The latest results of KnowBe4's quarterly top-clicked phishing email subjects are in. We report on three different categories: social media related subjects, general subjects, and 'in the wild' attacks .
Faked LinkedIn Messages Remain Top Social Media Ploy
Phishing emails that look like they are coming from LinkedIn have been at the top of the list since we began tracking these in 2017. There is likely a perception that these emails are legitimate because they appear to be coming from a professional network. It's a significant problem because many LinkedIn users have their accounts tied to their corporate email addresses. Top-clicked subjects in this category reveal password resets, tagging of photos and new messages. Free pizza is back after not being on the list in nearly two years.
Coronavirus-Themed Phishing Emails Are Rampant
The results found that phishing email attacks related to COVID-19 remained frequent in Q2 2020. Covering the entire second quarter, simulated phishing tests with a message related to the coronavirus were the most popular, with a total of 56%.
“It’s no surprise that phishers and scammers are using the avalanche of new information and events involving the global coronavirus pandemic as a way to successfully phish more victims,” said Stu Sjouwerman, CEO, KnowBe4. “These phishing scams are becoming more aggressive and more targeted as this pandemic continues. Everyone should remain very skeptical of any email related to COVID-19 coming into their inbox.”
See the Infographic with Top Messages in Each Category for Last Quarter:
Click here to download the full infographic (PDF). Great to share with your users!
In Q2 2020, we examined tens of thousands of email subject lines from simulated phishing tests. We also reviewed ‘in-the-wild’ email subject lines that show actual emails users received and reported to their IT departments as suspicious. The results are below.
The Top 10 Most-Clicked General Email Subject Lines Globally for the past quarter Include:
- Password Check Required Immediately
- Vacation Policy Update
- Branch/Corporate Reopening Schedule
- COVID-19 Awareness
- Coronavirus Stimulus Checks
- List of Rescheduled Meetings Due to COVID-19
- Confidential Information on COVID-19
- COVID-19 - Now airborne, Increased community transmission
- Fedex Tracking
- Your meeting attendees are waiting!
Most Common‘In-The-Wild’ Emails in Q2 2020 Included:
- Microsoft: Abnormal log in activity on Microsoft account
- Chase: Stimulus Funds
- HR: Company Policy Notification: COVID-19 - Test & Trace Guidelines
- Zoom: Restriction Notice Alert
- Jira: [JIRA] A task was assigned to you
- HR: Vacation Policy Update
- Ring: Karen has shared a Ring Video with you
- Workplace: [[company_name]] invited you to use Workplace
- IT: ATTENTION: Security Violation
- Earn money working from home
*Capitalization and spelling are as they were in the phishing test subject line.
**Email subject lines are a combination of both simulated phishing templates created by KnowBe4 for clients, and custom tests designed by KnowBe4 customers.
See results from all previous quarters in our Top Clicked Phishing Email Subjects topic.