Watch out for messages with the word "invoice" in the subject line, too.

Dark Reading Staff, Dark Reading

October 12, 2018

1 Min Read

A new report finds malware, malice, and email messages inextricably bound together in employee inboxes. The tie is so strong that more than 90% of all malware is delivered via email — and that's not the end of the bad news for system managers.

According to the "Cofense State of Phishing Defense 2018" report, the average employee doesn't go two full days between phishing messages, and more than half of those messages come with the word "invoice" in the subject line. Phishing isn't the only danger packaged with the malicious email, either: Twenty-one percent of the email messages flagged as criminal in intent carried malicious attachments along with any phishing or other behavioral malware.

To gather the information, Cofense analyzed more than 135 million phishing simulations, 800,000 reported emails, and nearly 50,000 real phishing campaigns targeting organizations in 23 industries ranging from healthcare and financial services to manufacturing.

Read more here.

BHEURUOPE2018-vplug_Web_Banners_468x60_Sponsor.png

 

Black Hat Europe returns to London Dec 3-6 2018  with hands-on technical Trainings, cutting-edge Briefings, Arsenal open-source tool demonstrations, top-tier security solutions and service providers in the Business Hall. Click for information on the conference and to register.

About the Author(s)

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights