AI-driven phishing attacks outpace legacy email security filters
A report published by Cofense examines the growth of artificial intelligence (AI) in phishing attacks and the resultant challenges for traditional email security.
According to the report, titled The Rise of AI – A New Era of Phishing Threats, the Cofense Phishing Defense Center tracked one malicious email bypassing traditional defences every 42 seconds in 2024. These emails were often linked to polymorphic phishing attacks, which change in real-time in an attempt to evade detection by standard filtering technology.
The research found significant changes in attacker tactics attributed to AI. Attackers have increasingly automated the development of malware, extended attacks across various industries, and generated more personalised phishing content. These adaptations have allowed threats to bypass standard email security tools and highlighted what the report describes as the insufficiency of perimeter-only defences.
Josh Bartolomie, Chief Security Officer at Cofense, said, "Phishing threats have reached a critical turning point, AI-driven attacks are now slipping past traditional perimeter defenses, exposing the limits of legacy email filters. Attackers are leveraging AI to generate realistic lures at scale, harvest public data to fine-tune their approach, and continuously evolve campaigns mid-stream. The speed and sophistication we're seeing demands a new mindset around email security—one that goes beyond filters to focus on visibility, validation, and rapid, human-informed response."
Polymorphic attacks, which adapt key details such as subject lines, sender identities, and content, are creating what analysts describe as an unprecedented challenge for defenders. Cofense notes that these tactics now require security teams to combine expert-supervised AI with behavioural context analysis, offering greater accuracy in identifying threats that evade legacy filters.
The report also identifies a notable rise in business email compromise (BEC). Attackers have begun using AI tools to impersonate executives, replicate authentic email threads, and reference genuine business processes such as payment approvals. These messages are often sent from domains that closely resemble legitimate addresses such as "@consultant.com". The use of AI also reduces common indicators of phishing, such as poor grammar or inconsistent formatting, complicating detection by human recipients.
The report highlights five principal trends shaping the current phishing landscape. Firstly, over 40% of malware detected in 2024 was newly identified, with nearly half classified as Remote Access Trojans (RATs). RATs provide persistent access for attackers and indicate a shift towards more sophisticated, multipurpose threats.
Secondly, attackers are now using AI to develop phishing messages that closely mimic internal company communications, demonstrating improved grammar and tone. Cofense's systems detected and grouped these emails using a combination of expert oversight and real-time input from users.
A third trend is the 70% year-over-year increase in email-based scams, associated with AI-driven automation of targeted lures, inbound message spoofing, and the use of subtle text variations to evade spam filters.
The fourth area of concern is the continued effectiveness of polymorphic campaigns. These campaigns continuously alter email elements to bypass perimeter security, prompting the report's recommendation for enhanced post-delivery monitoring and rapid incident response.
An expansion in attacker strategies comprises the fifth trend. Tax-related scams increased by 340%, and cases involving the misuse of legitimate files to deliver malware rose by 575%. Additionally, incidents of Microsoft-related email spoofing reported a 156% increase, indicating attackers' efforts to diversify their tactics and reduce the effectiveness of pattern-based blocking approaches.
The report is based on intelligence collected by the Cofense Phishing Defense Center during 2024 and incorporates data from millions of real-world phishing threats reported by over 35 million trained users worldwide.
Cofense has indicated that it will remain focused on providing defences that go beyond filtering, blending AI oversight, human intelligence, and post-delivery detection measures to support organisations in countering these threats.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
22 minutes ago
- Yahoo
Is the Vanguard 500 Index ETF the Smartest Investment You Can Make Today?
The Vanguard 500 Index ETF is a low-cost way to track the S&P 500 index. The S&P 500 is a simple way to track the broader U.S. stock market. The index trades at lofty levels today, but remains a great long-term strategy. 10 stocks we like better than Vanguard S&P 500 ETF › So far, 2025 has been a very volatile year for the stock market. The S&P 500 index fell into a correction early in the year and then quickly climbed out of that drawdown. While the recovery was nice to see, it also means that the S&P 500 index is back near its all-time highs. Is the S&P 500-tracking Vanguard 500 Index ETF (NYSEMKT: VOO) the smartest investment you can make today? The Vanguard 500 Index ETF is an exchange-traded fund (ETF). Much like a mutual fund, it allows many investors to pool their assets so they can hire a professional money manager to invest for them. The biggest difference is that mutual funds can only be bought and sold at the end of each trading day, while ETFs can be bought and sold all day long, just like a stock. As the Vanguard 500 Index ETF's name hints, it is an index fund that tracks the S&P 500. This index is the generally accepted benchmark for U.S. stocks. However, the index is really meant to track the U.S. economy. The 500 or so stocks in the index are selected by a committee, not for investment merit, but based on how well the overall collection of stocks represents the economy. The mix shifts and adjusts over time. The index is market-cap weighted, meaning the largest companies have the biggest effect on performance, just like in the broader economy. As for costs, the Vanguard 500 Index ETF has an ultra-low expense ratio of 0.03%. That is roughly one-third the cost of the first-ever S&P 500 index-tracking ETF, the SPDR S&P 500 ETF. Since the Vanguard 500 Index ETF and SPDR S&P 500 ETF do the exact same thing, that cost advantage makes the Vanguard 500 Index ETF the smarter choice. There are clearly better and worse times to invest in the S&P 500 index. Right now, with the market near all-time highs, is probably a worse time. There's a good chance that buying today will mean sitting on some near-term capital losses in the not-too-distant future. But that doesn't necessarily mean you shouldn't buy the Vanguard 500 Index ETF if you have some cash to put to work today. Notice the 2020 recession and bear market in the above chart. At the time, there was a massive amount of uncertainty because of the coronavirus pandemic. Yet, just five years or so later, the market has not only recovered all the ground it lost, but has moved notably higher. That drop just looks like a random bit of noise. Even if you'd bought the Vanguard 500 Index ETF right before that deep price decline, you would have made out OK. Stitching the view to the SPDR S&P 500 ETF because it has been around for longer allows an even greater appreciation of the S&P 500 index's historical growth. As the chart below shows, the recession and bear market after the turn of the century and deep downturn during the Great Recession also look like mere blips in 2025. This is the big point here. Buying the market has worked out well over time, even if you timed the purchase (shockingly) poorly. The key is to stay invested for the long term. Even better would be to reinvest your dividends so you can compound your returns. And even better still would be continuing to add cash at regular intervals to benefit from dollar-cost averaging. The big-picture goal is to start investing and keep investing for as long as possible. If you do that, history suggests you'll end up just fine. For some investors, the fun in all of this is picking individual stocks. But there are far more investors who don't want to do that because it is time-consuming and difficult. For investors who want to keep their investing lives simple, the Vanguard 500 Index ETF is a wonderful choice. That's as true today as it was just before the pandemic, the Great Recession, and the crash. Focus on the long term and just get started! Before you buy stock in Vanguard S&P 500 ETF, consider this: The Motley Fool Stock Advisor analyst team just identified what they believe are the for investors to buy now… and Vanguard S&P 500 ETF wasn't one of them. The 10 stocks that made the cut could produce monster returns in the coming years. Consider when Netflix made this list on December 17, 2004... if you invested $1,000 at the time of our recommendation, you'd have $669,517!* Or when Nvidia made this list on April 15, 2005... if you invested $1,000 at the time of our recommendation, you'd have $868,615!* Now, it's worth noting Stock Advisor's total average return is 792% — a market-crushing outperformance compared to 173% for the S&P 500. Don't miss out on the latest top 10 list, available when you join . See the 10 stocks » *Stock Advisor returns as of June 9, 2025 Reuben Gregg Brewer has no position in any of the stocks mentioned. The Motley Fool has positions in and recommends Vanguard S&P 500 ETF. The Motley Fool has a disclosure policy. Is the Vanguard 500 Index ETF the Smartest Investment You Can Make Today? was originally published by The Motley Fool Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Western Telegraph
22 minutes ago
- Western Telegraph
Marks & Spencer reopens website for orders after major cyber attack
