Table of Contents
Fetching ...

An LLM Agent-based Framework for Whaling Countermeasures

Daisuke Miyamoto, Takuji Iimura, Narushige Michishita

TL;DR

The paper introduces an LLM agent–based defense framework to counter Whaling targeting university faculty. By reversing attacker architectures, it builds offline Personalised Vulnerability Profiles (PVPs), Whaling risk scenarios, and Personalized Defense Profiles (PDPs), which are then applied in an online risk-assessment agent to analyze incoming emails. The approach emphasizes transparency, context-sensitivity, and alignment with internal workflows, demonstrated through a preliminary study involving two participants and toy emails. The work highlights practical deployment challenges, ethics considerations, and future directions toward broader validation and integration with CSIRT operations. Overall, the framework provides a structured, explainable, and reusable defense mechanism for high-value academic targets against AI-enhanced social engineering.

Abstract

With the spread of generative AI in recent years, attacks known as Whaling have become a serious threat. Whaling is a form of social engineering that targets important high-authority individuals within organizations and uses sophisticated fraudulent emails. In the context of Japanese universities, faculty members frequently hold positions that combine research leadership with authority within institutional workflows. This structural characteristic leads to the wide public disclosure of high-value information such as publications, grants, and detailed researcher profiles. Such extensive information exposure enables the construction of highly precise target profiles using generative AI. This raises concerns that Whaling attacks based on high-precision profiling by generative AI will become prevalent. In this study, we propose a Whaling countermeasure framework for university faculty members that constructs personalized defense profiles and uses large language model (LLM)-based agents. We design agents that (i) build vulnerability profiles for each target from publicly available information on faculty members, (ii) identify potential risk scenarios relevant to Whaling defense based on those profiles, (iii) construct defense profiles corresponding to the vulnerabilities and anticipated risks, and (iv) analyze Whaling emails using the defense profiles. Furthermore, we conduct a preliminary risk-assessment experiment. The results indicate that the proposed method can produce judgments accompanied by explanations of response policies that are consistent with the work context of faculty members who are Whaling targets. The findings also highlight practical challenges and considerations for future operational deployment and systematic evaluation.

An LLM Agent-based Framework for Whaling Countermeasures

TL;DR

The paper introduces an LLM agent–based defense framework to counter Whaling targeting university faculty. By reversing attacker architectures, it builds offline Personalised Vulnerability Profiles (PVPs), Whaling risk scenarios, and Personalized Defense Profiles (PDPs), which are then applied in an online risk-assessment agent to analyze incoming emails. The approach emphasizes transparency, context-sensitivity, and alignment with internal workflows, demonstrated through a preliminary study involving two participants and toy emails. The work highlights practical deployment challenges, ethics considerations, and future directions toward broader validation and integration with CSIRT operations. Overall, the framework provides a structured, explainable, and reusable defense mechanism for high-value academic targets against AI-enhanced social engineering.

Abstract

With the spread of generative AI in recent years, attacks known as Whaling have become a serious threat. Whaling is a form of social engineering that targets important high-authority individuals within organizations and uses sophisticated fraudulent emails. In the context of Japanese universities, faculty members frequently hold positions that combine research leadership with authority within institutional workflows. This structural characteristic leads to the wide public disclosure of high-value information such as publications, grants, and detailed researcher profiles. Such extensive information exposure enables the construction of highly precise target profiles using generative AI. This raises concerns that Whaling attacks based on high-precision profiling by generative AI will become prevalent. In this study, we propose a Whaling countermeasure framework for university faculty members that constructs personalized defense profiles and uses large language model (LLM)-based agents. We design agents that (i) build vulnerability profiles for each target from publicly available information on faculty members, (ii) identify potential risk scenarios relevant to Whaling defense based on those profiles, (iii) construct defense profiles corresponding to the vulnerabilities and anticipated risks, and (iv) analyze Whaling emails using the defense profiles. Furthermore, we conduct a preliminary risk-assessment experiment. The results indicate that the proposed method can produce judgments accompanied by explanations of response policies that are consistent with the work context of faculty members who are Whaling targets. The findings also highlight practical challenges and considerations for future operational deployment and systematic evaluation.
Paper Structure (23 sections, 1 figure)

This paper contains 23 sections, 1 figure.

Figures (1)

  • Figure 1: Design of the offline analysis. The figure illustrates how PVPs, risk scenarios, and PDPs are constructed from a target's name, organization, and publicly available information obtained via OSINT.