The Evolution of Phishing and Future Directions: A Review

Authors

DOI:

https://doi.org/10.34190/iccws.20.1.3366

Keywords:

Phishing, Spear phishing, Smishing, Whaling, Cybersecurity

Abstract

Phishing has emerged as one of the most persistent and evolving threats in cybersecurity. Its development from simple email scams to highly sophisticated and targeted attacks has been driven by technological advancements, the rise of social media, and the increasing availability of personal data online. This paper provides a comprehensive review of the evolution of phishing, examining key milestones in its history, current trends, and future directions. Emphasis is placed on the integration of emerging technologies such as artificial intelligence (AI) and machine learning (ML), the role of phishing-as-a-service (PhaaS) platforms, and the challenges posed by deepfake phishing and the Internet of Things (IoT). The paper concludes by discussing potential strategies for combating these evolving threats and proposes future research directions to enhance phishing detection and prevention mechanisms. Additionally, the study examines the growing intersection between phishing attacks and state-sponsored cyber operations, highlighting the increasing sophistication of threat actors and their exploitation of geopolitical events for targeted campaigns. The research also addresses the critical need for adaptive defense mechanisms that can respond to the rapid evolution of attack vectors while maintaining usability for legitimate users.

Author Biographies

Jude Osamor, Glasgow Caledonian University

Dr. Jude Osamor is a dedicated researcher and academic specializing in Cybersecurity. His research focuses on security operations, digital forensics, and malware analysis, and he has contributed to various publications and conferences through his industry and academic affiliations. Passionate about innovation, he explores emerging cybersecurity challenges while mentoring aspiring scholars and collaborating on cutting-edge research projects.

Moses Ashawa, Glasgow Caledonian University

Dr. Moses Aprofin Ashawa is a Lecturer in Cyber Security at the School of Computing, Engineering, and Built Environment. With industrial and academic experience, he holds a PhD from Cranfield University. His research focuses on cybersecurity, machine learning, digital forensics, malware analysis, e-governance, and ethical hacking.

Alireza Shahrabi, Glasgow Caledonian University

Dr. Alireza Shahrabi, a Reader at Glasgow Caledonian University, holds a PhD from the University of Glasgow. His research focuses on network protocols, wireless and sensor networks, and performance modeling of distributed systems. He has published extensively and served on editorial boards and conference committees.

Anand Philip, Glasgow Caledonian University

Anand Philip, Head of the Department of Cybersecurity and Networks at GCU, is a Senior Lecturer with over a decade of experience. He has led undergraduate programs and advises on learning and teaching. He holds a PhD in SDN modeling and is certified in industry technologies and a Senior Fellow in advanced higher education.

Celestine Iwendi

Celestine Iwendi is an IEEE Brand Ambassador, Professor of Artificial Intelligence, and Head of the Centre of Intelligence of Things (CIoTh) at the University of Greater Manchester, Bolton, UK. With a PhD in Electronics Engineering and 25+ years of expertise in AI, ML, IoT, and wireless sensor networks, he is globally recognized, featured in Elsevier’s Top 2% Scientists list, and a Royal Academy of Engineering Exceptional Talent awardee. A Visiting Professor at five universities, he is the IEEE ComSoc Distinguished Lecturer, and an Ambassador in the Manchester Conference Ambassador Programme.

Downloads

Published

24-03-2025

Issue

Vol. 20 No. 1 (2025): Proceedings of the 20th International Conference on Cyber Warfare and Security (ICCWS 2025)

Section

Academic Papers

License

Copyright (c) 2025 Jude Osamor, Moses Ashawa, Alireza Shahrabi, Anand Philip, Celestine Iwendi

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.