基于大语言模型的钓鱼邮件检测技术研究

信息安全研究 ›› 2026, Vol. 12 ›› Issue (2): 151-.

基于大语言模型的钓鱼邮件检测技术研究

袁斌1,2杨克涵1邹德清1刘勇3,4张乾坤1

1(华中科技大学网络空间安全学院武汉430074)
2(嵩山实验室郑州452470)
3(中关村实验室北京100190)
4(奇安信集团股份有限公司北京100044)

出版日期:2026-02-07 发布日期:2026-01-28
通讯作者: 张乾坤博士，副研究员.主要研究方向为人工智能安全、在线动态规划. qiankun@hust.edu.cn
作者简介:袁斌博士，副教授.主要研究方向为逻辑漏洞检测、物联网安全. yuanbin@hust.edu.cn 杨克涵硕士.主要研究方向为协议安全、人工智能安全. 2577261040@qq.com 邹德清博士，教授.主要研究方向为软件安全、云安全. deqingzou@hust.edu.cn 刘勇博士，研究员.主要研究方向为云安全、网络安全、数据安全. liuyong@zgclab.edu.cn 张乾坤博士，副研究员.主要研究方向为人工智能安全、在线动态规划. qiankun@hust.edu.cn
基金资助:
国家自然科学基金项目(62372191)；湖北省自然科学基金项目(2023AFB258)；嵩山实验室项目(241110210200)

Research on Phishing Email Detection Based on Large Language Model

Yuan Bin1,2, Yang Kehan1, Zou Deqing1, Liu Yong3,4, and Zhang Qiankun1

1(School of Cyber Science and Engineering, Huazhong University of Science and Technology, Wuhan 430074)
2(Songshan Laboratory, Zhengzhou 452470)
3(Zhongguancun Laboratory, Beijing 100190)
4(Qi An Xin Technology Group Inc, Beijing 100044)

Online:2026-02-07 Published:2026-01-28

摘要/Abstract

摘要： 随着钓鱼邮件数量的迅速增加以及对抗技术的不断演进，传统的钓鱼邮件检测方法在效率和准确性方面面临严峻挑战.为此，提出了一种基于大语言模型(large language model, LLM)的钓鱼邮件检测方法，以解决现有系统检测率低、漏报率高及人机交互性差等问题.通过全面分析钓鱼邮件的关键特征，包括邮件头部字段、正文内容、URL、二维码、附件及HTML页面，利用特征插入算法构建高质量的训练数据集.基于预训练语言模型LLaMA和低秩自适应微调技术(lowrank adaptation, LoRA)，在仅更新0.72%模型参数(约50MB)条件下实现领域知识迁移，获得钓鱼邮件检测大模型.实验结果显示，与传统方法相比，基于大语言模型的检测方法显著提升了检测的准确性与鲁棒性，整体准确率达到94.5%，有效降低了误报率，增强了钓鱼邮件特征的分类与解释能力，提供了更具实用性和可靠性的钓鱼邮件检测方案.

关键词: 钓鱼邮件, 大语言模型, 预训练语言模型, 低秩自适应, 微调

Abstract: With the rapid increase in phishing email volumes and the continuous evolution of adversarial techniques, traditional phishing detection methods have encountered significant challenges regarding efficiency and accuracy. To address issues such as low detection rates, high falsenegative rates, and poor humancomputer interaction in existing systems, the authors proposed a phishing email detection system based on large language model. Through comprehensive analysis of key phishing email characteristics—including header fields, body content, URLs, QR codes, attachments, and HTML pages—they constructed a highquality training dataset using feature insertion algorithms. Building upon the pretrained LLaMA model, the researchers implemented LoRA finetuning technology, achieving domain knowledge transfer by updating only 0.72% of model parameters (approximately 50MB). Experimental results demonstrate that compared to traditional methods, the LLMbased detection approach achieves 94.5% overall accuracy with enhanced robustness, effectively reduces falsepositive rates, improves classification and interpretation capabilities for phishing email features, and provides a more practical and reliable solution for phishing detection.

Key words: phishing email, large language model, pretrained language model, lowrank adaptation, finetuning

中图分类号:

TP393.08

袁斌, 杨克涵, 邹德清, 刘勇, 张乾坤, . 基于大语言模型的钓鱼邮件检测技术研究[J]. 信息安全研究, 2026, 12(2): 151-.

