What are the emerging trends in Phishing?

Phishing Attacks via phishing emails and bogus domains impersonate companies or enterprises. Hackers are constantly evolving their tactics and developing their methods of assault to retain an advantage, rendering their actions more difficult to detect.

Several of the phishing trends are:

  1. Attacks Targeting your Saas Credentials

    Some attacks also targeted financial accounts until this year, searching for credit card numbers or banking information. The biggest phishing target of financial institutions was email and online services such as Office 365 and G Suite.

  2. Attacks sent through messaging apps

    In 2019, there is an increase in email-free attacks. Slack, Teams, Messenger Facebook and other communications apps have become popular phishing vectors.

  3. Phishing inside of shared files

    Because most email systems are searching for email for a malicious link, hackers are now embedding it into shared documents and publishing it on trusted sites such as Box, G Suite, and Dropbox.

  4. Geographically Accessible Phishing

    In a geographic location, reaching a specific audience is on the rise. Many phishing attempts, for instance, can only be accessed on an India mobile device and only on other networks.

  5. Interactive threats by the BEC Phishing

    There is a trend in so-called Business Email Compromise attacks where nothing can be opened in the email. These are different from traditional assaults because they contribute to immersive dialogs with the intruder in real-time.

  6. HTTPS Encryption

    In addition to targeting users in familiar territory, attackers launch safety signposts from the internet to create their victims ‘ confidence. Cybercriminals, in particular, manipulate HTTPS, to trick users into a false sense of security. 58% of all phishing operations are projected to use HTTPS.

  7. Malicious Sub-domains

    Hackers create sub-domains that make real websites impersonate. Not too long ago, attackers used a fake mobile-only subdomain to manipulate the homepage of a major airline. Since the subdomain could only be accessed through mobile devices. As a result, consumers are tricked into believing that they were using the official mobile site of the airline.

TIKAJ offers Anti-Phishing Detection and Mitigation Solution which can help in keeping your organization safe from new threats and attacks.

Scroll to top