: An empirical analysis of different techniques
for spam detection. In: 2022 8th International Conference on
Advanced Computing and Communication Systems (ICACCS), vol. 1,
pp. 947–953 (2022). IEEE. FAKE REVIEWS
191. Silpa, C., Prasanth, P., Sowmya, S., Bhumika, Y., Pavan, C.S.,
Naveed, M.: Detection of fake online reviews by using machine
learning. In: 2023 International Conference on Innovative Data
Communication Technologies and Application (ICIDCA), pp. 71–77
(2023). IEEE. FAKE REVIEWS
192. Bevendorff, J., Wiegmann, M., Potthast, M., Stein, B.: Product spam
on youtube: A case study. In: Proceedings of the 2024 Conference on
Human Information Interaction and Retrieval, pp. 358–363 (2024).
FAKE REVIEWS
193. Ganesh, D., Rao, K.J., Kumar, M.S., Vinitha, M., Anitha, M., Likith,
S.S., Taralitha, R.: Implementation of novel machine learning
methods for analysis and detection of fake reviews in social media. In:
2023 International Conference on Sustainable Computing and Data
Communication Systems (ICSCDS), pp. 243–250 (2023). IEEE.
FAKE REVIEWS
194. Nessa, I., Zabin, B., Faruk, K.O., Rahman, A., Nahar, K., Iqbal, S.,
Hossain, M.S., Mehedi, M.H.K., Rasel, A.A.: Recruitment scam
detection using gated recurrent unit. In: 2022 IEEE 10th Region 10
Humanitarian Technology Conference (R10-HTC), pp. 445–449
(2022). IEEE. RECRUITEMENT FRAUD
195. Prathaban, B.P., Rajendran, S., Lakshmi, G., Menaka, D.:
Verification of job authenticity using prediction of online employment
scam model (poesm). In: 2022 1st International Conference on
Computational Science and Technology (ICCST), pp. 1–6 (2022).
IEEE. RECRUITEMENT FRAUD
196. Pandey, B., Kala, T., Bhoj, N., Gohel, H., Kumar, A., Sivaram, P.:
Effective identification of spam jobs postings using employer defined
linguistic feature. In: 2022 1st International Conference on AI in
Cybersecurity (ICAIC), pp. 1–6 (2022). IEEE. RECRUITEMENT
FRAUD
197. Ranparia, D., Kumari, S., Sahani, A.: Fake job prediction using
sequential network. In: 2020 IEEE 15th International Conference on
Industrial and Information Systems (ICIIS), pp. 339–343 (2020).
IEEE. RECRUITEMENT FRAUD
198. Habiba, S.U., Islam, M.K., Tasnim, F.: A comparative study on fake
job post prediction using different data mining techniques. In: 2021
2nd International Conference on Robotics, Electrical and Signal
Processing Techniques (ICREST), pp. 543–546 (2021). IEEE.
RECRUITEMENT FRAUD
199. Reddy, S.M., Ali, S.M., Battula, K.M., lakshmana Charan, P.,
Rashmi, M.: Web app for predicting fake job posts using ensemble
classifiers. In: 2023 4th International Conference for Emerging
Technology (INCET), pp. 1–5 (2023). IEEE. RECRUITEMENT
Papasavva et al.
FRAUD
200. Santhiya, P., Kavitha, S., Aravindh, T., Archana, S., Praveen, A.V.:
Fake news detection using machine learning. In: 2023 International
Conference on Computer Communication and Informatics (ICCCI),
pp. 1–8 (2023). IEEE. RECRUITEMENT FRAUD
201. Lal, S., Jiaswal, R., Sardana, N., Verma, A., Kaur, A., Mourya, R.:
Orfdetector: ensemble learning based online recruitment fraud
detection. In: 2019 Twelfth International Conference on Contemporary
Computing (IC3), pp. 1–5 (2019). IEEE. RECRUITEMENT FRAUD
202. Nasser, I.M., Alzaanin, A.H., Maghari, A.Y.: Online recruitment fraud
detection using ann. In: 2021 Palestinian International Conference on
Information and Communication Technology (PICICT), pp. 13–17
(2021). IEEE. RECRUITEMENT FRAUD
203. Sofy, M.A., Khafagy, M.H., Badry, R.M.: An intelligent arabic model
for recruitment fraud detection using machine learning. Journal of
Advances in Information Technology 14(1) (2023). RECRUITEMENT
FRAUD
204. Vo, M.T., Vo, A.H., Nguyen, T., Sharma, R., Le, T.: Dealing with
the class imbalance problem in the detection of fake job descriptions.
