Safety consultants have reported a 341% enhance in malicious phishing hyperlinks, enterprise e-mail compromise (BEC), QR code and attachment-based threats up to now six months.
This knowledge comes from SlashNext’s mid-year The State of Phishing 2024 report, which additionally recognized an 856% enhance in malicious e-mail and messaging threats over the earlier 12 months. For the reason that launch of ChatGPT in November 2022, there was a 4151% surge in malicious phishing messages.
“A foul actor can make the most of ChatGPT in various methods, together with to create convincing phishing emails,” warned Darren Guccione, CEO and co-founder at Keeper Safety.
“Not solely can the instruments assist unhealthy actors create content material comparable to a plausible phishing e-mail or malicious code for a ransomware assault, however they’ll accomplish that shortly and simply. The least-defended organizations can be notably weak, as the quantity of assaults will doubtless proceed to extend.”
Learn extra on the affect of generative AI on cybersecurity: Self-Propagating Worm Created to Goal Generative AI Programs
The report additionally recognized a 217% enhance in credential harvesting phishing assaults and a 29% rise in BEC assaults over the previous six months.
CAPTCHA-based assaults are additionally growing, with attackers utilizing CloudFlare’s CAPTCHAs to hide credential harvesting varieties.
Moreover, cybercriminals are exploiting trusted companies like Microsoft SharePoint, AWS and Salesforce to cover phishing and malware. QR code-based assaults now account for 11% of all malicious emails, usually built-in into reliable infrastructures.
“For defense, [consumers] ought to obtain instruments to their laptops, desktops and cell units to assist determine malicious emails,” mentioned Krishna Vishnubhotla, vice chairman of product technique at Zimperium. “This can be a good place to begin. As soon as that’s finished, the actual work begins, which incorporates creating higher cyber hygiene.”