CISPA Hemlholtz for Info. Sec.
Stuhlsatzenhaus 5
66123 Saarbr├╝cken, Germany


Apr 30, 2024:
Invited to online research talk at Texas A&M

Apr 10, 2024:
Invited Victor Le Pochat from KU Leuven to research talk at CISPA

Feb 24, 2024:
Invited to online research talk at University of New Mexico

Feb 08, 2024:
C-Frame paper accepted to IEEE S&P

Dec 09, 2023:
Conning the Crypto conman paper accepted to IEEE S&P

Nov 26, 2023:
Attending ACM CCS'23 , Copenhagen, Denmark

See archived news

Research Interests

I'm interested in various aspects of applied security, particularly on web and network security. My research aim to contribute to making the internet a safer environment, one step at a time. Below, I delineate several collaborative research topics in which I am currently engaged, collaborating with both external and internal researchers.

Proactive Detection of Scam and Phishing Campaigns.

We often delve into various facets of phishing and scam campaigns that are prevalent in social media platforms, web domains, emails, and apps. We explore how malicious actors manipulate victims into transacting via social engineering tricks which often results into loss of private secrets and sensitive information. We investigate the intricate network of message sharing among scammers across popular social media platforms such as WhatsApp, Facebook, Telegram, and others, which serves as a ideal ground for malicious campaign attacks. Furthermore, we analyze the current landscape of social media based organized campaigns and examine the weakness against safeguarding users and organizations. Finally, based on our findings, we propose and develop a robust defense mechanism to address any identified weaknesses, aiming to fortify the resilience against various phishing and scam threats.

Reveal Scammer's Modus Operandi.

Understanding the strategies employed by online scammers is crucial in combatting scams and phishing attempts on the internet. To uncover these fraudulent schemes, we frequently deploy honeypots designed to attract scammers and engage them through automated chat (LLMs), revealing their strategies and scamming payment methods. Through this approach, we gain valuable analytics that not only enhance our understanding of various web-based attacks but also reveal hidden payment profiles used in scamming, which are often difficult to detect using public metadata.

Tracking Fraud Payment Profiles.

With the rise in phishing attacks, scammers are increasingly drawn to cryptocurrencies due to their enhanced anonymity, making them difficult to trace. Cryptocurrencies like Bitcoin, Monero, and others offer built-in anonymity, facilitating a safer avenue for money laundering by attackers targeting phishing victims. We monitor and offer financial loss data derived from tracking cryptocurrency addresses used in scams. Our ongoing collaborations with industry leaders like PayPal and TRM Labs, the aim is to implement mechanisms for proactive blocking such fraudulent activities, thereby safeguarding web users from future abuse.

For a comprehensive list of publications, kindly navigate to publications. To explore ongoing collaborations within the research lab under my supervision, please visit research lab.