PhishLabs, a prominent supplier of phishing protection solutions, has distributed its Phishing Tendencies and Intelligence Statement for Q1, 2017.
The statement demonstrates that cybercriminals have altering strategies as well as targets in the 1st quarter of 2017, attacking different trades with different techniques compared to the preceding quarter.
PhishLabs Chief Executive Officer Tony Price said, “The 1rst quarter of 2017 demonstrates just how swiftly the phishing danger landscape can alter as threat actors change who they focus on and in what way.”
Although the healthcare division has been the main goal in 2016, in Q1, 2017 the bulk of phishing attacks were carried out on 5 other industry divisions. PhishLabs informs that 88% of phishing attacks were carried out on webmail/online services, cloud storage/file hosting businesses, e-commerce companies, financial institutions and payment facilities. It’s the latter industry which has seen the largest modification in targeted attacks, recording a 76% rise in phishing attacks year over year.
In the last quarter of 2016, cloud storage suppliers were severely targeted, even though phishers are now preferring other trades. Phishing attacks on cloud storage suppliers decreased by 25% quarter over quarter.
There was also a marked increase in the number of phishing attacks in Q1, 2017, with 20% more phishing emails sent than in the previous quarter.
The 1st quarter of 2017 witnessed a surge in phishing attacks on companies with the objective of getting the tax information of workers, even though PhishLabs informs there was a 63% drop in Internal Revenue Service phishing cheats as compared to the first quarter of 2016.
Phishing attacks aiming social media users have also been rising markedly whereas SaaS businesses are progressively coming under attack, recording 3 times the number of attacks as compared to Q1, 2016.
More businesses have begun using SSL credentials on their sites; nevertheless, phishers are also changing to SSL. 10% of all phishing websites recognized in Q1, 2017 had SSL credentials. Simply because a website begins with HTTPS it doesn’t mean the website is legitimate and isn’t a phishing site.
The information for the phishing tendencies and intelligence information was found from the firm’s intelligence software program. PhishLabs examined over 143,000 confirmed malevolent sites that were being utilized for phishing attacks in the 1st quarter of 2017 only and was capable to stop 25,000 phishing attacks.