Kaspersky has revealed the number of worldwide phishing attacks detected by them hit 129.9 million during the second quarter of 2019.
During the most recent quarter, the average percentage of spam in global mail traffic hit 57.6%, up 1.67% from the previous year’s quarter. The largest share of spam was seen in May at 58.7%. Worldwide, China was the biggest source of spam at 23.7%, followed by the US at 13.8%, Russia at 4.8%, and Brazil at 4.6%. For the quarter, Kaspersky detected a total of 43.9 million malicious email attachments.
With so much spam designed to deliver phishing emails, the number of phishing attacks also naturally rose, but even more dramatically. For the second quarter, the amount of phishing attacks detected and blocked by Kaspersky rose by 21% from the same quarter last year, reaching 129.9 million. Phishing emails targeted 12.3% of all Kaspersky users.
Greece was hit by the greatest number of phishing attacks at 26.2%, followed by Venezuela, Brazil, Australia, and Portugal. In terms of industries and organizations, banks received the greatest percentage of phishing emails at 30.7%, followed by payment systems at 20.1%, global Internet portals at 18%, and social networks at 9%.
To protect yourself and your organisation against spam and phishing emails, Kaspersky offers several pieces of advice, most of which we should already know and practice. But these recommendations are still always worth repeating:
- Always check the link address and sender’s email before clicking on any suspicious emails.
- Check if the link address can be seen in the email and is the same as the actual hyperlink. This can be checked by hovering your mouse over the link.
- Do not download and open email attachments that come from unfamiliar email addresses before scanning them with a security solution. If the email seems legitimate, it is best to check it by accessing the website of the organisation that supposedly sent it.
- Never share your sensitive data, such as logins and passwords, bank card data etc., with a third party. Official companies will never ask for data like this via email.
- Use a reliable security solution with behaviour-based anti-phishing technologies to detect and block both spam and phishing attacks and initiation of malicious files.