Computers, Materials & Continua 68(1), 521–535 (2021).
RECRUITEMENT FRAUD
205. Nanath, K., Olney, L.: An investigation of crowdsourcing methods in
enhancing the machine learning approach for detecting online
recruitment fraud. International Journal of Information Management
Data Insights 3(1), 100167 (2023). RECRUITEMENT FRAUD
206. Ullah, Z., Jamjoom, M.: A smart secured framework for detecting
and averting online recruitment fraud using ensemble machine
learning techniques. PeerJ Computer Science 9, 1234 (2023).
RECRUITEMENT FRAUD
207. Bhatia, T., Meena, J.: Detection of fake online recruitment using
machine learning techniques. In: 2022 4th International Conference
on Advances in Computing, Communication Control and Networking
(ICAC3N), pp. 300–304 (2022). IEEE. RECRUITEMENT FRAUD
208. Li, J., Li, Y., Han, H., Lu, X.: Exploratory methods for imbalanced
data classification in online recruitment fraud detection: A
comparative analysis. In: 2021 4th International Conference on
Computing and Big Data, pp. 75–81 (2021). RECRUITEMENT
FRAUD
209. Mahbub, S., Pardede, E., Kayes, A.: Online recruitment fraud
detection: A study on contextual features in australian job industries.
IEEE Access 10, 82776–82787 (2022). RECRUITEMENT FRAUD
210. Tabassum, H., Ghosh, G., Atika, A., Chakrabarty, A.: Detecting online
recruitment fraud using machine learning. In: 2021 9th International
Conference on Information and Communication Technology (ICoICT),
pp. 472–477 (2021). IEEE. RECRUITEMENT FRAUD
211. Zhang, H., Wang, M., Wang, Y., Li, Y., Gu, D., Zhu, Y.:
Orfpprediction: Machine learning based online recruitment fraud
probability prediction. In: 2023 International Conference on the
Cognitive Computing and Complex Data (ICCD), pp. 139–144
(2023). IEEE. RECRUITEMENT FRAUD
212. Raj, R.J.R., Srinivasulu, S., Ashutosh, A.: A multi-classifier
framework for detecting spam and fake spam messages in twitter. In:
2020 IEEE 9th International Conference on Communication Systems
and Network Technologies (CSNT), pp. 266–270 (2020). IEEE. FAKE
ACCOUNTS
213. Gangan, J., Suprith, K., Jamdar, N., Bharne, S.: Detection of fake
twitter accounts using ensemble learning model. In: 2023 7th
International Conference On Computing, Communication, Control
And Automation (ICCUBEA), pp. 1–6 (2023). IEEE. FAKE
REVIEWS
214. Yue, H., Zhou, L., Xue, K., Li, H.: Madafe: Malicious account
detection on twitter with automated feature extraction. In: 2019 11th
International Conference on Wireless Communications and Signal
Processing (WCSP), pp. 1–6 (2019). IEEE. FAKE ACCOUNTS
215. Singh, M., Singh, A.: How safe you are on social networks?
Cybernetics and Systems 54(7), 1154–1171 (2023). FAKE
ACCOUNTS
216. Ali Alhosseini, S., Bin Tareaf, R., Najafi, P., Meinel, C.: Detect me if
you can: Spam bot detection using inductive representation learning.
