We seem to discuss phishing attacks quite a lot here at Solutions Review. Is it any surprise? Phishing is still the number one attack vector for hackers and other digital threat actors. Phishing indicates just how much damage your employees can do because of their ignorance of cybersecurity best practices. Enterprises need to strengthen their phishing defense to stand a chance of fortifying themselves against these foes.
Cofense, a phishing defense solution provider, recently released a report entitled “The State of Phishing Defense 2018: Susceptibility, Resiliency, and Response to Phishing Attacks.” The aim of this report is to help enterprises manage their risks by revealing the top phishing attack tactics.
Key findings from the State of Phishing Defense 2018: Susceptibility, Resiliency, and Response to Phishing Attacks by Cofense include:
- Email delivers 92% of malware to enterprises.
- By the end of 2017, the average email user receives 16 malicious emails a month.
- 10% of reported emails in 2018 were malicious.
- More than 50% were credential phishing attacks.
- The top phishing email subject line is “Invoice.” 60% of the most effective phishing campaigns of 2018 involved that subject line.
Aaron Higbee, Co-Founder and CTO of Cofense, said in a statement: “We see phishing emails bypass technology controls every day and more and more end-users recognizing and reporting these threats that slipped past million-dollar defenses. The results of our research detailed in the ‘State of Phishing Defense’ shows that resiliency is building across key industries thanks to those same people that were once deemed as the weakest-links in an organization.”
You can download the full Cofense The State of Phishing Defense 2018: Susceptibility, Resiliency, and Response to Phishing Attacks” Report for free here.
Latest posts by Ben Canner (see all)
- Privacy, Enterprise Risk, and Resilience in 2019 by Cory Cowgill - January 22, 2019
- 76% of Businesses Report SIEM Reduces Security Breaches: AlienVault and Cybersecurity Insiders - January 21, 2019
- The Key Cybersecurity Takeaways From The Recent SEC Charges - January 16, 2019