Student Research Lagniappe
11.21.2025
11:30 AM – 1:30 PM | PFT 1246
Doubly Dangerous: Evading Phishing Reporting Systems by Leveraging Email Tracking Techniques
Abstract
Given the significant threat posed by email as a highly prevalent phishing attack vector, we undertake the first study focused on real-world phishing email reporting systems. Our key idea in performing this study is to repurpose email tracking, a well-known privacy threat vector, for profiling and evading anti-phishing systems employed by popular email services. Our results show that the reporting systems of all major email services we tested are vulnerable to evasive phishing attacks affecting more than 2 billion users worldwide. We propose several countermeasures that email service operators can adopt to help ameliorate this issue in the future. We disclosed our findings to the affected email providers which resulted in remedial changes and a vulnerability reward.
Anish Chand
Lousiana State University
Two Decades of DFRWS: A Longitudinal Analysis of Digital Forensics Research (2002–2025) Using LLMs
Abstract
The Digital Forensic Research Workshop (DFRWS) is the longest-running venue dedicated exclusively to digital forensics, providing a unique vantage point for observing how the field has evolved. While previous bibliometric studies have focused on isolated regions or subdomains, this work presents the first longitudinal analysis encompassing the full DFRWS ecosystem across USA, EU, and APAC venues (2002–2025). Using a hybrid pipeline that combines Large Language Model (LLM)-assisted metadata extraction with manual validation, we analyze N=527 papers to map research evolution and tool practices. Our findings show that approximately 98% of studies are investigator-supportive, with a approx 52:1 ratio of digital forensic to anti-forensic research, and that DFRWS authors created 396 of the 414 newly created tools} (95.7\%), establishing DFRWS as a hub for community-driven software. Trend analysis highlights IoT forensics as a late-emerging area, while AI remains largely applied as a supporting instrument rather than as a primary forensic target. This longitudinal study offers researchers a structured baseline for situating future work, provides practitioners and developers with insights into tool adoption and research gaps, and supports policymakers and educators in aligning training and funding priorities with the evolving trajectory of digital forensic science.
Roohana Karim
Lousiana State University
"Please don't send that bot anything": A Mixed-methods Study of Personal Impersonation Attacks Targeting Digital Payments on Social Media
Abstract
Personal impersonation attacks on social media are an emerging form of social engineering
that exploit trust within interpersonal relationships to redirect digital payments.
Unlike brand impersonation, these attacks target everyday users, leveraging real-time
public interactions to deceive victims into transferring funds to attacker-controlled
accounts. In this paper, we present the first in-depth study of PROSPER (Payment Re-routing
on Social media via Personal Impersonation) attacks, focusing on their operational
tactics, scale, and impact. Using a mixed-methods approach, we tracked 181 PROSPER
attacks over a 3-month period, uncovering 70 distinct digital payment accounts and
revealing human-in-the-loop scam operations alongside automated bots, as well as longstanding
campaigns involving reused payment accounts.
Our quantitative analysis highlights the scale and persistence of these attacks, while
our qualitative analysis provides deeper insights into attacker evasion strategies,
victim targeting methods, and how victims are particularly vulnerable to these schemes.
Based on these findings, we propose actionable recommendations for social media platforms
and payment providers, including UI enhancements, stricter account handle management
policies, and the sharing of blacklist information to mitigate these attacks and protect
users from financial exploitation.