In: Companion Proceedings of the 2019 World Wide Web Conference,
pp. 148–153 (2019). FAKE ACCOUNTS
Page 34 of 37
217. Shukla, R., Sinha, A., Chaudhary, A.: Tweezbot: An ai-driven online
media bot identification algorithm for twitter social networks.
Electronics 11(5), 743 (2022). FAKE ACCOUNTS
218. Rovito, L., Bonin, L., Manzoni, L., De Lorenzo, A.: An evolutionary
computation approach for twitter bot detection. Applied Sciences
12(12), 5915 (2022). FAKE ACCOUNTS
219. Das, S., Saha, S., Vijayalakshmi, S., Jaiswal, J.: An effecient
approach to detect fraud instagram accounts using supervised ml
algorithms. In: 2022 4th International Conference on Advances in
Computing, Communication Control and Networking (ICAC3N), pp.
760–764 (2022). IEEE. FAKE ACCOUNTS
220. Fathima, A.S., Reema, S., Ahmed, S.T.: Ann based fake profile
detection and categorization using premetric paradigms on instagram.
In: 2023 Innovations in Power and Advanced Computing Technologies
(i-PACT), pp. 1–6 (2023). IEEE. FAKE ACCOUNTS
221. Anklesaria, K., Desai, Z., Kulkarni, V., Balasubramaniam, H.: A
survey on machine learning algorithms for detecting fake instagram
accounts. In: 2021 3rd International Conference on Advances in
Computing, Communication Control and Networking (ICAC3N), pp.
141–144 (2021). IEEE. FAKE ACCOUNTS
222. Albayati, M.B., Altamimi, A.M.: Identifying fake facebook profiles
using data mining techniques. Journal of ICT Research &
Applications 13(2) (2019). FAKE ACCOUNTS
223. Venkatesan, M., Prabhavathy, P.: Graph based unsupervised learning
methods for edge and node anomaly detection in social network. In:
2019 IEEE 1st International Conference on Energy, Systems and
Information Processing (ICESIP), pp. 1–5 (2019). IEEE. FAKE
ACCOUNTS
224. Shreya, K., Kothapelly, A., Deepika, V., Shanmugasundaram, H.:
Identification of fake accounts in social media using machine learning.
In: 2022 Fourth International Conference on Emerging Research in
Electronics, Computer Science and Technology (ICERECT), pp. 1–4
(2022). IEEE. FAKE ACCOUNTS
225. Na, S.H., Cho, S., Shin, S.: Evolving bots: The new generation of
comment bots and their underlying scam campaigns in youtube. In:
Proceedings of the 2023 ACM on Internet Measurement Conference,
pp. 297–312 (2023). FAKE ACCOUNTS
226. Zhang, X., Jiang, F., Zhang, R., Li, S., Zhou, Y.: Social spammer
detection based on semi-supervised learning. In: 2021 IEEE 20th
International Conference on Trust, Security and Privacy in Computing
and Communications (TrustCom), pp. 849–855 (2021). IEEE. FAKE
ACCOUNTS
227. Haq, I., Qiu, W., Guo, J., Peng, T.: Spammy names detection in
pashto language to prevent fake accounts creation on social media.
In: 2023 8th International Conference on Signal and Image Processing
(ICSIP), pp. 614–618 (2023). IEEE. FAKE ACCOUNTS
228. Nikhitha, K.V., Bhavya, K., Nandini, D.U.: Fake account detection
on social media using random forest classifier. In: 2023 7th
International Conference on Intelligent Computing and Control
Systems (ICICCS), pp. 806–811 (2023). IEEE. FAKE ACCOUNTS
229. Bebensee, B., Nazarov, N., Zhang, B.-T.: Leveraging node
neighborhoods and egograph topology for better bot detection in
social graphs. Social Network Analysis and Mining 11(1), 10 (2021).
