Phishing attacks rise 400% in latest quarter
Cyber criminals target human error to steal large amounts of money
Corporate phishing emails have increased by 400% over the last quarter, according to the latest research.
Mimecast's study of 44,000 business users' inbound email found that these attacks, in which cyber criminals impersonate C-level executives, business partners, or employees, are being exploited at an alarming rate, with the aim of duping recipients into initiating wire transfers and sending back other sensitive data that could lead to a significant financial loss.
The Mimecast Email Security Risk Assessment (ESRA) measured the effectiveness of email security systems currently in use by thousands of organisations worldwide, and its second quarterly assessment, released today, found that spam and various attacks continue to get through incumbent email security systems.
It also uncovered almost nine million pieces of spam, 8,318 dangerous file types, 1,669 known and 487 unknown malware attachments and 8,605 impersonation attacks.
The firm said this data "reinforces the concerning reality that the industry must work towards a higher standard of email security, as 90% of attacks start with email. In general, organisations everywhere are struggling with prolific ransomware attacks, like Locky [ransomware]."
"Cyber criminals are constantly adapting their attack methods. For instance, this latest ESRA analysis reflects how impersonation attacks are getting through existing email security defences at an alarming rate. If a CISO isn't reviewing its current email security solution on a 12 to 18-month basis, they may be surprised at what threats are now getting into employees' inboxes," said Ed Jennings, chief operating officer at Mimecast.
"At the same time, email security providers need to ensure they're doing their due diligence to protect customers from new attacks, whether they be advanced or simple. The Mimecast ESRA results show a clear need for the security industry to come together in the fight against email-borne threats."
Get the ITPro. daily newsletter
Receive our latest news, industry updates, featured resources and more. Sign up today to receive our FREE report on AI cyber crime & security - newly updated for 2024.
Rene Millman is a freelance writer and broadcaster who covers cybersecurity, AI, IoT, and the cloud. He also works as a contributing analyst at GigaOm and has previously worked as an analyst for Gartner covering the infrastructure market. He has made numerous television appearances to give his views and expertise on technology trends and companies that affect and shape our lives. You can follow Rene Millman on Twitter.