Phishing Email Detection Using Large Language Models
- lab Hugging Face
- location UTC
- location arXiv
- location cs.CR
- model Claude-Sonnet-4
- model GPT-4o
- model Grok-3
- person Shaohu Zhang
A new framework called LLMPEA uses large language models to detect phishing emails with accuracy above 90 percent, according to research posted on arXiv. The study also warns that the same models remain vulnerable to adversarial attacks that exploit their underlying architectures. The paper, authored by Shaohu Zhang and submitted in December 2025, proposes LLMPEA as a detection system designed to counter multiple attack vectors simultaneously, including prompt injection, text refinement, and multilingual phishing campaigns [1][2]. The researchers evaluated three frontier models — GPT-4o, Claude Sonnet 4, and Grok-3 — and found that while detection rates exceeded 90 percent, the systems could still be exploited by coordinated multi-vector attacks [2]. “Current LLMs require substantial hardening before deployment in email security systems,” the authors write, noting that real-world attackers increasingly combine several vulnerabilities in a single campaign [2]. Phishing remains the most prevalent type of cybercrime globally, and its sophistication has grown sharply with the integration of generative AI, which enables automated, hyper-targeted campaigns at scale [4]. The FBI’s Internet Crime Complaint Center has historically ranked phishing at the top of reported cyber intrusions, and phishing attacks against businesses rose from 72 percent in 2017 to 94 percent in 2023 [4]. The LLMPEA study arrives as security researchers grapple with a fundamental tension: the same large language models that can filter malicious emails can also be weaponized to generate them [6]. A separate study, also posted on arXiv, introduced the Trustworthiness Calibration Framework, a methodology for evaluating phishing detectors beyond raw accuracy [3]. That work assessed models across three dimensions — calibration, consistency, and robustness — and found that reliability varies independently of benchmark scores [3]. GPT-4 achieved the strongest overall trust profile among the tested models, followed by LLaMA-3-8B and DeBERTa-v3-base [3]. The finding reinforces the LLMPEA authors’ caution that high detection accuracy alone does not guarantee safe deployment [2][3]. No single anti-spam or anti-phishing technique eliminates the problem entirely; every method involves trade-offs between false positives and false negatives [5]. The LLMPEA framework adds to a growing body of research that seeks to harden LLM-based defenses before they are integrated into production email systems [2][5].
research-papersafety-researchmodel-releasetool-releasecommentary
Background sources we checked (9)
- arxiv.org ↗ Email phishing is one of the most prevalent and globally consequential vectors of cyber intrusion. As systems increasingly deploy Large Language Models (LLMs) applications, these systems face evolving phishing email threats that exploit their fundamental architectures. Current LL…
- arxiv.org ↗ Phishing emails continue to pose a persistent challenge to online communication, exploiting human trust and evading automated filters through realistic language and adaptive tactics. While large language models (LLMs) such as GPT-4 and LLaMA-3-8B achieve strong accuracy in text c…
- en.wikipedia.org ↗ Phishing is a form of social engineering and a scam where attackers deceive people into revealing sensitive information or installing malware such as viruses, worms, adware, or ransomware. Phishing attacks have become increasingly sophisticated and often transparently mirror the …
- en.wikipedia.org ↗ Various anti-spam techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) as opposed to not rejecting all spam email (fal…
- en.wikipedia.org ↗ ChatGPT is a generative artificial intelligence chatbot developed by OpenAI. Originally released in November 2022, the product uses large language models—specifically generative pre-trained transformers (GPTs)—to generate text, speech, and images in response to user prompts. Chat…
- en.wikipedia.org ↗ These datasets are used in machine learning (ML) research and have been cited in peer-reviewed academic journals. Datasets are an integral part of the field of machine learning. Major advances in this field can result from advances in learning algorithms (such as deep learning), …
- en.wikipedia.org ↗ An emoji ( əm-OH-jee; plural emoji or emojis; Japanese: 絵文字, pronounced [emoꜜ(d)ʑi]) is a pictogram, logogram, or ideogram embedded in text and used in electronic messages and web pages. The primary function of modern emoji is to fill in emotional cues otherwise missing from type…
- en.wikipedia.org ↗ Artemis II (April 1–11, 2026) was a crewed flyby of the Moon. It is currently the only crewed flight beyond low Earth orbit since Apollo 17 in 1972, the only crewed flight of the NASA-led Artemis program, the only crewed flight of the Space Launch System (SLS), and the only crewe…
- en.wikipedia.org ↗ This list of most-liked Instagram posts contains the top 20 posts by number of likes on the photo and video-sharing social networking service Instagram. The most-liked post as of June 2026 is of the Argentine footballer Lionel Messi and his teammates celebrating the 2022 FIFA Wor…
Sources
- export.arxiv.org — Phishing Email Detection Using Large Language Models ↗