Communication between people is no longer subject to the limitations of space with the popularity of Internet, communication technology, and smart phones. Because of convenient communication facilities, the increasing spread of phishing website based on deceiving human is more flooded through Internet communication tools. That makes users carelessly give away confidential personal information to perpetrators as another crime. The study focused on phishing crime in Taiwan and the purpose was to provide a reference to investigate and prevent such crimes in the future. The survey used qualitative analysis with case studies and in-depth interviews. The data that phishing case investigated by Taiwan police was collected and experienced detectives were interviewed. The phishing bait and spread technique was founded and further generalized to three phishing types: disguising agency website, setting up fake websites and spreading malware linkage. It was also acknowledged that the difficulties with investigation of phishing crime were cross-border link sources and unlinked victim evidences. The study findings may serves as effective countermeasures and recommendations in investigation and prevention on cyber phishing.
Keywords: cyber phishing, phishing website, social engineering