Jump to content

APWG Q3 Report: Phishing Attacks at Highest Level in Three Years


steven36

Recommended Posts

CAMBRIDGE, Mass.--(BUSINESS WIRE)-- Brands Under Siege Rise to More Than 400 in Q3 2019

126239507_apwg-2014-2.jpg

According to the APWG’s new Phishing Activity Trends Report, the number of phishing attacks continued to rise into the autumn of 2019. The total number of phishing sites detected by APWG in July through September 2019 was 266,387. This was up 46 percent from the 182,465 seen in the second quarter of 2019, and almost double the 138,328 seen in Q4 2018.

 

“This is the worst period for phishing that the APWG has seen in three years, since the fourth quarter of 2016,” said Greg Aaron, APWG Senior Research Fellow and President of Illumintel Inc.

 

In addition to the increase in phishing volume, the number of brands that were attacked by phishers in Q3 was also up notably. APWG contributor MarkMonitor saw attacks against more than 400 different brands (companies) per month in Q3, versus an average of 313 per month in Q2. Stefanie Wood Ellis, Anti-Fraud Product & Marketing Manager at MarkMonitor, noted: “The top targeted industries are largely consistent with previous quarters. Webmail and SaaS sites remained the biggest targets of phishing.”

 

Meanwhile, “Business e-mail compromise” or BEC scams remained highly damaging. These attacks target employees who have access to company finances or valued data assets, usually by sending them email from fake or compromised email accounts (a “spear phishing” attack). According to APWG contributing member Agari, 40 percent of BEC attacks use a domain name registered by a scammer. These domains are often variations of a trusted, existing company name, meant to fool unwary victims. In the third quarter, attacks involving wire transfers from victims were for an average of $52,325.

 

Also in this quarter’s Trends report: APWG member RiskIQ analyses where phishers register domain names; APWG contributor Axur documents rising phishing levels in Brazil; and researchers at APWG member PhishLabs document the rising use of SSL certificates on phishing web sites.

 

The full text of the Q3 2019 report is available here: https://docs.apwg.org/reports/apwg_trends_report_q3_2019.pdf

 

APWG’s researchers, directors, steering committee and correspondents will be meeting at their annual research and industrial operations eCrime symposium at Carnegie Mellon next week (Nov. 13-16) in Pittsburgh, to consider these and other insights into cybercrime’s evolution - and the evolving role of the cybercrime responder:

 

https://apwg.org/ecrime2019/

 

This year’s symposium posits the theme, “Cybercrime Suppression Via Globalized Response Infrastructure Development and Reinforcement”:

 

https://www.businesswire.com/news/home/20191021005235/en/APWG-eCrime-2019-Symposium-Proposes-Cybercrime-Suppression

 

About the APWG

Founded in 2003, the Anti-Phishing Working Group, (APWG) is the global industry, law enforcement, and government coalition focused on unifying the global response to electronic crime.

 

Source

Link to comment
Share on other sites


  • Views 258
  • Created
  • Last Reply

Archived

This topic is now archived and is closed to further replies.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...