FAKE ACCOUNTS
230. Janjeva, A., Harris, A., Mercer, S., Kasprzyk, A., Gausen, A.: The
rapid rise of generative ai: Assessing risks to safety and security
(2023). GENAI SE ATTACK
231. Ferrara, E.: Genai against humanity: Nefarious applications of
generative artificial intelligence and large language models. Journal of
Computational Social Science, 1–21 (2024). GENAI SE ATTACK
232. Carlini, N., Tramer, F., Wallace, E., Jagielski, M., Herbert-Voss, A.,
Lee, K., Roberts, A., Brown, T., Song, D., Erlingsson, U., et al.:
Extracting training data from large language models. In: 30th
USENIX Security Symposium (USENIX Security 21), pp. 2633–2650
(2021). GENAI SE ATTACK
233. Kumar, K., Bhushan, B., et al.: Augmenting cybersecurity and fraud
detection using artificial intelligence advancements. In: 2023
International Conference on Computing, Communication, and
Intelligent Systems (ICCCIS), pp. 1207–1212 (2023). IEEE. GENAI
SE ATTACK
234. Ayoobi, N., Shahriar, S., Mukherjee, A.: The looming threat of fake
Papasavva et al.
and llm-generated linkedin profiles: Challenges and opportunities for
detection and prevention. In: Proceedings of the 34th ACM
Conference on Hypertext and Social Media, pp. 1–10 (2023). GENAI
SE ATTACK
235. DiResta, R., Goldstein, J.A.: How spammers and scammers leverage
ai-generated images on facebook for audience growth. arXiv preprint
arXiv:2403.12838 (2024). GENAI SE ATTACK
236. Grbic, D.V., Dujlovic, I.: Social engineering with chatgpt. In: 2023
22nd International Symposium INFOTEH-JAHORINA (INFOTEH),
pp. 1–5 (2023). IEEE. GENAI SE ATTACK
237. Shibli, A.M., Pritom, M.M.A., Gupta, M.: Abusegpt: Abuse of
generative ai chatbots to create smishing campaigns. In: 2024 12th
International Symposium on Digital Forensics and Security (ISDFS),
pp. 1–6 (2024). IEEE. GENAI SE ATTACK
238. Alotaibi, L., Seher, S., Mohammad, N.: Cyberattacks using chatgpt:
Exploring malicious content generation through prompt engineering.
In: 2024 ASU International Conference in Emerging Technologies for
Sustainability and Intelligent Systems (ICETSIS), pp. 1304–1311
(2024). IEEE. GENAI SE ATTACK
239. Alawida, M., Abu Shawar, B., Abiodun, O.I., Mehmood, A., Omolara,
A.E., Al Hwaitat, A.K.: Unveiling the dark side of chatgpt: Exploring
cyberattacks and enhancing user awareness. Information 15(1), 27
(2024). GENAI SE ATTACK
240. Sharma, M., Singh, K., Aggarwal, P., Dutt, V.: How well does gpt
phish people? an investigation involving cognitive biases and
feedback. In: 2023 IEEE European Symposium on Security and
Privacy Workshops (EuroS&PW), pp. 451–457 (2023). IEEE. GENAI
SE ATTACK
241. Roy, S.S., Thota, P., Naragam, K.V., Nilizadeh, S.: From chatbots to
phishbots?–preventing phishing scams created using chatgpt, google
bard and claude. arXiv preprint arXiv:2310.19181 (2023). GENAI SE
ATTACK
242. Xu, Z., Luo, S., Shi, J., Li, H., Lin, C., Sun, Q., Hu, S.: Efficiently
answering k-hop reachability queries in large dynamic graphs for fraud
feature extraction. In: 2022 23rd IEEE International Conference on
Mobile Data Management (MDM), pp. 238–245 (2022). IEEE.
