It is quite deceiving that something so vicious can be named after a treasured pastime. We love fishing, but this is not your grandfather’s weekend adventure. Phishing is a serious crime and one from which many are unable to recover. Phishing is not going away anytime soon. In fact, it is at an all-time high. We at Alliance Technology Partners want to warn you about the true cost of phishing attacks.
According to the APWG Phishing Activity Trends Report, in the 1st quarter of 2014, the number of phishing sites jumped by 10.7 percent compared to the final quarter in 2013. In 2013, the number of brands targeted by criminals was 525 in the 4th quarter, and by the 1st quarter in 2014, that number reached 557. The first quarter of 2014 experienced the second highest number ever recorded in the first quarter since APWG began tracking and publishing the Phishing Activity and Trends Report.
Who are the Primary Targets?
Cybercriminals are not picky. They target any and all businesses and the customers who visit their sites, check their emails, and more. According to the same APWG report, at least 32.7 percent of personal computers were infected with some sort of spyware, malware or adware.
In the United States, we are the number one targets for criminals, as the US is the country with the highest number of phishing sites (APWG June 2014). Trojans are the number-one strain of phishing weapons. Trojans make up more 70% of new malware strains and malware infections.
What is it criminals are after and what industries and consumers are affected? The agency reports payment services sites make up 47% of email subjects; 20% are financial service industries, and 20% include retail and service industries. The two common types of attacks are “spear phishing” and “whaling.”
Crimeware is a common malware code that infiltrates financial institutions to steal customer data and financial information. Generic and Data Trojans can be deployed to any company’s network—including yours—to collect all data that goes in and out of the company. If your company is not in the position to protect, detect, and prevent such attacks, the consequences can and will cripple your business and its brand.
What is the True Cost?
Wall Street and Tech reports more than 70% of companies report that the lack of security awareness is the number one threat against the company. Let’s be clear: there are more than financial costs on the line; your very operations are in jeopardy. Once a criminal gets into the system or accesses data, the costs soar. An organization can spend as much as $3.7 million per year addressing phishing attacks. Does your company have that kind of dough? Companies that experience data breaches can also lose money in the bank, they may have to pay legal fees and settlements, they may have to replace software and systems, and companies—if they survive—will have to repair their reputations as well. Revenue is lost, trust is lost, customers flee, and word-of-mouth prevents new clients from seeking your services.
Don’t’ become a phishing horror story. Talk to the professionals at Alliance Technology Partners about prevention, protection and strategies to combat phishing attacks.