Skimlinks
Phishing attacks
Photo by Mikhail Nilov on Pexels.com

Phishing attacks rose 61% in 2022, new study finds

The cybercrime commonly called “phishing” soared 61% in the past year to more than 1 million attacks and continues to pose a significant threat to most Internet users, according to an annual study from Interisle Consulting Group, specialists in business and technology strategy and authors of a long-running series of reports on phishing activity.

Phishing attacks lure victims, typically via email or text message, to a fraudulent website that appears to be run by a trusted entity, often a bank or retailer. The site is designed to persuade a victim to provide sensitive information like a bank account number.

ProtonVPN, Proton, VPN

Why use a VPN

SECURITY: Our secure VPN sends your internet traffic through an encrypted VPN tunnel, so your passwords and confidential data stay safe, even over public or untrusted Internet connections.

PRIVACY: Keep your browsing history private. As a Swiss VPN provider, we do not log user activity or share data with third parties. Our anonymous VPN service enables Internet without surveillance.

FREEDOM: We created ProtonVPN to protect the journalists and activists who use ProtonMail. ProtonVPN breaks down the barriers of Internet censorship, allowing you to access any website or content.

For its study, entitled Phishing Landscape 2022: An Annual Study of the Scope and Distribution of Phishing, Interisle assembled and analysed a deep and reliable dataset by collecting more than three million phishing reports from May 1, 2021 through April 30, 2022 from four respected threat intelligence providers: the AntiPhishing Working Group (APWG), OpenPhish, PhishTank, and Spamhaus, and examined data from 2020 for a longer-term examination of certain issues. The report also includes Interisle’s recommendations on measures to stop the practice.

Over 1 million unique phishing attacks

Interisle’s study has drawn praise from experts on the topic. “This thoroughly researched report is essential reading for anyone concerned about the growing threat of online phishing,” said John Levine, president of the Coalition Against Unsolicited Commercial Email (CAUCE). “It has detailed analyses and advice on what and where the threats are, and how we can and must deal with them.”

Interisle’s study found the 3 million reports represented 1,122,579 unique phishing attacks during that time frame, with 853,987 domain names reported for phishing, a 72% increase over the previous year’s study.

One notable finding: Phishing attempts related to cryptocurrency increased 257% year to year. Nearly 80% of the generic top-level domains (gTLD) reported for phishing were maliciously registered, and crypto wallets were the most targetted brands.

“Cryptocurrency phishing has skyrocketed, especially attacks involving wallets and exchanges,” said Interisle partner and co-author Dave Piscitello. “Phishers are applying attack techniques that they’ve used against other financials to virtual currencies with great effect.”

Screenshot 2022 06 22 095145

LifeLock by Norton

Sign Up

It only takes a few minutes to enroll.

We Scan

We look for threats to your identity.

We Alertā€ 

We alert you of potential threats by text, email, phone or mobile app.

We Resolve

If you become a victim of identity theft, a U.S.-based Identity Restoration Specialist will work to fix it.

We Reimburse

We’ll reimburse funds stolen due to identity theft up to the limit of your plan.ā€ ā€ ā€ 

In other findings:  

  • The number of monthly attacks has doubled in two years, from about 40,000 in May 2020 to more than 100,000 in April 2022.
  • Phishers targetted over 2,000 businesses and organisations during the May 1, 2021 to April 30, 2022 period. The majority of phishing attacks targeted just 10 brands.
  • A small number of registrars dominate malicious domain registration in some TLDs (top-level domains). In four TLDs, more than 80% of the malicious domains were registered through just one registrar.
  • Phishing attacks are disproportionately concentrated in new gTLDs. While the new TLDs’ market share decreased during the yearly reporting period, phishing among the new TLDs has increased.
  • Phishers deliberately registered 69% of all domainsā€”and 92% of new gTLD domainsā€”on which phishing occurred.
  • Phishers have begun targetting more brands, including Amazon, Apple, Meta (Facebook, WhatsApp) and Microsoft (Outlook).

Interisle’s report also includes observations and recommendations to counter phishing attacks, including: 

  • The naming, addressing, and hosting ecosystem exploited by phishers (and cyberattackers generally) is encumbered by vertically isolated (“siloed”) policy and mitigation regimes.
  • Registries and registrars should identify, “lock”, and suspend domains reported for phishing, and hosting and cloud service providers should remove phishing content or shut down accounts where phishing occurs, and all parties should be more responsive to abuse complaints, especially for cybercrimes such as phishing, and they must begin to do so in a more coordinated and determined manner.
  • Changes to or introduction of policy or regulation may be necessary to effectively mitigate phishing. Obliging operators to validate the identity of users and customers, coupled with agreement on a common definition of lawful access that acknowledges the role that the private sector plays in combatting cybercrime, could reduce both the incidence of phishing attacks and the difficulty of responding to it.

For more about Interisle, please visit: https://www.interisle.net.

About Interisle

Interisle’s principal consultants are experienced practitioners with extensive track records in industry and academia and world-class expertise in business and technology strategy, Internet technologies and governance, financial industry applications, and software design. Every Interisle client benefits from the direct hands-on management of this core team, augmented by the specialised expertise of an extensive network of associatesā€”a coherent, team approach with the low overhead of a lean, virtual organisation.

Contact Information
Dave Piscitello
dave@interisle.net

– Globe Newswire, New York

_________________________________

Playstation 5 Pro

Every month in 2024 we will be giving away one PlayStation 5 Pro. To qualify join our Facebook group, TikTok and Subscribe to our Sweet TnT Magazine YouTube channel

When you buy something through our retail links, we may earn commission and the retailer may receive certain auditable data for accounting purposes.

Dark Web: How to fight back as cybercrime evolves

How recruiters handle cybersecurity threats

The importance of cybersecurity in mobile banking

Best Class Data Privacy and Data Security for Testing Solutions offered by Sauce Labs

6 Best HEIC to JPG Converter for Windows and Mac

Delphix new appliances provide continuous data protection, advanced TDM

Click fraud: Advertisers warned not to rely on IP blocking

Click fraud refund: Advertisers get help with Polygraph

Hybrid working exposes businesses seriously to insider fraud

Screenshot 2023 01 02 150932

About Sweet TnT

Our global audience visits sweettntmagazine.com daily for the positive content about almost any topic. We at Culturama Publishing Company publish useful and entertaining articles, photos and videos in the categories Lifestyle, Places, Food, Health, Education, Tech, Finance, Local Writings and Books. Our content comes from writers in-house and readers all over the world who share experiences, recipes, tips and tricks on home remedies for health, tech, finance and education. We feature new talent and businesses in Trinidad and Tobago in all areas including food, photography, videography, music, art, literature and crafts. Submissions and press releases are welcomed. Send to contact@sweettntmagazine.com. Contact us about marketing Send us an email at contact@sweettntmagazine.com to discuss marketing and advertising needs with Sweet TnT Magazine. Request our media kit to choose the package that suits you.

Check Also

Discover essential tips to make your business website more user-friendly and drive more traffic.

How to make your business website more visitor-friendly

For all online businesses, the website serves as the link between your brand and your …

Fortify your digital fortress: The importance of vulnerability management.

Safeguarding digital assets: A comprehensive guide to vulnerability management

Living in the modern digital era where nearly everything is being touched by technology, security …

Leave a Reply

Discover more from Sweet TnT Magazine

Subscribe now to keep reading and get access to the full archive.

Continue reading