SOCIAL MEDIA SCAMS
243. La Morgia, M., Mei, A., Mongardini, A.M., Wu, J.: It’sa trap!
detection and analysis of fake channels on telegram. In: 2023 IEEE
International Conference on Web Services (ICWS), pp. 97–104
(2023). IEEE. SOCIAL MEDIA SCAMS
244. La Morgia, M., Mei, A., Mongardini, A.M., Wu, J.: Uncovering the
dark side of telegram: Fakes, clones, scams, and conspiracy
movements. arXiv preprint arXiv:2111.13530 (2021). SOCIAL MEDIA
SCAMS
245. Shah, D., Harrison, T., Freas, C.B., Maimon, D., Harrison, R.W.:
Illicit activity detection in large-scale dark and opaque web social
networks. In: 2020 IEEE International Conference on Big Data (Big
Data), pp. 4341–4350 (2020). IEEE. SOCIAL MEDIA SCAMS
246. Al-Hassan, M., Abu-Salih, B., Al Hwaitat, A.: Dspamonto: An
ontology modelling for domain-specific social spammers in
microblogging. Big Data and Cognitive Computing 7(2), 109 (2023).
SOCIAL MEDIA SCAMS
247. Tripathi, A., Ghosh, M., Bharti, K.: Analyzing the uncharted territory
of monetizing scam videos on youtube. Social Network Analysis and
Mining 12(1), 119 (2022). SOCIAL MEDIA SCAMS
248. He, X., Gong, Q., Chen, Y., Zhang, Y., Wang, X., Fu, X.: Datingsec:
Detecting malicious accounts in dating apps using a content-based
attention network. IEEE Transactions on Dependable and Secure
Computing 18(5), 2193–2208 (2021). ROMANCE FRAUD
249. Suarez-Tangil, G., Edwards, M., Peersman, C., Stringhini, G., Rashid,
A., Whitty, M.: Automatically dismantling online dating fraud. IEEE
Transactions on Information Forensics and Security 15, 1128–1137
(2019). ROMANCE FRAUD
250. Lokanan, M.E.: The tinder swindler: Analyzing public sentiments of
romance fraud using machine learning and artificial intelligence.
Journal of Economic Criminology 2, 100023 (2023). ROMANCE
FRAUD
251. Siu, G.A., Hutchings, A., Vasek, M., Moore, T.: “invest in crypto!”:
An analysis of investment scam advertisements found in bitcointalk.
In: 2022 APWG Symposium on Electronic Crime Research (eCrime),
Page 35 of 37
pp. 1–12 (2022). IEEE. FRAUDULENT INVESTMENT
252. Li, K., Guan, S., Lee, D.: Towards understanding and characterizing
the arbitrage bot scam in the wild. Proceedings of the ACM on
Measurement and Analysis of Computing Systems 7(3), 1–29 (2023).
FRAUDULENT INVESTMENT
253. Kuo, C., Tsang, S.-S.: Constructing an investment scam detection
model based on emotional fluctuations throughout the investment
scam life cycle. Deviant Behavior 45(2), 204–225 (2024).
FRAUDULENT INVESTMENT
254. Nizzoli, L., Tardelli, S., Avvenuti, M., Cresci, S., Tesconi, M., Ferrara,
E.: Charting the landscape of online cryptocurrency manipulation.
IEEE access 8, 113230–113245 (2020). CRYPTO MANIPULATION
255. Mirtaheri, M., Abu-El-Haija, S., Morstatter, F., Ver Steeg, G.,
Galstyan, A.: Identifying and analyzing cryptocurrency manipulations
in social media. IEEE Transactions on Computational Social Systems
8(3), 607–617 (2021). CRYPTO MANIPULATION
256. Lee, S., Shafqat, W., Kim, H.-c.: Backers beware: Characteristics and
detection of fraudulent crowdfunding campaigns. Sensors 22(19),
7677 (2022). FRAUDULENT CROWDFUNDING
257. Shafqat, W., Byun, Y.-C.: Topic predictions and optimized
recommendation mechanism based on integrated topic modeling and
deep neural networks in crowdfunding platforms. Applied Sciences
9(24), 5496 (2019). FRAUDULENT CROWDFUNDING
258. Cambiaso, E., Caviglione, L.: Scamming the scammers: Using chatgpt
to reply mails for wasting time and resources. arXiv preprint
arXiv:2303.13521 (2023). SCAMBAITING
259. Bajaj, P., Edwards, M.: Automatic scam-baiting using chatgpt. In:
2023 IEEE 22nd International Conference on Trust, Security and
Privacy in Computing and Communications (TrustCom), pp.
