Phishing attacks continue to pose a significant threat to various industries, with cybercriminals employing sophisticated tactics to deceive recipients.
A recent analysis by Cofense Intelligence, covering data from Q3 2023 to Q3 2024, has identified the top five industries most targeted by phishing attacks using customized subject lines.
The top Targeted Industries that are aggressively targeted by attackers via Phishing attacks are:-
- Finance and Insurance: This sector tops the list, accounting for 15.5% of all credential phishing emails with customized subjects. Attackers often mimic business communications such as invoices and forms requiring attention.
- Manufacturing: Representing 11.3% of emails with subject redaction, this industry is particularly vulnerable due to its reliance on order and contract-based communications.
- Mining, Quarrying, and Oil and Gas Extraction: This sector accounts for 10.3% of emails with customized subjects, often featuring proposals, invoices, and shared document notifications.
- Health Care and Social Assistance: 8.2% of emails with subject redaction targeted this industry, typically using notification-based or document-related subjects.
- Retail Trade: Comprising 7.4% of emails requiring subject redaction, this industry often receives phishing attempts related to sales, contracts, and urgent shipments.
While the common tactics and trends observed by the security analysts at Cofense Intelligence are:-
Subject Customization: Threat actors frequently incorporate the recipient’s name, email address, phone number, or company name in the subject line to increase legitimacy.
Quarterly Fluctuations: Most industries experienced peak volumes of customized phishing emails in Q3 2023, with varying trends in subsequent quarters.
Attachment Types: The most common malicious file types attached to these emails are .HTM(L) (90.3%) and .DOC(X) (9.4%).
Free Webinar on Best Practices for API vulnerability & Penetration Testing: Free Registration
Technical Analysis
Here below we have mentioned the industry-specific examples:-
Finance and Insurance
- ” shared ‘Invoice20248904.pdf’ with you”
- “Invoice from “
- “ACH on 2024-06-28 For “
Manufacturing
- “Proposals from “
- “File Shared By “
- “NEW P.O. # 94153 from “
Mining, Quarrying, and Oil and Gas Extraction
- “Contract Proposal for service – “
- “Document shared with you: #_Financ…..#88456.docx”
- “FW: New Invoice Acknowledgement 6472749IK From “
Implementation of sophisticated techniques to safeguard customers’ personally identifiable information (PII) and proprietary company data while providing actionable intelligence is must.
As this approach allows for accurate threat analysis without compromising sensitive information.
Besides this, researchers urged organizations across these industries must remain vigilant and implement robust security measures to protect against these targeted attacks.
Analyse Real-World Malware & Phishing Attacks With ANY.RUN - Get up to 3 Free Licenses