The average CEO receives 57 phishing attacks a year, although all employees – not just senior executives– should be prepared for attacks by spear phishing, a targeted email scam based on spoofing from a legitimate source.
The Barracuda Networks report “Spear Phising: High Threats and Trends Vol.6 – Insight on the Evolution of Attackers’ Tactics and Who They Are Targeting” provides data on recent trends in spear phising attacks.
Barracuda researchers analyzed between May 2020 and June 2021 more than 12 million spear phishing attacks that affected more than three million mailboxes in more than 17,000 companies.
The analysis revealed that a tenth of the attacks on corporate emails involve identity theft (‘phishing’), Microsoft being the company impersonated in 43 % of this type of attack. The report shows that companies suffer an average of 700 identity theft attacks per year.
In this same period of time, the average CEO receives 57 ‘phishing’ attacks while 20 % of the attacks on corporate emails are directed at commercial personnel. Employees of IT departments receive an average of 40 attacks of this type.
But employees who do not hold high ranks or financial positions are not spared either: 77 % of attacks on corporate emails are directed at them.