The retail giant said shoppers are now able to buy a selection of its best-selling fashion ranges and new products for home delivery to England, Scotland and Wales. In a statement published on social media, M&S managing director of clothing, home and beauty John Lyttle said: 'More of our fashion, home and beauty products will be added every day, and we will resume deliveries to Northern Ireland and Click and Collect in the coming weeks. 'Thank you sincerely for your support and for shopping with us.' M&S has reopened its website for online orders for the first time in over six weeks (M&S/PA) It followed a major cyber attack in April that has seen the group face heavy disruption. M&S halted orders on its website over the Easter weekend, and was also left with some empty shelves after being targeted by hackers. Customer personal data – which could have included names, email addresses, postal addresses and dates of birth – was also taken by hackers in the attack. M&S revealed last month that the hack was caused by 'human error', and would cost it around £300 million. Chief executive Stuart Machin said on reporting annual figures in May that hackers gained access to the company's IT systems through a third party. He said at the time: 'We didn't leave the door open, this wasn't anything to do with under-investment. 'Everyone is vulnerable. For us, we were unlucky on this particular day through some human error.' While its 565 stores have been able to remain open and trade throughout, contactless payments were impacted initially – while there was also some stock availability issues as it had to temporarily switch to manual processes following the attack. M&S said the incident is likely to drag its group operating profits down by around £300 million this year, but it expects this to be reduced through cost management, insurance and other reactions. The company suggested it could reduce the impact of the attack by as much as 'half'. Shares in M&S lifted 3% in Tuesday morning trading. The website has been open for browsing only since the hack, with the group confirming last month that online sales and profits in its fashion, home and beauty business have been 'heavily impacted' by the disruption. Mr Machin recently said the problems may not be fully resolved until July.
Daily Mail
22 minutes ago
- Daily Mail
Kimberley Walsh shows off her figure in a plunging bikini as she lounges by the pool during girls trip to Ibiza
Kimberley Walsh showed off her figure in a plunging bikini as she lounged by the pool during a girls trip to Ibiza. The singer, 43, looked incredible in the white two piece while she sipped on cocktails with her friends. In a series of photos shared to Instagram on Monday, Kimberley later changed into a brown bandeau set to top up her tan. She captioned the update: 'A weekend away with my girls we've waited 6 years for and it was good for the soul. Spending quality time like this is SUCH a treat. 'We laughed till we cried, reminisced and I loved every second of it. I am SO lucky to have these ladies in my life.' From A-list scandals and red carpet mishaps to exclusive pictures and viral moments, subscribe to the DailyMail's new Showbiz newsletter to stay in the loop. Elsewhere, Kimberley described how 'crazy emotional' it was for Girls Aloud to go on their reunion tour last year, without their bandmate Sarah Harding. The iconic girl band was made up of Kimberley, Nadine Coyle, Cheryl, Nicola Roberts and Sarah, until her tragic death from breast cancer in 2021, aged 39. In May last year, the group returned to the stage for the first time in 11 years to go on a huge UK tour, where their late bandmate was kept as the focus throughout. The show included songs dedicated to Sarah, as well as emotional montages of the late star and a rendition of I'll Stand By You featuring her vocals. In a new interview, Kimberley has admitted that paying tribute to Sarah night after night was 'gut-wrenching' and that reuniting the band without her felt 'so emotional'. The mother-of-three even revealed that during the rehearsals for the show the group had 'let it all out' so that they could be strong enough to get through the live shows. However, she added how important they all knew it was to follow Sarah's wishes and show how she was an integral part of the band, admitting that despite it being 'tough' for them, they wanted to be able to honour and remember their friend. Speaking to The Sun, she explained: 'She wanted us to do it. She made it clear when she was here, but equally we felt it isn't Girls Aloud without her. She's such a massive part of it, so we wanted to keep her part of it. We're trying to keep her spirit alive.' She continued: 'There wasn't just one moment of her, we made the whole show have a thread of her throughout. And at times we were like: "Is this actually too sad?" Because for us it felt just gut-wrenching. But then, equally, she deserved that time and for people to remember her.' Kimberley said the end result was 'crazy emotional', but described hearing Sarah's vocals in arenas as 'epic' and confessed celebrating their bandmate alongside the fans had ended up being a 'cathartic' experience for the group. She said: 'It's been cathartic for all of us to have that time and to almost grieve with the fans. They've grown up with us. 'And there's no denying that her energy was really missed on stage. But I think everybody could feel that she was still very much intertwined within the show and the band.'
