Phishing up 36 percent in the last quarter of 2022 as attack tools get more sophisticated

By Ian Barker
Published 1 year ago

Phishing volumes increased 36 percent, with 278.3M unique phishing emails in the fourth quarter of 2022, while malware volumes increased 12 percent QoQ, accounting for 58.9M emails, in the same period.

The latest Phishing and Malware Report from Vade shows the company detected 278.3 million unique phishing emails in Q4, surpassing the previous quarter’s total by 74.4 million. December saw the biggest jump in phishing emails, up 260 percent, as threat actors tried to cash in on the holiday period, this echoes a similar pattern at the end of 2021.

Major brands continue to be prime targets for the second consecutive quarter, Facebook is the most impersonated brand with more than 6,700 unique phishing URLs in Q4, followed by Microsoft, PayPal, Google, and Netflix. There's also an increasing number of phishing attacks targeting popular productivity applications like Microsoft 365 and Google Workspace.

Looked at by industry, financial services is once again the most impersonated industry, representing 29 percent of phishing pages, followed by social media (24 percent), cloud (19 percent), Internet/telco (15 percent), eCommerce/logistics (11 percent), and government (one percent).

Vade analysts have also identified a recent enhancement that enables phishing kits to automatically localize phishing pages based on a victim's native language. The feature identifies the language settings of the targeted user’s browser and uses it to update and display the phishing page accordingly. While improving the contextual accuracy of each phishing attack, the new feature also enables hackers to target users across multiple languages using a single kit, increasing the reach of their campaigns.

There's evidence too that AI tools like ChatGPT are being weaponized in order to overcome the grammatical and other errors that have historically plagued phishing emails making them easier to spot.

Phishing up 36 percent in the last quarter of 2022 as attack tools get more sophisticated

Recent Headlines

The psychological impact of phishing attacks on your employees

Canonical releases Ubuntu Linux 24.04 LTS 'Noble Numbat'

New tool lets enterprises build their own secure gen AI chatbots

Younger women are going into cybersecurity but more needs to be done

Politically motivated DDoS attacks on the rise

TCL 50 XL 5G Android smartphone hits Metro by T-Mobile: Big features, small price

The increasing sophistication of synthetic identity fraud

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.0 'pl'

The stunning Windows 13 -- yes, 13! -- is the Microsoft operating system we want

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

Outrageous: Microsoft to charge $61 for Windows 10 updates -- consider switching to Linux!

Microsoft releases preview version of Office 2024 for Windows and macOS -- download it now!

Easter giveaway! Get a licensed copy of 'VideoProc Converter for Windows/Mac' (worth $78.90) for FREE