Phishing attacks on the rise in 2018

News
By published

Cybercriminals continue to target end users

Phishing attacks, social engineering and credential compromise all increased during 2018 according to new research from the cybersecurity firm Proofpoint highlighting the fact that cybercriminals continue to target end users.

The firm's fifth annual State of the Phish Report uncovered phishing attack trends across more than 15 industries and examined the cybersecurity knowledge of over 7,000 working adults in the US, Australia, France, Germany, Italy, Japan and the UK.

Proofpoint analysed data from tens of millions of simulated phishing attacks sent over a one-year period and its report was compiled using survey responses from nearly 15,000 cybersecurity professionals including its own customers and outside organisations to provide an in-depth look at the state of global phishing attacks.

According to the report, 83 percent of global infosecurity respondents experienced phishing attacks in 2018 which is up from 76 percent in the previous year. Security awareness training had an impact on preventing attacks and nearly 60 percent saw an increase in employee detection once their staff was better trained to identify possible attacks.

People-centric defense strategy

Social engineering attacks were also on the rise with more organisations affected by phishing, spear phishing, SMS phishing, voice phishing and USB drops. Last year was also the first time that compromised accounts bypassed malware infections as the most commonly identified impact of successful phishing attacks.

Proofpoint's General Manager of Security Awareness Training, Joe Ferrara stressed the need for increased security training at organisations to prevent phishing, saying:

“Email is the top cyberattack vector, and today’s cybercriminals are persistently targeting high-value individuals who have privileged access or handle sensitive data within an organization. As these threats grow in scope and sophistication, it is critical that organizations prioritize security awareness training to educate employees about cybersecurity best practices and establish a people-centric strategy to defend against threat actors’ unwavering focus on compromising end users.” 

Surprisingly baby boomers outperformed all other age groups in fundamental phishing and ransomware knowledge, underscoring why organisations should not assume a younger workforce has an innate awareness of cybersecurity threats.

  • We've also highlighted the best antivirus to help protect you from the latest cyber threats
Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Latest in Security
China
Chinese hackers targeting Juniper Networks routers, so patch now
Google Chrome dark mode
Google updates Chrome extension rules to ban affiliate link injection without user action or benefit
Abstract image of robots working in an office environment including creating blueprint of robot arm, making a phone call, and typing on a keyboard
This worrying botnet targets unsecure TP-Link routers - thousands of devices already hacked
Avast cybersecurity
UK cybersecurity sector could be worth £13bn, research shows
An option to add Ambient Music buttons to the iOS 18.4 Control Center.
Apple fixes dangerous zero-day used in attacks against iPhones and iPads
Trump
Hackers are abusing $TRUMP tokens to lure victims in to new phishing scam
Latest in News
Google Gemini Robotics
Gemini just got physical and you should prepare for a robot revolution
Lilo & Stitch Official Trailer
Stitch crashes into earth and steals our hearts with the first trailer for the live-action Lilo & Stitch
GTA 5
GTA Online publisher Take-Two is gunning for a black market that’s basically heaven for cheaters
Y2K cast looking shocked
Y2K has a streaming release date on Max, so you can witness the technology uprising at home
The Discovery+ homepage
Discovery+ just got a big update to its streaming app that makes it more like Max – here are 5 great new features to try
Two Android phones on a green and blue background showing Google Messages
Struggling with slow Google Messages photo transfers? Google says new update will make 'noticeable difference'
More about security
ThreatLocker CEO Danny Jenkins speaking at ZTW25

“It’s made our jobs harder, not easier” - ThreatLocker CEO Danny Jenkins on AI
China

Chinese hackers targeting Juniper Networks routers, so patch now
Lewis Hamilton drives a Ferrari single-seater F1 car during the Scuderia Ferrari HP Drivers' Presentation in Milan, in March 2025

How to use a VPN to watch Formula 1
See more latest
Most Popular
Apple watch pair with iphone
I've been wearing an Apple Watch for 10 years – these are the 5 settings I change right out of the box
iRobot Roomba Combo 205
This new Roomba finally solves the big problem I have with robot vacuums
Google Gemini Robotics
Gemini just got physical and you should prepare for a robot revolution
Mac Studio on a desk
I compared Apple's Mac Studio M3 Ultra with 10 Windows workstations and I am truly shocked by what I found
Lilo & Stitch Official Trailer
Stitch crashes into earth and steals our hearts with the first trailer for the live-action Lilo & Stitch
Y2K cast looking shocked
Y2K has a streaming release date on Max, so you can witness the technology uprising at home
China
Chinese hackers targeting Juniper Networks routers, so patch now
GTA 5
GTA Online publisher Take-Two is gunning for a black market that’s basically heaven for cheaters
Bolt Zeus 2c26-032 PCIe card
This GPU vendor I've never heard of claims its card is 10x faster than an Nvidia RTX 5090 at real time path tracing
Google Meet create custom backgrounds
More AI features are coming to Google Workspace