The year 2023 saw a concerning surge in malicious email threats bypassing secure email gateways (SEGs), with an increase of over 100% as reported by Cofense. This rise in attacks signals a growing trend of cyber threats evolving at an unprecedented pace, posing a challenge to enterprises worldwide.
Over the span of two years, Cofense detected more than 1.5 million malicious emails breaching their customers’ SEGs, marking a 37% increase in threats compared to the previous year and a significant 310% increase from 2021. Each day, at least one malicious email managed to slip past SEGs every 57 seconds, highlighting the urgency for organizations to enhance their email security measures.
In response to the escalating frequency and severity of email attacks, it has become crucial for businesses to educate employees on identifying and reporting suspicious emails, while also deploying robust solutions to detect and address threats that bypass SEGs effectively.
CEO of Cofense, David Van Allen, emphasized the need for a proactive stance against evolving cyber threats in the wake of the 2024 Annual State of Email Security Report. The report underscores the inadequacy of relying on traditional secure email gateways to combat sophisticated phishing campaigns, urging enterprises to adopt a more comprehensive approach to email security.
Phishing attacks continue to be the primary method employed by cybercriminals, accounting for 90% of data breaches originating through email scams targeted at employees. Despite efforts to bolster email security, SEGs struggle to keep up with the evolving tactics of threat actors, as evidenced by a troubling 104.5% increase in malicious emails bypassing these gateways in 2024.
The favored strategy of threat actors, credential phishing, saw a substantial 67% increase in volume compared to the previous year. Moreover, tactics like vishing, smishing, brand impersonation, and QR code phishing have emerged as prevalent methods to evade SEG detection, with a notable spike in QR code active threat reports (ATRs) reported by Cofense.
Industries such as healthcare and finance remain prime targets for malicious emails, with substantial increases in threats bypassing SEGs observed in these sectors. Additionally, the emergence of new malware families like DarkGate and PikaBot underscores the persistent efforts of cybercriminals to exploit vulnerabilities and evade detection.
As organizations grapple with the evolving landscape of cyber threats, staying ahead of the latest trends and tactics is essential to fortify their defenses. Threat actors continue to exploit tactics like brand impersonation and vishing to deceive employees and circumvent SEGs, underscoring the need for heightened vigilance and advanced security measures.
The resurgence of destructive malware like Emotet/Geodo, Snake Keylogger, and FormBook poses significant risks to organizations, as these threats have demonstrated resilience and adaptability in evading detection. Novel phishing tactics leveraging Google AMP emails and conversational-based phishing attacks further complicate the security landscape, necessitating a proactive approach to safeguard sensitive information and mitigate financial losses.
In light of the evolving threat landscape and the increasing sophistication of cyberattacks, organizations must prioritize cybersecurity awareness, employee training, and the adoption of advanced email security solutions to combat malicious email threats effectively. By strengthening their defenses and staying informed about emerging threats, businesses can mitigate the risks posed by cybercriminals and protect their sensitive data from potential breaches.