Gianluca Stringhini

Lecturer (Assistant Professor)

University College London

7.02 Malet Place Engineering Building

g.stringhini (at)

Google Scholar Profile
Linkedin Profile
Twitter Profile


I am a Lecturer (Assistant Professor) in the Departments of Computer Science and Security and Crime Science at University College London (UCL). I am affiliated with the Information Security Group and the International Secure Systems Lab.

I received a PhD in Computer Science from University of California, Santa Barbara in 2014. During my PhD I worked in the Computer Security Lab, advised by Professors Christopher Kruegel and Giovanni Vigna.

I was awarded a UCL BEAMS Future Leaders in Engineering and Physical Sciences Award in 2016, a Google Research Award in 2015, the Outstanding Dissertation Award from the Department of Computer Science at UCSB in 2014, and a Symantec Research Labs Graduate Fellowship in 2012.


In my research I apply a data-driven approach to better understanding cybercriminal operations. Through the collection and analysis of large-scale datasets, I develop novel and robust mitigation techniques to protect Internet users.

As examples, recently I have been investigating raids organized by trolls against other Internet users, ransomware, online dating scams, money laundering schemes linked to cybercrime, malware delivery networks, and online social network compromises.

My research is supported by the EPSRC, the EU Commission, Google, and GCHQ.

In 2011, I wrote a document that summarizes the existing research on botnet and spam mitigation. I believe it is a useful reference for those who want to start doing research in these fields.


If you are already a UCL student, here are some examples of past successful final projects that I supervised. If you are interested in working with me, please write me an email.

Understanding Online Carding Forums - MSc in Forensic Sciences, 2015
Analysis and Detection of Clickjacking on Facebook - MEng in Computer Science, 2015
Analysis of the Cutwail Botnet Command and Control Software - BSc in Computer Science, 2015


Kek, Cucks, and God Emperor Trump: A Measurement Study of 4chan's Politically Incorrect Forum and its Effects on the Web

Gabriel Emile Hine, Jeremiah Onaolapo, Emiliano De Cristofaro, Nicolas Kourtellis, Ilias Leontiadis, Riginos Samaras, Gianluca Stringhini, and Jeremy Blackburn. ICWSM, 2017.

PayBreak: Defense against cryptographic ransomware

Eugene Kolodenker, William Koch, Gianluca Stringhini, and Manuel Egele. ASIACCS, 2017.

What's in a Name? Understanding Profile Name Reuse on Twitter

Enrico Mariconti, Jeremiah Onaolapo, Syed Sharique Ahmad, Nicolas Nikiforou, Manuel Egele, Nick Nikiforakis, and Gianluca Stringhini. WWW, 2017.

MaMaDroid: Detecting Android Malware by Building Markov Chains of Behavioral Models

Enrico Mariconti, Lucky Onwuzurike, Panagiotis Andriotis, Emiliano De Cristofaro, Gordon Ross, and Gianluca Stringhini. NDSS, 2017.

What Happens After You Are Pwnd: Understanding The Use of Leaked Webmail Credentials In The Wild

Jeremiah Onaolapo, Enrico Mariconti, and Gianluca Stringhini. ACM SIGCOMM IMC, 2016.

Drops For Stuff: An Analysis Of Reshipping Mules Scams

Shuang Hao, Kevin Borgolte, Nick Nikiforakis, Gianluca Stringhini, Manuel Egele, Michael Eubanks, Brian Krebs, and Giovanni Vigna. ACM CCS, 2015.

EvilCohort: Detecting Communities of Malicious Accounts on Online Services

Gianluca Stringhini, Pierre Mourlanne, Gregoire Jacob, Manuel Egele, Christopher Kruegel, and Giovanni Vigna. USENIX Security Symposium, 2015.


I teach Computer Security 2 in the MSc in Information Security together with Emiliano De Cristofaro.

I teach a course on cybercrime, which is one of the few courses of its kind in the world. In the course we look at cybercriminal operations from an interdisciplinary angle, but focusing on the engineering elements that make them successful. The goal is to get a better understanding of cybercrime and develop better countermeasures to fight it.

I also organize the UCL Computer Science Hacking Seminar, in which UCL students can play with security challenges and gain a better understanding of computer vulnerabilities and how to prevent them.


During term time: 15:00-17:00 on Wednesdays in 7.02 MPEB.


I am currently serving on multiple program committees including the ones for USENIX Security, ACM CCS, WWW, ACSAC, and AsiaCCS.

In the past, I served in the program committees of conferences such as NDSS, DIMVA, ICDCS, and EuroSec. I have also reviewed for prestigious journals such as the IEEE Transactions on Dependable and Secure Systems (TDSC) and ACM Computing Surveys. You can find a complete list of my service here.