1941–1946 (2023). IEEE. SCAMBAITING
260. Chen, W., Wang, F., Edwards, M.: Active countermeasures for email
fraud. In: 2023 IEEE 8th European Symposium on Security and
Privacy (EuroS&P), pp. 39–55 (2023). IEEE. SCAMBAITING
261. Farzaneh Shahini, D.W., Zahabi, M.: Usability evaluation of police
mobile computer terminals: A focus group study. International
Journal of Human–Computer Interaction 37(15), 1478–1487 (2021).
doi:10.1080/10447318.2021.1894801
262. Zahabi, M., Kaber, D.: Identification of task demands and usability
issues in police use of mobile computing terminals. Applied
Ergonomics 66, 161–171 (2018). doi:10.1016/j.apergo.2017.08.013
263. Ebubekirbbr: Phishing Detection. GitHub.
https://github.com/ebubekirbbr/pdd/tree/master/input (2018)
264. Akash Kumar: Phishing website dataset. https://www.kaggle.com/
datasets/akashkr/phishing-website-dataset#dataset.csv
(2017)
265. Choon Lin Tan: Phishing Dataset for Machine Learning: Feature
Evaluation. https://data.mendeley.com/datasets/h3cgnj8hft/1
(2018)
266. Antony J: Malicious n Non-Malicious URL.
https://www.kaggle.com/datasets/antonyj453/urldataset
(2017)
267. Majestic: Majestic Dataset.
http://downloads.majestic.com/majestic_million.csv
268. URLhaus: URLhaus Database Dump.
https://urlhaus.abuse.ch/downloads/csv/
269. Lilo, J.: Detecting Malicious URL Using Pyspark.
https://github.com/rlilojr/
Detecting-Malicious-URL-Machine-Learning/tree/master
(2018)
270. Mohammad, R.M., Thabtah, F., McCluskey, L.: Predicting phishing
websites based on self-structuring neural network. Neural Computing
and Applications 25, 443–458 (2014)
271. Mohammad, R.M., Thabtah, F., McCluskey, L.: Intelligent rule-based
phishing websites classification. IET Information Security 8(3),
153–160 (2014)
272. Mohammad, R., McCluskey, L.: Phishing Websites. UCI Machine
Learning Repository. DOI: https://doi.org/10.24432/C51W2X (2015)
273. Rao, R.S., Vaishnavi, T., Pais, A.R.: Catchphish: detection of
phishing websites by inspecting urls. Journal of Ambient Intelligence
Papasavva et al. Page 36 of 37

and Humanized Computing 11, 813–825 (2020) tactics and intentions. Decision Support Systems 171, 113977
274. Vrbančič, G.: Phishing Websites Dataset. Mendeley Data. DOI: (2023). PHISHING-Emails
10.17632/72ptz43s9v.1 (2020) 298. El Aassal, A., Baki, S., Das, A., Verma, R.M.: An in-depth
275. Canaadian Institute of Cybersecurity: URL dataset (ISCX-URL2016). benchmarking and evaluation of phishing detection research for
https://www.unb.ca/cic/datasets/url-2016.html (2016) security needs. Ieee Access 8, 22170–22192 (2020)
276. Farsight Inc: Farsight SIE,. https://www.domaintools.com/ 299. Sakkis, G., Androutsopoulos, I., Paliouras, G., Karkaletsis, V.,
resources/user-guides/?_resources_products=sie Spyropoulos, C.D., Stamatopoulos, P.: A memory-based approach to
277. Ariyadasa, S., Fernando, S., Fernando, S.: Phishrepo dataset. anti-spam filtering for mailing lists. Information retrieval 6, 49–73
Mendeley Data. DOI: 10.17632/ttmmtsgbs8.4 (2022) (2003)
278. Lin, Y., Liu, R., Divakaran, D.M., Ng, J.Y., Chan, Q.Z., Lu, Y., Si, 300. Metsis, V., Androutsopoulos, I., Paliouras, G.: Spam filtering with
Y., Zhang, F., Dong, J.S.: Phishpedia: A hybrid deep learning based naive bayes-which naive bayes? In: CEAS, vol. 17, pp. 28–69 (2006).
approach to visually identify phishing webpages. In: 30th USENIX Mountain View, CA
Security Symposium (USENIX Security 21), pp. 3793–3810. USENIX 301. littleRound: 19 Fall Spear Phishing Detection.
