Approximately 80% of all embedded URLs that SlashNext saw were of the zero-day variety, which was unknown to vendors and researchers beforehand.
This is concerning. “Hybrid attack vectors, where malicious links, QR codes, and attachments are combined to bypass conventional defenses,” stated Callie Guenther, senior manager of cyber threat research.
At detection and response provider Critical Start, in reference to the reported 202% increase in email-based threats.
Guenther also cautioned that a trend toward customized assaults that make use of compromised credentials.
That are mass-harvested is being fueled by social engineering and AI-driven phishing efforts. “This trend indicates attackers.
Are focused on monetizing phishing efforts through multiple vectors, including ransomware and cryptojacking payloads embedded in phishing campaigns,” Guenther said.