参考文献

［1］Hong J. The state of phishing attacks［J］. Communications of the ACM, 2012, 55(1): 7481［2］Kaspersky. Spam and phishing in 2023［EBOL］. 2023 ［20250401］. https:securelist.comspamphishingreport2023112015［3］金建栋, 黄正, 胡占宇, 等. 基于智能体工作流的高级钓鱼邮件检测方法［J］. 通信学报, 2024, 45(S2): 5968［4］Hajikhani A, Cole C. A critical review of large language models: Sensitivity, bias, and the path toward specialized ai［J］. Quantitative Science Studies, 2024, 5(3): 736756［5］Cranor L F, Lamacchia B A. Spam!［J］. Communications of the ACM, 1998, 41(8): 7483［6］Jakobsson M, Myers S. Phishing and Countermeasures: Understanding the Increasing Problem of Electronic Identity Theft［M］. New York: John Wiley & Sons, 2007［7］Ramachandran A, Feamster N, Vempala S. Filtering spam with behavioral blacklisting［C］ Proc of the 14th ACM Conf on Computer and Communications Security. New York: ACM, 2007: 342351［8］Prakash P, Kumar M, Kompella R R, et al. Phishnet: Predictive blacklisting to detect phishing attacks［C］ Proc of the 29th IEEE Communications Society. Piscataway,NJ: IEEE, 2010: 15［9］Hamid I R A, Abawajy J. Hybrid feature selection for phishing email detection［C］ Proc of the 11th Int Conf on Algorithms and Architectures for Parallel. Berlin: Springer, 2011: 266275［10］Stolfo S J, Hershkop S, Hu C W, et al. Behaviorbased modeling and its application to email analysis［J］. ACM Trans on Internet Technology (TOIT), 2006, 6(2): 187221［11］Fette I, Sadeh N, Tomasic A. Learning to detect phishing emails［C］ Proc of the 16th Int Conf on World Wide Web. New York: ACM, 2007: 649656［12］AbuNimeh S, Nappa D, Wang X, et al. A comparison of machine learning techniques for phishing detection［C］ Proc of the 2nd Annuale Crime Researchers Summit. New York: ACM, 2007: 6069［13］Peng T, Harris I, Sawa Y. Detecting phishing attacks using natural language processing and machine learning［C］ Proc of the 12th IEEE Int Conf on Semantic Computing. Piscataway, NJ: IEEE, 2018: 300301［14］Atawneh S, Aljehani H. Phishing email detection model using deep learning［J］. Electronics, 2023, 12(20): 4261［15］Vinayakumar R, Soman K P, Poornachandran P. Evaluating deep learning approaches to characterize and classify malicious URL’s［J］. Journal of Intelligent & Fuzzy Systems, 2018, 34(3): 13331343［16］Hiransha M, Unnithan N A, Vinayakumar R, et al. Deep learning based phishing email detection［C］ Proc of the 1st AntiPhishing Shared Pilot & 4th ACM Int Workshop on Security and Privacy Analytics (IWSPA). New York: ACM, 2018: 15［17］Cheng V, Li C H. Combining supervised and semisupervised classifier for personalized spam filtering［C］ Proc of the 11th PacificAsia Conf on Knowledge Discovery and Data Mining. Berlin: Springer, 2007: 449456［18］Gao Y, Yang M, Choudhary A. Semisupervised image Spam hunter: A regularized discriminant EM approach［C］ Proc of the 5th Int Conf on Advanced Data Mining and Applications. Beijing: Springer, 2009: 152164［19］文伟平, 朱一帆, 吕子晗，等. 针对品牌的网络钓鱼扩线与检测方案［J］. 信息网络安全, 2023, 23(12): 19［20］Caputo D D, Pfleeger S L, Freeman J D, et al. Going spear phishing: Exploring embedded training and awareness［J］. IEEE Security & Privacy, 2013, 12(1): 2838［21］Gupta B B, Tewari A, Jain A K, et al. Fighting against phishing attacks: State of the art and future challenges［J］. Neural Computing and Applications, 2017, 28(12): 36293654［22］Hutchings A, Clayton R, Anderson R. Taking down websites to prevent crime［C］ Proc of the 11th APWG Symp on Electronic Crime Research (eCrime). Piscataway, NJ: IEEE, 2016: 110［23］Krombholz K, Hobel H, Huber M, et al. Advanced social engineering attacks［J］. Journal of Information Security and Applications, 2015 (22): 113122［24］Vaswani A. Attention is all you need［C］ Proc of the 31st Advances in Neural Information Processing Systems. San Francisco: Curran Associates, 2017: 59986008［25］Kaplan J, McCandlish S, Henighan T, et al. Scaling laws for neural language models［J］. arXiv preprint, arXiv:2001.08361, 2020［26］Devlin J, Chang M W, Lee K, et al. BERT: Pretraining of deep bidirectional transformers for language understanding［C］ Proc of the 2019 Conf on the North American Chapter of the Association for Computational Linguistics: Human Language Technologies.Stroudsburg,PA: ACL, 2019: 41714186［27］秦中元, 王田田, 刘伟强, 等. 大语言模型水印技术研究进展［J］. 信息网络安全, 2025, 25(2): 177193［28］Driess D, Xia F, Sajjadi M S, et al. PaLME: An embodied multimodal language model［J］. arXiv preprint, arXiv:2303.03378, 2023［29］Ulrich A, Holz R, Hauck P, et al. Investigating the openpgp Web of trust［C］ Proc of the 16th European Symp on Research in Computer Security. Berlin: Springer, 2011: 489507［30］Brown T, Mann B, Ryder N, et al. Languagemodels are fewshot learners［C］ Proc of the 2020 Advances in Neural Information Processing Systems. San Diego: Curran Associates, 2020: 18771901［31］Giray L. Prompt engineering with ChatGPT: A guide for academic writers［J］. Annals of Biomedical Engineering, 2023, 51(12): 26292633［32］Touvron H, Lavril T, Izacard G, et al. Llama: Open and efficient foundation language models［J］. arXiv preprint, arXiv:2302.13971, 2023［33］Hu E J, Shen Y, Wallis P, et al. Lora: Lowrank adaptation of large language models［J］. arXiv preprint, arXiv:2106.09685, 2021