Association, ??? (2021). https://www.kaggle.com/c/19fall-spear-phishing-detection/
https://www.usenix.org/conference/usenixsecurity21/presentation/lin (2019)
302. Abhishek Verma: Fraud Email Dataset. https:
279. Feng, J., Zou, L., Ye, O., Han, J.: Web2vec: Phishing webpage //www.kaggle.com/datasets/llabhishekll/fraud-email-dataset
detection method based on multidimensional features driven by deep (2018)
learning. IEEE Access 8, 221214–221224 (2020) 303. Cyber Cop: Phishing Email Detection.
280. Kumar, S.: Detect Malicious URL using ML. https://www.kaggle. https://www.kaggle.com/dsv/6090437 (2023)
com/code/siddharthkumar25/detect-malicious-url-using-ml 304. UCI Machine Learning and Esther Kim: SMS Spam Collection
(2019) Dataset. https://www.kaggle.com/datasets/uciml/
281. Satish Yadav: Phishing Dataset UCI ML CSV. https://www.kaggle. sms-spam-collection-dataset (2016)
com/datasets/isatish/phishing-dataset-uci-ml-csv (2020) 305. Yang, C., Harkreader, R., Gu, G.: Empirical evaluation and new
282. AK., S.: Malicious and Benign Webpages Dataset. PubMed. DOI: design for fighting evolving twitter spammers. IEEE Transactions on
10.1016/j.dib.2020.106304 (2020) Information Forensics and Security 8(8), 1280–1293 (2013)
283. William W. Cohen: Enron Email Dataset. 306. Wu, T., Wen, S., Xiang, Y., Zhou, W.: Twitter spam detection:
https://www.cs.cmu.edu/~enron/ (2020) Survey of new approaches and comparative study. Computers &
284. Dragomir Radev: CLAIR collection of fraud email (Repository). Security 76, 265–284 (2018). doi:10.1016/j.cose.2017.11.013
https://aclweb.org/aclwiki/CLAIR_collection_of_fraud_ 307. Cresci, S., Lillo, F., Regoli, D., Tardelli, S., Tesconi, M.: f ake :
email_(Repository) (2008) Evidenceof spamandbotactivityinstockmicroblogsontwitter.
285. Almeida, T.A., Hidalgo, J.M.G., Yamakami, A.: Contributions to the Proceedings of the International AAAI Conference on Web and Social
study of sms spam filtering: new collection and results. In: Media 12(1) (2018)
Proceedings of the 11th ACM Symposium on Document Engineering, 308. Feng, S., Wan, H., Wang, N., Li, J., Luo, M.: Twibot-20: A
pp. 259–262 (2011) comprehensive twitter bot detection benchmark. In: Proceedings of
286. M Yasser H : Spam Emails Dataset. the 30th ACM International Conference on Information & Knowledge
https://www.kaggle.com/datasets/yasserh/spamemailsdataset Management, pp. 4485–4494 (2021)
(2021) 309. Jain, C.: Training data 2 csv UTF. https://www.kaggle.com/
287. Akashsurya and Gokhan Kul: Phishing Email Collection. datasets/charvijain27/training-data-2-csv-utfcsv (2018)
https://www.kaggle.com/akashsurya156/phishing-paper1 310. Recruitment Scam. https:
(2019) //www.kaggle.com/datasets/amruthjithrajvr/recruitment-scam
288. Hina, M., Ali, M., Javed, A.R., Ghabban, F., Khan, L.A., Jalil, Z.:
Sefaced: Semantic-based forensic analysis and classification of e-mail 311. Yang, Y., Zhang, Y., Zhu, C.: Improved job scam detection methods
data using deep learning. IEEE Access 9, 98398–98411 (2021) using machine learning and resampling techniques. In: 2023 9th
