Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Phishing Trend: Quality, Not Quantity?

Stu Sjouwerman | Apr 16, 2020

iStock-1183143306 (1)A new report from CyberCube found that sophisticated cybercriminals are increasingly shifting to launching business email compromise (BEC) attacks against executives, Insurance Business reports. These targeted attacks require more effort than generic phishing spam, but the potential payoff is far higher.

A similar trend has been seen in ransomware attacks, where criminals are conducting more targeted and damaging operations and requesting ransom amounts tailored to the victim organization. Oliver Brew, CyberCube’s head of client services, stated that this is part of a larger shift within the cybercriminal landscape.

“The business model for cyber crime is evolving rapidly,” Brew said. “Threat actor groups are conducting campaigns and adjusting their models to extract greater value from a smaller number of attacks. Recently, we’ve seen some very sophisticated and aggressive organized criminal groups conduct carefully targeted ransomware attacks, which mark a move away from the traditional high-volume, low-value approach.”

CyberCube’s head of content, Yvette Essen, said that remote working conditions create more openings for attackers to get into an organization’s networks or to hijack conversations.

“Criminals are realizing that ransom demands of millions of dollars are achievable when the target becomes a corporation rather than lots of consumers,” Essen said. “The danger now is that the coronavirus outbreak is creating the ideal conditions for ransomware attacks to flourish. With widespread working from home, increased internet traffic, increasing use of technology for what were face-to-face transactions, corporations must increase their vigilance.”

Meanwhile, Darren Thompson, CyberCube’s head of cybersecurity strategy, noted that many ransomware attacks aren’t disclosed, so these incidents are far more common than people might think.

“It’s important to remember that the amount of ransomware attacks like Travelex which have gone public are just the tip of the iceberg,” he said.

Any organization can be targeted with ransomware or business email compromise attacks. New-school security awareness training can prepare your employees to defend themselves against social engineering tactics.

Insurance Business has the story: https://www.insurancebusinessmag.com/us/news/cyber/ransomware-targets-csuite-executives--cybercube-219534.aspx

Topics: Social Engineering Phishing Security Awareness Training Ransomware KnowBe4

Discover Your Organization’s Phish-prone™ Percentage

Ninety-one percent of data breaches begin with spear phishing. Launch our Free Phishing Security Test for up to 100 users to uncover your team's vulnerability and see how your security posture stacks up against industry benchmarks.

Get Your Free Phishing Security Test

Secure the Digital Workforce: Human + AI

KnowBe4 empowers the modern workforce to make smarter security decisions every day. Trusted by more than 70,000 organizations worldwide, KnowBe4 is the pioneer of digital workforce security, securing both AI agents and humans. The KnowBe4 Platform provides attack simulation and training, collaboration security, and agent security powered by AIDA (Artificial Intelligence Defense Agents) and a proprietary Risk Score. The platform leverages 15 years of behavioral data to combat advanced threats including social engineering, prompt injection, and shadow AI. By securing humans and agents, KnowBe4 leads the industry in workforce trust and defense.

Stu Sjouwerman

ABOUT STU SJOUWERMAN

Stu Sjouwerman (pronounced “shower-man”) is the Founder and Executive Chairman of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

Read more from Stu »

Subscribe the KnowBe4 Blog

Posts By Topic

View All