Systematic Literature Review: Anti-Phishing Defences and Their Application to Before-the-click Phishing Email Detection. (arXiv:2204.13054v1 [cs.CR])

Most research into anti-phishing defence assumes that the mal-actor is
attempting to harvest end-users' personally identifiable information or login
credentials and, hence, focuses on detecting phishing websites. The defences
for this type of attack are usually activated after the end-user clicks on a
link, at which point the link is checked. This is known as after-the-click
detection. However, more sophisticated phishing attacks (such as spear-phishing
and whaling) are rarely designed to get the end-user to visit a website.
Instead, they …

anti-phishing application detection email phishing review