[1]	陈世武, 晋钢, 王炜, 杨渝, . 基于大语言模型的网络攻击检测技术研究进展[J]. 信息安全研究, 2026, 12(1): 16-.
[2]	范敏, 张林波, 李展, 燕敬博, 陈亘, 刘丽丽, 董逸天, . 告警研判智能体系统研究[J]. 信息安全研究, 2025, 11(E2): 39-.
[3]	刘楠, 陶源, 陈广勇, . 知识增强预训练语言模型综述[J]. 信息安全研究, 2025, 11(E2): 72-.
[4]	熊海洋, 苏蒙蒙, 王照, 王云, 潘晓华, 郑海斌, 陈晋音, . 大语言模型安全评测与评价体系研究[J]. 信息安全研究, 2025, 11(E2): 89-.
[5]	陈彬, 徐欢, 杜浩文, 农彩勤, 谢娇, 刘雪花, . 大模型在电力系统数据安全风险管理中的应用研究[J]. 信息安全研究, 2025, 11(E2): 100-.
[6]	于洋, 李超, 张晓京, 王琼, 张湘海, 胡振凤, . 基于大语言模型的Overlay网络配置优化方案和实现机制[J]. 信息安全研究, 2025, 11(E2): 112-.
[7]	郭富民, 毛洪亮, 杨菁林, 莫荻, 潘彭丹, . 面向大语言模型的安全测试提示词生成方法[J]. 信息安全研究, 2025, 11(E2): 136-.
[8]	李永刚, 杨宇波, 潘善民, . 基于大模型驱动的自动化漏洞挖掘系统研究[J]. 信息安全研究, 2025, 11(E2): 154-.
[9]	吴威, 周巴特尔, 马远声, 包玉洁, 魏星, . 基于大模型构建的电子数据取证人工智能知识引擎[J]. 信息安全研究, 2025, 11(E2): 295-.
[10]	冯磊, 洪晔, 秦永亮, 黄小凯, . 大语言模型安全评估技术在新型电力系统中的应用思考[J]. 信息安全研究, 2025, 11(E1): 5-.
[11]	曹文斌, 姜国庆, . 基于特征提示的大语言模型判决文书信息要素抽取[J]. 信息安全研究, 2025, 11(E1): 102-.
[12]	陈斌, 谢晓刚, 汤雨婷, . 大语言模型自适应安全测评框架设计与开发[J]. 信息安全研究, 2025, 11(E1): 143-.
[13]	马宁, 张寒雪, 刘继涛, . 基于大语言模型的智能自动化安全运营体系建设研究[J]. 信息安全研究, 2025, 11(E1): 240-.
[14]	赵惠浞, 王智民, 韩剑飞, 苏凯旋, . 与大语言模型交互的API安全网关设计[J]. 信息安全研究, 2025, 11(E1): 248-.
[15]	钱汉伟, 彭季天, 袁明, 高光亮, 刘晓迁, 王群, 朱景羽, . 影响预训练语言模型数据泄露的因素研究[J]. 信息安全研究, 2025, 11(2): 181-.