The most popular subject line in phishing emails is... no subject line, according to Expel’s Quarterly Threat Report Q1 2022.
The study lists the most-used subject lines as follows:
- Blank subject — 67.48%
- Fax Delivery Report — 9.01%
- Business Proposal Request — 5.83%
- Request — 4.20%
- Meeting — 4.07%
- You have 1) New Voice Message — 3.46%
- Re: Request — 2.10%
- Urgent request — 2.03%
- Order Confirmation — 1.83%
Separately, the report says than 57% of all Q1 incidents were business email compromise (BEC) attempts in Microsoft Office 365. None were in Google Workspace or accounts with FIDO security keys.
In addition, 24% of Expel’s clients experienced at least one BEC attempt in O365. Two percent of these bypassed multi-factor authentication.
There was a spike in BEC targeting during Valentine’s Day week.
Of the attacks seen, 22% were opportunistic attempts to deploy commodity malware or a pre-ransomware downloader.
In addition, 45% of attempts to enter a compromised 0365 account originated from IP addresses associated with VPN services, and 55% from IP addresses connected to an internet service provider.
Business application compromises accounted for 6% of incidents, with 7% in Okta sending Duo push notifications to the victim until they accepted.
Expel also reports that 3% of incidents resulted from “misconfigurations and exposed long-term credentials in Amazon Web Services and Google Cloud Platform.
Retail was the biggest BEC target, with financial services second. Next were...
Read Full Story: https://www.mediapost.com/publications/article/375193/the-most-used-subject-lines-in-phishing-emails.html
Your content is great. However, if any of the content contained herein violates any rights of yours, including those of copyright, please contact us immediately by e-mail at media[@]kissrpr.com.
