A recent report by Darktrace reveals concerning statistics about the effectiveness of current email security measures. Analyzing 17.8 million phishing emails, the report found that a staggering 62% of these messages were able to pass domain-based message authentication, reporting, and conformance (DMARC) checks. This significant percentage indicates that traditional verification methods are struggling to keep up with increasingly sophisticated phishing tactics employed by cybercriminals.
The report also highlights that over a third of these phishing emails successfully evaded detection by major email service providers. Alarmingly, 56% of the analyzed emails managed to bypass all existing security measures, showcasing a troubling trend where conventional defenses are falling short. This effectiveness in evasion suggests that malicious actors are continuously refining their techniques to exploit vulnerabilities in current security protocols.
Darktrace’s findings underscore the advanced tactics, techniques, and procedures (TTPs) being utilized by threat actors. These include the exploitation of legitimate third-party sites and services to blend phishing attempts with normal traffic, making detection more challenging. The report notes a rise in the use of covert command and control mechanisms, such as remote monitoring and management (RMM) devices, tunneling, and proxy services, further complicating efforts to identify and neutralize threats.
From January to June 2024, the most common threats observed included malware for information theft (29% of initial investigations), Trojans (15%), remote access Trojans (12%), botnets (6%), and loaders (6%). These statistics illustrate the diverse and evolving nature of cyber threats, emphasizing the need for enhanced security strategies and updated defenses to better protect against increasingly sophisticated attacks.
Reference:
