The anatomy of a phishing attack: how cybercriminals target corporate email

PHOTO

Phishing attacks are among the most widespread and effective tactics used by cybercriminals against business. These schemes aim to deceive employees into disclosing sensitive information, such as login credentials or financial data, by posing as legitimate sources. While phishing attacks come in various forms, they often target corporate email systems due to the wealth of valuable information they hold. To assist businesses in bolstering their defenses against potential breaches, Kaspersky is unveiling the anatomy of a phishing attack.

According to Mimecast’s ‘The State of Email Security 2023’ report, 83% of CISOs surveyed see email as the primary source of cyberattacks. The recent case of Pepco Group demonstrated the severe consequences that phishing attacks can inflict on a business. At the end of February, the retail company reported that its Hungarian subsidiary had fallen victim to a sophisticated phishing attack. As a result of this strike, Pepco Group lost approximately €15.5 million in cash. This incident highlights the expanding threat posed by cybercriminals, emphasizing the critical need for organizations to strengthen their cybersecurity defenses.

In 2023 Kaspersky's anti-phishing system thwarted over 709 million attempts to access phishing and scam websites, marking a 40% increase compared to the previous year's figures.

In response to this pressing issue, Kaspersky experts cover the way phishing attacks are conducted.

1. Cybercriminals’ motivation

Phishing attacks stem from cybercriminals motivated by various factors. Primarily, they seek financial gain by unlawfully acquiring sensitive information like credit card details or login credentials, which can be sold or used for fraudulent transactions. Additionally, some are motivated by political or ideological agendas, or by the purpose of espionage. Despite the differing motivations, these attacks pose severe risks to businesses.

2. The initial approach

Phishing attacks typically begin with cybercriminals crafting fraudulent emails designed to lure recipients into taking action. These emails often mimic legitimate communications from trusted sources, such as colleagues, business partners or reputable organizations. To enhance credibility, attackers may employ tactics like spoofing sender addresses or replicating corporate branding. The situation is further exacerbated by the emergence of AI-powered phishing attacks, leveraging sophisticated algorithms to create highly convincing and personalized phishing emails. This exacerbates the challenge of detecting and combating such threats.

3. Deceptive content and techniques

Central to the success of phishing attacks is the exploitation of human vulnerabilities. Cybercriminals leverage psychological manipulation techniques, compelling victims to act impulsively without thoroughly evaluating the email's legitimacy.

Phishing emails employ various strategies to deceive recipients and elicit desired responses. Common techniques include:

False pretenses: Emails may claim urgency or importance, urging recipients to act quickly to avoid purported consequences or to seize perceived opportunities.
Social engineering: Attackers personalize emails and tailor messages that resonate with recipients' interests, roles, or concerns, increasing the likelihood of drawing in the victim.
Malicious links and attachments: Phishing emails often contain links to fraudulent websites or malicious attachments designed to harvest credentials, install malware, or initiate unauthorized transactions.

4. Evading detection

To evade detection by email security filters and anti-phishing solutions, cybercriminals consistently refine their tactics and adapt to evolving cybersecurity measures. They may employ obfuscation techniques, encryption methods, or URL redirection to bypass detection and enhance the effectiveness of their attacks.

5. Consequences of successful phishing attacks

When phishing attacks succeed, the consequences can be severe for organizations. Breaches of corporate email systems can lead to unauthorized access to sensitive data, financial losses, reputational damage, and regulatory non-compliance. Moreover, compromised email accounts can serve as footholds for further cyberattacks, such as Business Email Compromise (BEC) or data exfiltration.

Mitigation strategy

Safeguarding against phishing attacks targeting corporate email systems, means organizations must implement robust cybersecurity measures while educating employees about phishing awareness and best practices. Effective mitigation strategies include employee training, the introduction of multi-factor authentication, the formulation of incident response plans, and the deployment of advanced email filtering and security solutions.

"In today's dynamic threat landscape, businesses face an ever-growing array of cyber risks, with email-based attacks posing a particularly insidious threat. At Kaspersky, we recognize the critical importance of equipping organizations with robust cybersecurity solutions to help businesses defend themselves against these evolving threats. Our Kaspersky Security for Mail Server combines advanced content filtering capabilities with cutting-edge machine learning technology to provide unparalleled protection for corporate mail systems even against evolving AI-powered phishing attacks. By leveraging our solutions, businesses can proactively defend themselves against phishing attacks and other malicious threats, ensuring the security and integrity of their sensitive data," comments Timofey Titkov, Head of Cloud & Network Security Product Line at Kaspersky.

-Ends-

About Kaspersky

Kaspersky is a global cybersecurity and digital privacy company founded in 1997. With over a billion devices protected to date from emerging cyberthreats and targeted attacks, Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection, specialized security products and services, as well as Cyber Immune solutions to fight sophisticated and evolving digital threats. We help over 220,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.

The anatomy of a phishing attack: how cybercriminals target corporate email

DISCOVER MORE

Proofpoint warns of ticket scams as phony Paris Olympic Games 2024 sites proliferate

Dubai’s real estate market has shown impressive growth and resilience in recent months

Whitewill's real estate market report reveals continuous buyer interest in Dubai's off-plan residential sector

New phishing scheme combining spear phishing tactics in mass phishing campaigns

Industrial AI uptake is just getting started but majority of sector is uncovering new use cases, finds Honeywell research

GCC banks show strong appetite for international expansion

Summer lull expected for global sukuk with 4Q24 pick up

Expedia reveals insider hacks for affordable and stress-free summer travel

Ajman Tourism announces the 9th Liwa Ajman Dates and Honey Festival 2024

The Ritz-Carlton, Doha makes an important new hire, with Koni Kim announced as director of food & beverage

Ennismore, Evolutions & City View Developments launch the first Hyde Residences in Dubai

Albal Design launches UAE's first science based interior design concept

Aldar unveils The Arthouse, an exclusive residence in Abu Dhabi’s Cultural District inspired by private members’ clubs

Royal Oman Police: Beware of new fraudulent scheme impersonating Central Bank of Oman

CrowdStrike says over 97% of Windows sensors back online

How rapid technological progress is transforming the IP property landscape in SA

CrowdStrike says significant number of outage-affected devices back up

No reports of cyber attacks following global IT outage: UAE Cybersecurity Council

LATEST VIDEO

VIDEO: MENA debt market issuances surge nearly 60% to $73.4bln in H1

ZAWYA COVERAGE

Deyaar's Q2 net profit rises 86% to $32mln on higher revenue

Dubai Taxi Co. Q2 net profit drops 14%; revenue rises

Mashreq Bank Q2 edges higher to $545mln, bests estimate

UAE’s ADIA, US firm seek nearly $400mln stake sale in Indian infra investment trust

E-commerce using 'Mada' cards surges 22% in the first quarter of 2024

Saudi Arabia commits to quality jobs and decent work

Gold rises as yields slip after US data lifts rate-cut hopes

UAE and Tamil Nadu explore diverse investment potential

Dubai to see ‘issuance of 10,000 new broker licences’ in 2024

THE BRI REPORT

China’s flagship global infrastructure initiative is changing in the face of potent headwinds