289. Diegoocampoh Ocampo: MachineLearningPhishing. International Conference on Systems and Informatics (ICSAI), pp.
https://github.com/diegoocampoh/MachineLearningPhishing 1–5 (2023). IEEE. RECRUITEMENT FRAUD
(2017) 312. Rayana, S., Akoglu, L.: Collective opinion spam detection: Bridging
290. J Nazario: Nazario Phishing Corpus. review networks and metadata. In: Proceedings of the 21th Acm
https://monkey.org/~jose/phishing/ (2005) Sigkdd International Conference on Knowledge Discovery and Data
291. Androutsopoulos, I., Paliouras, G., Karkaletsis, V., Sakkis, G., Mining, pp. 985–994 (2015)
Spyropoulos, C.D., Stamatopoulos, P.: Learning to filter spam e-mail: 313. Rayana, S., Akoglu, L.: Collective opinion spam detection using active
A comparison of a naive bayesian and a memory-based approach. inference. In: Proceedings of the 2016 Siam International Conference
arXiv preprint cs/0009009 (2000) on Data Mining, pp. 630–638 (2016). SIAM
292. Cormack, G.V., Gómez Hidalgo, J.M., Sánz, E.P.: Spam filtering for 314. Liu, W., He, J., Han, S., Cai, F., Yang, Z., Zhu, N.: A method for the
short messages. In: Proceedings of the Sixteenth ACM Conference on detection of fake reviews based on temporal features of reviews and
Conference on Information and Knowledge Management, pp. 313–320 comments. IEEE Engineering Management Review 47(4), 67–79
(2007) (2019)
293. spamassasin: Index of /old/publiccorpus. 315. Asghar, N.: Yelp dataset challenge: Review rating prediction. arXiv
https://spamassassin.apache.org/old/publiccorpus/ preprint arXiv:1605.05362 (2016)
294. Gholampour, M.P., Verma, R.M.: 316. Ott, M., Cardie, C., Hancock, J.T.: Negative deceptive opinion spam.
IWSPA-2023-Adversarial-Synthetic-Dataset. https://github.com/ In: Proceedings of the 2013 Conference of the North American
ReDASers/IWSPA-2023-Adversarial-Synthetic-Dataset (2023) Chapter of the Association for Computational Linguistics: Human
295. Almeida, T., Hidalgo, J.: SMS Spam Collection. https: Language Technologies, pp. 497–501 (2013)
//archive.ics.uci.edu/dataset/228/sms+spam+collection 317. Eler, M.M., Orlandin, L., Oliveira, A.D.A.: Do android app users care
(2012) about accessibility? an analysis of user reviews on the google play
296. Yerima, S.Y., Bashar, A.: Semi-supervised novelty detection with one store. In: Proceedings of the 18th Brazilian Symposium on Human
class svm for sms spam detection. In: 2022 29th International Factors in Computing Systems, pp. 1–11 (2019)
Conference on Systems, Signals and Image Processing (IWSSIP), pp. 318. Obie, H.O., Hussain, W., Xia, X., Grundy, J., Li, L., Turhan, B.,
1–4 (2022). IEEE Whittle, J., Shahin, M.: A first look at human values-violation in app
297. Bera, D., Ogbanufe, O., Kim, D.J.: Towards a thematic dimensional reviews. In: 2021 IEEE/ACM 43rd International Conference on
framework of online fraud: An exploration of fraudulent email attack Software Engineering: Software Engineering in Society (ICSE-SEIS),
Papasavva et al. Page 37 of 37

pp. 29–38 (2021). IEEE 319. Yelp Open Dataset. https://www.yelp.com/dataset