Unprecedented Surge in Polymorphic Phishing Attacks in 2024

Cybersecurity reports reveal a phishing email is detected every 42 seconds in 2024, with a large portion attributed to polymorphic phishing attacks.
Unlike traditional methods, polymorphic phishing leverages advanced algorithms to dynamically change the content, sender address, and malicious links in real-time, effectively bypassing conventional signature-based security filters.

 Sharp Rise in New Malware Variants
In 2024, approximately 40% of detected malware were new strains. Nearly half of these were Remote Access Trojans (RATs), which allow cybercriminals to maintain remote control over infected systems.
AI has played a pivotal role in the development of these sophisticated tools, reducing the need for deep technical expertise.

 70% Increase in Business Email Scams
Business email compromise (BEC) scams have surged by 70%. Attackers now craft highly convincing, grammatically accurate emails impersonating senior executives, often mimicking real forwarded conversations and requesting payment approvals.

 Most Targeted Industries:

• Education: +341% in phishing reports
• Construction: +1,282% spike
• Tax & Government-related campaigns: +340%

 Microsoft was the most impersonated brand in phishing attacks in 2024

 GenAI and the Rise of Hyper-Personalized Attacks
The emergence of Generative AI (GenAI) tools has revolutionized phishing, enabling mass production of highly personalized and context-aware attacks.
Cybercriminals use leaked databases, public records, job titles, social media activity, and digital footprints to craft messages tailored to each victim’s behavior, interests, or recent purchases—dramatically increasing the success rate.

 

Source: MedadPress

www.medadpress.ir