KnowBe4, a leading provider of Security Awareness Training, has recently released its Phishing Threat Trend Report, shedding light on the latest trends, data, and insights regarding phishing threats targeting organizations in early 2025.
The report, based on data compiled by KnowBe4 Defend, highlights the increasing menace of ransomware and delves into how cybercriminals are employing advanced tactics to circumvent native security measures and secure email gateways (SEGs). It also analyzes the use of artificial intelligence (AI) in creating polymorphic phishing campaigns, the infiltration of the hiring process by attackers to gain access to critical systems and data, and the growing success rate of attacks in evading traditional defenses.
The findings from the report are staggering. Between September 15, 2024, and February 14, 2025, there was a 17.3% surge in phishing emails compared to the preceding six months. Over 82.6% of all phishing emails analyzed demonstrated some level of AI utilization. Ransomware payloads saw a significant 22.6% increase, while the detection evasion rates for phishing hyperlinks, malware, and social engineering tactics spiked by 36.8%, 20%, and 14.2%, respectively, in comparison to the previous six-month period. Moreover, attacks transmitted from compromised accounts also witnessed a sharp 57.9% rise in successful penetrations through traditional detection mechanisms.
The report further identifies the top five legitimate platforms exploited by cybercriminals to send phishing emails, including DocuSign, Paypal, Microsoft, Google Drive, and Salesforce. Notably, popular brands such as Microsoft, Docusign, Adobe, Paypal, and LinkedIn are the most impersonated entities by scammers.
Of particular concern is the prevalence of polymorphic phishing tactics, now present in 76.4% of all phishing campaigns, aiming to thwart conventional security measures by employing AI-generated variations. Ransomware payloads in phishing attacks have escalated by 22.6% over six months, with a considerable 57.5% surge in just three months, as exemplified by a sophisticated INC Ransom payload intercepted by KnowBe4 Defend. Additionally, the research underscores the heightened focus of cybercriminals on the hiring process, with 64% of attacks targeting engineering roles to exploit their privileged access to vital systems and data.
Jack Chapman, the Senior Vice President of Threat Intelligence at KnowBe4, emphasized the rapid evolution of phishing threats and defenses, stressing the need for a comprehensive approach that blends technical safeguards with human risk management. He foresees continued evolution in both phishing threats and defense strategies throughout 2025, stressing the importance of cultivating a robust security culture through detection, awareness, education, and adaptive technology.
The Phishing Threat Trends Report, Vol 5, is now available for download, providing valuable insights into the evolving landscape of cyber threats. This report comes on the heels of a previous study by KnowBe4 highlighting the vulnerability of the education sector to escalating cyberattacks.
In conclusion, the insights from KnowBe4’s latest report underscore the urgent need for organizations to stay vigilant against sophisticated phishing tactics and embrace a multi-faceted approach to cybersecurity. The evolving nature of cyber threats demands continuous adaptation and a strong emphasis on education and awareness to combat the ever-evolving tactics employed by cybercriminals.