The Latest in Phishing: April 2015 | Proofpoint US

Platform
Products
Solutions
Partners
Resources
Company

Search

English (Americas)

Platform

Products

Solutions

Partners

Resources

Company

Multi-layered, adaptive defenses for threat detection, impersonation, and supplier risk.

Email Security

Impersonation Protection

More products

Transform your information protection with a human-centric, omni-channel approach.

Enterprise DLP

Adaptive Email DLP

Insider Threat Management

Intelligent Compliance

Mitigate Human Risk

Unlock full user risk visibility and drive behavior change.

Security Awareness

Augment Your Capabilities

Managed Services

Product Packages

More Protect People Products

Account Take-Over and Identity Protection

Secure vulnerable identities, stop lateral movement and privilege escalation.

Adaptive Email Security

Stop more threats with a fully integrated layer of behavioral AI.

Secure Email Relay

Secure your application email and accelerate DMARC implementation

Solutions by Use Case

How Proofpoint protects your people and data.

Authenticate Your Email

Protect your email deliverability with DMARC.

Combat Email and Cloud Threats

Protect your people from email and cloud threats with an intelligent and holistic approach.

More use cases

Solutions by Industry

People-centric solutions for your organization.

Federal Government

Cybersecurity for federal government agencies.

State and Local Government

Protecting the public sector, and the public from cyber threats.

More industries

Comparing Proofpoint

Evaluating cybersecurity vendors? Check out our side-by-side comparisons.

View comparisons

Solutions By Use Case

How Proofpoint protects your people and data.

Change User Behavior

Help your employees identify, resist and report attacks before the damage is done.

Combat Data Loss and Insider Risk

Prevent data loss via negligent, compromised and malicious insiders.

Modernize Compliance and Archiving

Manage risk and data retention needs with a modern compliance and archiving solution.

Protect Cloud Apps

Keep your people and their cloud apps secure by eliminating threats and data loss.

Prevent Loss from Ransomware

Learn about this growing threat and stop attacks by securing ransomware's top vector: email.

Secure Microsoft 365

Implement the best security and compliance solution for Microsoft 365.

Solutions By Industry

People-centric solutions for your organization.

Higher Education

A higher level of security for higher education.

Financial Services

Eliminate threats, build trust and foster growth for your organization.

Healthcare

Protect clinicians, patient data, and your intellectual property against advanced threats.

Mobile Operators

Make your messaging environment a secure environment.

Internet Service Providers

Cloudmark email protection.

Small and Medium Businesses

Big-time security for small business.

Proofpoint vs. the competition

Side-by-side comparisons.

Proofpoint vs. Abnormal Security

Proofpoint vs. Mimecast

Proofpoint vs. Cisco

Proofpoint vs Microsoft

Proofpoint vs. Microsoft Purview

Proofpoint vs. Legacy DLP

Partners

Deliver Proofpoint solutions to your customers.

Channel Partners

Archive Extraction Partners

Learn about Extraction Partners.

GSI and MSP Partners

Learn about our global consulting.

Technology and Alliance Partners

Learn about our relationships.

Social Media Protection Partners

Learn about the technology and....

Proofpoint Essentials Partner Programs

Small Business Solutions .

Become a Channel Partner

Resources

Find reports, webinars, blogs, events, podcasts and more.

Resource Library

Blog

Keep up with the latest news and happenings.

Webinars

Browse our webinar library to learn about the latest threats, trends and issues in cybersecurity.

Cybersecurity Academy

Earn your certification to become a Proofpoint Certified Guardian.

Podcasts

Learn about the human side of cybersecurity.

New Perimeters Magazine

Get the latest cybersecurity insights in your hands.

Threat Glossary

Learn about the latest security threats.

Events

Connect with us at events to learn how to protect your people and data from ever-evolving threats.

Customer Stories

Read how our customers solve their most pressing cybersecurity challenges.

Company

Proofpoint protects organizations' greatest assets and biggest risks: their people.

About Proofpoint

Why Proofpoint

Learn about our unique people-centric approach to protection.

Careers

Stand out and make a difference at one of the world's leading cybersecurity companies.

News Center

Read the latest press releases, news stories and media highlights about Proofpoint.

Privacy and Trust

Learn about how we handle data and make commitments to privacy and other regulations.

Environmental, Social, and Governance

Learn how we apply our principles to positively impact our community.

Support

Access the full range of Proofpoint support services.

Platform

Discover the Proofpoint human-centric platform.

Learn More

Proofpoint Nexus

Detection technologies to protect people and defend data.

Proofpoint Zen

Protect and engage users wherever they work.

Search Proofpoint

Try searching for

Email Security Phishing DLP Email Fraud

Select Product Login

Select Language

Security Awareness Training

The Latest in Phishing: April 2015

Share with your network!

April 23, 2015

We bring you the latest news about phishing statistics and attacks from the wild.

Verizon’s 2015 Data Breach Investigations Report Findings

Over 2/3 of all espionage cases involved phishing attacks
23% of recipients now open phishing messages and 11% click on attachments
It takes only 82 seconds on average for hackers to get their first victim in a phishing campaign

The lead author of the report, Bob Rudis, says, “Training your employees is a critical element of combating this threat.”

Increase your security response team's efficiency with PhishAlarm Analyzer

Recent Phishing Attacks and Current Threats

Russian hackers gained access to the White House by way of a phishing email. As we mentioned previously, White House staff declined an optional 90-minute training session on online security offered in advance of the attack.
The “Operation Pawn Storm” campaign is using phishing attacks to target governmental and political entities. Once hackers are able to gain access to a system, the malware steals information and acts as a back door.
280 Kansas City municipal employees gave up their login credentials in a series of mock phishing attacks sent by city auditors over the course of six months. Even after being notified to change their credentials after the fake attack, 30% of employees neglected to do so within 48 hours of the attack.
Spy vs. spy? Warring advanced persistent threat groups Naikon and Hellsing are spear-phishing one another, according to Kaspersky.
IBM uncovered a fraud scheme known as “The Dyre Wold” that uses a combination of phishing and vishing attacks to target large and medium-sized U.S. companies. So far the group has stolen more than a million dollars from various companies.
After an investigation, it was determined that a phishing email was key to the hacking of French television channel TV5Monde by “cyber jihadists.”