Technology
Cybercriminals using enterprise-based strategies for phishing
Bengaluru, Nov 4
Cybercriminals are using enterprise-based development and deployment strategies, such as phishing as a service (PaaS), to leverage some of the worlds largest tech brands, with 42.63 per cent of domains observed targeting Microsoft, PayPal, DHL, and Dropbox, a report from Cloud delivery network provider Akamai Technologies said on Monday.
The report also revealed that phishing is no longer just an email-based threat, but has expanded to include social media and mobile devices, creating a wide-reaching problem that touches all industries.
This evolving method continues to morph into different techniques, one of which being business email compromise (BEC) attacks.
According to the FBI, BEC attacks resulted in worldwide losses of more than $12 billion between October 2013 and May 2018.
"Phishing is a long-term problem that we expect will have adversaries continuously going after consumers and businesses alike until personalized awareness training programs and layered defense techniques are put in place," said Martin McKeay, Editorial Director of the State of the Internet/Security report for Akamai.
The report found that cybercriminals are targeting top global brands and their users across various industries through highly-organized and sophisticated phishing kit operations.
During the research period, with 6,035 domains, and 120 kit variations, high technology was the top industry targeted by phishing.
Following that, financial services, with 3,658 domains and 83 kit variants, was the second most-targeted industry. E-Commerce (1,979 domains, 19 kit variants) and media (650 domains, 19 kit variants) rounded out the list. In all, more than 60 global brands were targeted during the reporting period.
According to the report, Microsoft, PayPal, DHL, and Dropbox were the top targeted brands when it came to phishing, with Microsoft taking up 21.88 per cent of total domains (3,897 domains and 62 kit variants), PayPal taking up 9.37 per cent of total domains (14 kit variants), DHL (7 kit variants) taking up 8.79 per cent of total domains and Dropbox having 2.59 per cent (11 kit variants) of total domains.
Sixty per cent of the phishing kits observed were active for 20-days or less during the reporting period, which is becoming more common among phishing attacks.
This short lifespan is likely why criminals continue to develop new evasion methods to keep their kits undetected.
The report also revealed that phishing is no longer just an email-based threat, but has expanded to include social media and mobile devices, creating a wide-reaching problem that touches all industries.
This evolving method continues to morph into different techniques, one of which being business email compromise (BEC) attacks.
According to the FBI, BEC attacks resulted in worldwide losses of more than $12 billion between October 2013 and May 2018.
"Phishing is a long-term problem that we expect will have adversaries continuously going after consumers and businesses alike until personalized awareness training programs and layered defense techniques are put in place," said Martin McKeay, Editorial Director of the State of the Internet/Security report for Akamai.
The report found that cybercriminals are targeting top global brands and their users across various industries through highly-organized and sophisticated phishing kit operations.
During the research period, with 6,035 domains, and 120 kit variations, high technology was the top industry targeted by phishing.
Following that, financial services, with 3,658 domains and 83 kit variants, was the second most-targeted industry. E-Commerce (1,979 domains, 19 kit variants) and media (650 domains, 19 kit variants) rounded out the list. In all, more than 60 global brands were targeted during the reporting period.
According to the report, Microsoft, PayPal, DHL, and Dropbox were the top targeted brands when it came to phishing, with Microsoft taking up 21.88 per cent of total domains (3,897 domains and 62 kit variants), PayPal taking up 9.37 per cent of total domains (14 kit variants), DHL (7 kit variants) taking up 8.79 per cent of total domains and Dropbox having 2.59 per cent (11 kit variants) of total domains.
Sixty per cent of the phishing kits observed were active for 20-days or less during the reporting period, which is becoming more common among phishing attacks.
This short lifespan is likely why criminals continue to develop new evasion methods to keep their kits undetected.
1 hour ago
IPC Houston Fellowship Announces Annual Convention.
3 hours ago
24 News Channel in the forefront to help the revival of Wayanad after landslide tragedy
5 hours ago
Indian Diaspora Excited to Welcome Prime Minister Modi Ahead of U.S. Visit
6 hours ago
Biden Administration Rapidly Allocating Climate Funds as Trump Vows to Cut Them
6 hours ago
Tesla, SpaceX, and X Employees Donate to Harris While Musk Supports Trump
6 hours ago
Biden to Meet Zelenskyy Next Week to Discuss Ukraine War, Says White House
6 hours ago
Woman sentenced to death for blasphemy in Pakistan amid ongoing human rights concerns
6 hours ago
Congress insults India on foreign land, is run by Tukde-Tukde gang, urban naxals": PM Modi
6 hours ago
Hollywood A-listers back Kamala Harris during Oprah show ahead of US polls
6 hours ago
Trump and Republicans Claim Non-Citizen Voting in U.S. Election, Raising Concerns
8 hours ago
Himachal govt to hand over Jangi Thopan Powari hydro project to state power corporation
8 hours ago
Rajasthan govt's amnesty scheme for miners
8 hours ago
India to see 35 lakh weddings from November-mid December, gold demand to surge