Phishing attacks rise 400% in latest quarter

Cyber criminals target human error to steal large amounts of money

Corporate phishing emails have increased by 400% over the last quarter, according to the latest research. 

Mimecast's study of 44,000 business users' inbound email found that these attacks, in which cyber criminals impersonate C-level executives, business partners, or employees, are being exploited at an alarming rate, with the aim of duping recipients into initiating wire transfers and sending back other sensitive data that could lead to a significant financial loss.

The Mimecast Email Security Risk Assessment (ESRA) measured the effectiveness of email security systems currently in use by thousands of organisations worldwide, and its second quarterly assessment, released today, found that spam and various attacks continue to get through incumbent email security systems.

It also uncovered almost nine million pieces of spam, 8,318 dangerous file types, 1,669 known and 487 unknown malware attachments and 8,605 impersonation attacks. 

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

The firm said this data "reinforces the concerning reality that the industry must work towards a higher standard of email security, as 90% of attacks start with email. In general, organisations everywhere are struggling with prolific ransomware attacks, like Locky [ransomware]."

"Cyber criminals are constantly adapting their attack methods. For instance, this latest ESRA analysis reflects how impersonation attacks are getting through existing email security defences at an alarming rate. If a CISO isn't reviewing its current email security solution on a 12 to 18-month basis, they may be surprised at what threats are now getting into employees' inboxes," said Ed Jennings, chief operating officer at Mimecast.

"At the same time, email security providers need to ensure they're doing their due diligence to protect customers from new attacks, whether they be advanced or simple. The Mimecast ESRA results show a clear need for the security industry to come together in the fight against email-borne threats."

Featured Resources

What you need to know about migrating to SAP S/4HANA

Factors to assess how and when to begin migration

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

Testing for compliance just became easier

How you can use technology to ensure compliance in your organisation

Download now

Best practices for implementing security awareness training

How to develop a security awareness programme that will actually change behaviour

Download now
Advertisement

Recommended

Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/policy-legislation/data-governance/354496/brexit-security-talks-under-threat-after-uk-accused-of
data governance

Brexit security talks under threat after UK accused of illegally copying Schengen data

10 Jan 2020
Visit/security/cyber-security/354468/if-not-passwords-then-what
cyber security

If not passwords then what?

8 Jan 2020
Visit/web-browser/30394/what-is-http-error-503-and-how-do-you-fix-it
web browser

What is HTTP error 503 and how do you fix it?

7 Jan 2020
Visit/policy-legislation/31772/gdpr-and-brexit-how-will-one-affect-the-other
Policy & legislation

GDPR and Brexit: How will one affect the other?

9 Jan 2020