New research has revealed that COVID-19 related phishing emails are still a serious threat as found by KnowBe4, a dedicated security awareness training and simulated phishing platform.
The results from the Q3 2020 top-clicked phishing report, exactly half of the most clicked phishing emails contained a coronavirus reference – and this was the most popular out of all the ones tested in the KnowBe4 phishing simulator. This was closely followed by social media messages (47%) which are commonly associated with phishing campaigns. LinkedIn dominated as the top social media email subject to watch out for.
 

The organisation also reviewed ‘in-the-wild’ email subject lines that show actual emails users received and reported to their IT departments as suspicious. The results are below.

Top 10 General Email Subjects
*Capitalisation and spelling are as they were in the phishing test subject line.
**Email subject lines are a combination of both simulated phishing templates created by KnowBe4 for clients, and custom tests designed by KnowBe4 customers.
“During this pandemic, we’ve seen malicious hackers preying on users’ biggest weak points by sending messages that instill fear, uncertainty and doubt,” said Stu Sjouwerman, CEO, KnowBe4. “Our Q3 report confirms that coronavirus-related subject lines have remained their most promising attack type, as pandemic conditions weaken judgment, and lead to potentially detrimental clicks.”
When investigating ‘in-the-wild’ email subject lines, KnowBe4 found the most common throughout Q3 2020 included:
*Capitalisation and spelling are as they were in the phishing test subject line.
**In-the-wild email subject lines represent actual emails users received and reported to their IT departments as suspicious. They are not simulated phishing test emails.
Covid-19 phishing scams are on the rise and it is important to recognize and avoid them. You can use tips like whether any online personal information is requested through email, beware of them. Always check the email address o links, look out for grammar or spelling mistakes and avoid emails that force you to act immediately.
The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY
Follow Us
© 2015 – 2019 IT Security Guru – Website Managed by Calm Logic
© 2015 – 2019 IT Security Guru – Website Managed by Calm Logic
This site uses functional cookies and external scripts to improve your experience.
Privacy Settings / PENDING
This site uses functional cookies and external scripts to improve your experience. Which cookies and scripts are used and how they impact your visit is specified on the left. You may change your settings at any time. Your choices will not impact your visit.
NOTE: These settings will only apply to the browser and device you are currently using.
GDPR Compliance

source

You May Also Like

Chinese Hackers Exploited Critical Security Vulnerability in Sophos Firewall

A sophisticated Chinese advanced persistent threat (APT) actor exploited a critical security…

Cybersecurity Experts Warn of Emerging Threat of “Black Basta” Ransomware

The ransomware-as-a-service (RaaS) Black Basta has struck 50 victims in the U.S.,…

Free Cyber Skills Training Launched for UK Pupils

The UK government has announced plans to provide free cyber skills training…