1 min read

39% of Phishing Attacks Were Successful in 2020

Megan Schutz May 7, 2021

Cybersecurity Email Security
39% of Phishing Attacks Were Successful in 2020
COVID-19 has made many of our systems change, innovate and, in many cases, even improve. Unfortunately, to the detriment of businesses worldwide, this also holds for the world of cybercriminals. The latest wave of phishing attacks is marked by quality over quantity, an interesting shift in the aftermath of COVID-19, according to a report by email security firm GreatHorn ( source ). While the number of daily attacks has shrunk, they are marked by a rise in precision. COVID-19 inspired cybercriminals to adapt their tactics to be more successful, which means precise social engineering attacks targeting business apps and replacing the former method of batch-and-blast phishing (i.e., mass quantity, imprecise attacks). 

The majority of these new precision attacks are coming from impersonations focused on breaching business applications. Additionally, cybercriminals specifically target applications that have seen a significant uptick in use during COVID-19, such as Zoom, Microsoft Office, and DocuSign–all applications that support collaboration and a rising remote workforce. 

So if attacks are less frequent but more precise, what exactly does this mean for businesses and their cybersecurity? 

Here are five takeaways and recommendations for your business: 

  1. Email security remains the top security concern in 2021, with network and cloud security the second and third most serious concerns.  Assume traditional email security won’t be sufficient. Invest in additional layers of protection.
  2. The key to organizations staying secure will be figuring out how to keep sophisticated, precise attacks from bypassing security filters that organizations have in place.
  3. Start using an account-takeover protection tool if you are not already.
  4. Implement multi-factor authentication —  at every level, for every system — within your organization. 
  5. Invest in the time and training to help your staff recognize a phishing attack when they see one. This adds a layer of human-powered security.

If your business ever becomes concerned that you may be the victim of a cybersecurity attack, contact PK Tech or your IT security team ASAP before taking any action. If you are interested in working with PK Tech and strengthening your existing IT security infrastructure, let’s chat. Contact us here.
Will Your IT Company Be Around Next Year? A Look at What Cybersecurity Insurance Will Look Like in 2021.

Will Your IT Company Be Around Next Year? A Look at What Cybersecurity Insurance Will Look Like in 2021.

Megan Schutz : December 1, 2020

With the many uncertainties of 2020, organizations worldwide hope for consistency and reliability as we head into 2021. This year, the COVID-19...

Cybersecurity Outgrown Your IT Guy
Read More
New Report Finds Generational Issues With How People Use Their Corporate Email

New Report Finds Generational Issues With How People Use Their Corporate Email

Megan Schutz : November 6, 2021

A recent report found many employees are misusing their corporate email, and this is most common among Gen Z employees, i.e. those born in 1997 or...

Cybersecurity Email Security
Read More
New Malware Targets Pandemic Shift to Remote Work

New Malware Targets Pandemic Shift to Remote Work

Megan Schutz : July 5, 2022

While the Covid-19 pandemic seems to be behind us, hybrid work has emerged as a new reality. Many companies offer the option to blend home and...

Cybersecurity COVID-19
Read More