PhishLabs Releases 2018 Phishing Trends & Intelligence Report, Highlights Shift From Consumers to Enterprise Attacks

Share Article

The shift to enterprise targeting is an alarming wake up call and indicates a change in threat actor motivations.

PhishLabs, the leading provider of 24/7 managed security services that protect against phishing attacks, today released its 2018 Phishing Trends & Intelligence Report. The in-depth report highlights the latest security research, trends, and tactics that threat actors are employing to impact the phishing threat landscape. Among the key findings, PhishLabs has identified a shift in targeting from consumers to the enterprise.

Download Report Now (https://info.phishlabs.com/2018_phishing_trends_and_-intelligence_report-0)

“The reasoning is simple, and it ultimately comes down to opportunity. Targeting businesses offers cybercriminals more opportunities to cash out on stolen information through selling credentials, gaining access to sensitive or proprietary information for espionage, or individual exploitation,” said Crane Hassold, PhishLabs’ Director of Threat Intelligence.

Threat actors are targeting organizations by impersonating the services that enterprises rely on such as email service providers and Software as a Service (SaaS) platforms. In 2017, email and online services have overtook financial institutions as the most targeted industry, illustrating how pervasive these enterprise phishing attacks have become. 26% of all phishing attacks targeted email and online services.

There was also a sharp increase in phishing sites hosted on HTTPS domains, which now make up more than 30 percent of all phishing sites. Only five percent of phishing sites used HTTPS in 2016. Phishers take advantage of the common misconception that HTTPS means a site is secure and legitimate. This false sense of security is being exploited at a rapidly growing pace.

Additional key findings of the PhishLabs 2017 Phishing Trends & Intelligence Report include:

  • Industry shift shows signs of threat actors switching from primarily targeting individuals to targeting organizations.
  • Email and online services (26% of all attacks) overtook financial institutions (21%) as the top phishing target.
  • Attacks targeting SaaS exploded with more than 237 percent growth.
  • Attacks targeting social media platforms have nearly tripled since last year due to the inherent trust between users and the platform or brand.

The information and analysis contained in the PhishLabs 2018 Phishing Trends and Intelligence Report is sourced from the company’s 24/7 operations and technologies used to fight back against phishing attacks. In 2017, PhishLabs analyzed nearly 1.3 million confirmed malicious phishing sites and mitigated more than 12,000 phishing attacks per month, investigating their underlying infrastructure and shutting them down. The company also tracked and uncovered numerous threat actors, including the recently indicted Mabna Institute hackers.

PhishLabs will host a webinar detailing the report’s key findings on April 26, 2018. During this webinar Hassold will detail why there is a shift from consumers to the enterprise. To attend, register at https://info.phishlabs.com/2018-pti-report-webinar-shift-to-enterprise.

About PhishLabs
Founded in 2008, PhishLabs provides 24/7 managed security services that protect against phishing attacks. PhishLabs is the only company that protects organizations against phishing attacks that target their customers and employees. The company analyzes millions of potential phishing attacks every day, providing global visibility and insight into the phishing threat landscape. PhishLabs’ experts use this visibility and insight to manage phishing awareness training programs, completely mitigate phishing attacks, and provide impactful threat intelligence. Top financial, healthcare, and technology companies rely on PhishLabs to avoid fraud losses, security incidents, and data breaches due to phishing attacks.

To learn more, visit http://www.phishlabs.com and follow @phishlabs.

###
PhishLabs is a registered trademark of Ecrime Management Strategies, Inc., in the United States and other countries. All other brands, products, or service names are or may be trademarks or service marks of their respective owners.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Stacy Shelley
PhishLabs
+1 (843) 329-7824
Email >
Visit website