1
2

Ivana Hartmann Tolić

1

, Mirta Vujnovac

2

,

,

Ivana Hartmann Tolić

1

, Mirta Vujnovac

2

,

1. Faculty of Electrical Engineering, Computer Science and Information Technology Osijek, Kneza Trpimira 2b, 31000 Osijek, Croatia
2. III. Gymnasium Osijek, Kamila Firingera 14, 31000 Osijek, Croatia

1. Faculty of Electrical Engineering, Computer Science and Information Technology Osijek, Kneza Trpimira 2b, 31000 Osijek, Croatia
2. III. Gymnasium Osijek, Kamila Firingera 14, 31000 Osijek, Croatia

Abstract: In recent times, phishing attacks and online identity theft have posed a significant threat to cybersecurity, utilizing fraudulent websites to deceive users into disclosing sensitive data. Phishing is a form of social engineering where attackers disseminate false information via fraudulent websites to deceive victims into disclosing personal data, either to acquire further information or to achieve financial gain. Given the rapid evolution of technology and phishing tactics, coupled with the increasingly frequent exchange of information online, effective methods for detecting fraudulent URLs are essential. The objective of this study was to evaluate the effectiveness of various machine and deep learning models in classifying malicious and legitimate web addresses without analyzing page content. Experimental results demonstrate that convolutional neural networks (CNNs) can achieve an accuracy of up to 98.7%, while ensemble models such as Random Forest and XGBoost also exhibit high accuracy exceeding 96%, thereby significantly outperforming traditional approaches like logistic regression. As phishing strategies continue to evolve, adaptive models such as ensemble learning techniques and deep learning architectures will be pivotal for safeguarding online security and for comprehending the effective mitigation of emerging cyber threats.

Keywords: social engineering, ensemble models, cyber attacks, URL classification, SMOTE

Summary: Phishing attacks have posed a significant threat to cybersecurity in recent years. Phishing is a form of social engineering in which attackers provide misleading information via fake websites in order to trick the victim into disclosing private information to obtain further information or gain a financial advantage. With the rapid development of technology and phishing tactics, access to information and the frequent exchange of information, effective methods for detecting fake URLs are needed. The goal is to evaluate the effectiveness of different models in classifying malicious and legitimate web addresses without analyzing the content of the page. This study aimed to evaluate the effectiveness of various machine learning and deep learning models in classifying malicious and legitimate web addresses without analyzing page content. Experimental results show that convolutional neural networks (CNNs) can achieve accuracy rates of up to 98.7%, while ensemble models such as Random Forest and XGBoost also demonstrate high accuracy, exceeding 96%, significantly outperforming traditional approaches like logistic regression. As phishing strategies continue to evolve, adaptive models such as ensemble learning techniques, deep learning architectures will be fundamental to securing online security and crucial to understanding how to effectively counter emerging cybersecurity threats.

Keywords: Cyber attacks, Ensemble models, SMOTE, Social engineering, URL classification

This work is licensed under Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International.

Received: 10.06.2025.

Accepted: 23.07.2025.

Number of views: 108

Download PDF article

30. April 2026.

Trends and potential of the gig economy in the Republic of Croatia from the perspective of workers

Original scientific paper

30. April 2026.

Material Compensations and Their Impact on Liquidity

Original scientific paper

30. April 2026.

On the Finality and Truthfulness of the Interpretation of Autopoietic Behavior of Competitive Systems in Sports

Preliminary communication

30. April 2026.

Contemporary trends in business economics research methods: from traditional to digital approaches

Review Article

30. April 2026.

Smart Application System for Personalized Medical Care and Cost Optimization

Professional Paper

30. January 2026.

Analysis of the relationship between ownership structure and corporate governance quality in the Republic of Croatia

Original scientific paper

30. January 2026.

Analysis of Business Entity Placement Collection by Banks in the Context of Cybersecurity

Original scientific paper

30. January 2026.

Nihilism in Economic Thought: A Structured Literature Review and Bibliometric Mapping

Review Article

30. January 2026.

Analysis of security threats and protection measures in remote electricity meter reading systems

Review Article

30. January 2026.

Security aspects of knowledge management

Review Article

31. October 2025.

Serious Games on Cybersecurity in the Computer Science Curriculum

Original scientific paper

31. October 2025.

Cybersecurity of Industrial Systems

Professional Paper

31. October 2025.

Artificial Intelligence and Cybersecurity: Employee Attitudes and Challenges for Modern Businesses

Original scientific paper

31. October 2025.

Marketing strategies and security challenges during the launch phase of a digital banking product

Preliminary communication

31. October 2025.

Scientific Mapping and Cybersecurity Research Trends in Economics, Management, and Business

Review Article

31. October 2025.

Smart City Development

Review Article

31. October 2025.

The Role of Cybersecurity in Strengthening Regional Economic Resilience: Institutional and Geopolitical Perspectives

Review Article

31. October 2025.

Comparative analysis of healthcare financing in Croatia compared to EU member states

Original scientific paper

23. July 2025.

IoT device security challenges

Professional Paper

23. July 2025.

Machine Learning for Phishing Detection through URL Analysis

Review Article

23. July 2025.

Building Enterprise Resilience: Addressing Business Crises in the Digital Age

Preliminary communication

23. July 2025.

Ethics on social media

Preliminary communication

23. July 2025.

Analysis of Employment and Contribution of the ICT Sector to the GDP of the European Union and the Republic of Croatia

Preliminary communication

23. July 2025.

Digital Decade and Economic Growth: Quantifying the Benefits of Digital Transformation in the European Union

Preliminary communication

23. July 2025.

Student Perceptions of Digital Game-Based Learning

Original scientific paper

23. July 2025.

An Empirical Study of Machine Learning Approaches for Malicious Attack Detection

Original scientific paper

23. July 2025.

Fiscalization 2.0: Legal Framework, Digital Transformation, and Effects on Micro and Small Entrepreneurs in the Republic of Croatia

Original scientific paper

23. July 2025.

Assessing Cybersecurity Knowledge in High Schools with a Digital Quiz

Original scientific paper

Browse by categories