Email Phishing Still The Main Way In For Hackers: Report
CSO Online, Tuesday, August 15,2023
Phishing emails are still the primary initial attack vector for cybersecurity incidents, according to a report from Cloudflare.
Email phishing remains one of the most dangerous vectors for organizational cyberattacks, as well as one of the most difficult to defend against, with deceptive links, brand impersonation and other phishing threats sharply on the rise.
A study published Tuesday by web services and security vendor Cloudflare, which analyzed 250 million malicious email messages sent between May 2022 and May 2023, found that deceptive links accounted for over a third of all detected threats -- 35.6%. Scammers have become increasingly skilled at making their messages appear legitimate, appropriating graphics and formatting used by legitimate senders. The consequences of clicking a malicious link can range from credential harvesting, if a user enters them on an attacker-controlled landing page, remote code execution, and network compromise.