Security News > 2020 > July > Watch out for these subject lines in email phishing attacks
Email phishing attacks work by spoofing or referencing well-known topics that the attackers hope will arouse fear or concern or interest on the part of the recipients.
To compile its "Q2 2020 Top-Clicked Phishing Report," KnowBe4 examined tens of thousands of email subject lines from simulated phishing tests as well as "In-the-wild" email messages that employees received and reported to their IT departments as suspicious.
The templates for the simulated phishing tests, which organizations use to help educate employees, were based on real phishing attacks.
Email phishing attacks with subjects related to COVID-19 remained prevalent last quarter, accounting for 56% of all the subject lines analyzed.
Phishing attacks that exploited Facebook used such subject lines as "Your Friend Tagged a Photo of You" and "Your friend tagged you in photos on Facebook." Campaigns spoofing Twitter tried to entice people with a subject line of "Someone has sent you a Direct Message on Twitter."
News URL
Related news
- Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail (source)
- YouTube warns of AI-generated video of its CEO used in phishing attacks (source)
- ClickFix attack delivers infostealers, RATs in fake Booking.com emails (source)
- Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails (source)
- Coinbase phishing email tricks users with fake wallet migration (source)
- Why it's time for phishing prevention to move beyond email (source)
- Ukrainian military targeted in new Signal spear-phishing attacks (source)
- New Morphing Meerkat Phishing Kit Mimics 114 Brands Using Victims’ DNS Email Records (source)
- Phishing platform 'Lucid' behind wave of iOS, Android SMS attacks (source)
- Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware (source)