Social media phishing attacks up more than 70 percent
Social media phishing, primarily on Facebook and Instagram, has seen a 74.7 percent increase in the first quarter of 2019.
A new report on the current phishing landscape from predictive email defense company Vade Secure also shows that Microsoft has retained its spot as the most impersonated brand for four straight quarters, due to the potentially lucrative returns to be gained from Office 365 credentials.
"It seems like every quarter cybercriminals are upping their game and getting increasingly sophisticated, and Q1 2019 was no exception," says Adrien Gendre, chief solution architect at Vade Secure. "These hackers are now intimately familiar with how both consumer and corporate email users interact with the internet and are constantly evolving their techniques to trick users into clicking malicious links and providing their credentials. Multi-phased attacks are still on the rise as well, so all email users must be sure to keep a critical eye out for phishing and spear phishing emails, and organizations must take a comprehensive approach combining technology and training to protect their employees."
Attackers are also fooling filters by hiding phishing URLs among legitimate ones. In the case of Netflix phishing (the third most impersonated brand), emails sent to targets contained as many as six or seven legitimate Netflix links along with one malicious link.
You can read more about the findings on the Vade Secure blog and you can see the top 25 most phished brands in the graphic below.