Today's Bulletin: February 15, 2025

More results...

Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
Filter by Categories
Africacom
AfricaCom 2024
AI
Apps
Apps
Banking
Broadcast
CABSAT
Cabsat
Cloud
Column
Content
Corona
DTT
eCommerce
Editorial
Education
Entertainment
Events
Fintech
Fixed
Gitex
Gitex Africa
GSMA Cape Town
Healthcare
IBC
Industry Voices
Infrastructure
IoT
MNVO Nation Africa
Mobile
Mobile Payments
Music
MWC Barcelona
MWC Barcelona 2025
MWC Kigali
News
Online
Opinion Piece
Q&A
Satellite
Security
Software
Startups
Streaming
Technology
TechTalks
TechTalkThursday
Telecoms
Utilities
Video Interview
Follow us
#Security

Sophos Survey: Phishing Attacks Rose During the Pandemic

September 23, 2021
2 min read
Author: Editorial Team

Sophos, a global leader in next-generation cybersecurity, announced the findings of its global survey, “Phishing Insights 2021,” which reveals that phishing attacks targeting organizations ramped up considerably during the pandemic, as millions of employees working from  home became a prime target for cybercriminals. The majority (65%) of IT teams in South Africa said the number of phishing emails targeting their employees increased during 2020.

“Phishing has been around for over 25 years and remains an effective cyberattack technique. One of the reasons for its success is its ability to continuously evolve and diversify, tailoring attacks to topical issues or concerns, such as the pandemic, and playing on human emotions and trust.It can be tempting for organizations to see phishing attacks as a relatively low-level threat, but that underestimates their power. Phishing is often the first step in a complex, multi-stage attack. According to Sophos Rapid Response, attackers frequently use phishing emails to trick users into installing malware or sharing credentials that provide access to the corporate network.”

Chester Wisniewski, Principal Research Scientist, Sophos

The findings also reveal that there is a lack of common understanding about the definition of phishing.  For instance, 66% of IT teams in South Africa associate phishing with emails that falsely claim to be from a legitimate organization, and which are usually combined with a threat or request for information. Forty-nine percent consider Business Email Compromise (BEC) attacks to be phishing, and more than one-third (36%) think threadjacking – when attackers insert themselves into a legitimate email thread as part of an attack – is phishing.

The good news is that most organizations in South Africa (96%) have implemented cybersecurity awareness programs to combat phishing. Respondents said they use computer-based training programs (66%), human-led training programs (59%), and phishing simulations (47%).

“The ideal would be to prevent phishing emails from ever reaching their intended recipient. Effective email security solutions can go a long way towards achieving this, but this should be complemented by alert and primed employees who are able to spot and report suspicious messages before they get any further.”

Chester Wisniewski, Principal Research Scientist, Sophos
Follow us on LinkedIn
Go to Our Page

Newsletter signup

Sign up for our weekly newsletter and get the latest industry insights right in your inbox!

Please wait...

Thank you for sign up!

EDITOR'S CHOICE
IN CASE YOU MISSED IT