A recent report from SpyCloud reveals a significant rise in phishing attacks targeting enterprises, driven by advancements in AI and phishing-as-a-service (PhaaS) platforms. Key findings include: 78% of organizations reported increased phishing volumes, with 84% noting a rise in AI-generated phishing attacks. Notably, 86% of Fortune 100 companies had employee data exposed due to phishing over the past year, with the tech sector being the most affected.
Despite awareness, many organizations are ill-equipped to handle the fallout from these attacks; only 38% are confident in their ability to respond to credential theft quickly, and 68% take over four hours to address phishing exposures. The report emphasizes the need for enhanced visibility and automated remediation processes to better protect against sophisticated phishing techniques, including device code phishing. Overall, businesses must focus on improving response capabilities rather than solely on prevention.