top of page

Cloud-based Email Threats Capitalized on Chaos of COVID-19

Trend Micro intercepted a surge in malware, phishing and credential theft



Trend Micro Incorporated (TYO: 4704; TSE: 4704), the leader in cloud security, today revealed that it blocked 16.7 million high-risk email threats that slipped past webmail providers' native filters. This amounts to an increase of nearly a third on 2019 figures.


The new statistics are provided by Trend Micro's Cloud App Security (CAS), an API-based solution that provides second-layer protection for Microsoft Exchange Online, Gmail, and a host of other services.


"COVID-19 forced many organizations to accelerate their digital adoption plans, and SaaS apps have become indispensable to remote workers. However, where there are users, there are also threats and we've seen a spike in attacks targeting organizations' perceived weakest link during the pandemic," said Wendy Moore, vice president of product marketing for Trend Micro. "Trend Micro Cloud App Security has been indispensable in providing an extra layer of protection — each one of those nearly 17 million threats previously missed represents a risk of corporate data theft, ransomware and fraud."


Detections of malware, credential theft and phishing emails all recorded double-digit year-on-year increases in 2020, while BEC volumes dropped slightly.


Malware-laden emails: Trend Micro detected 1.1 million emails containing malware that would otherwise have appeared in users' inboxes, up 16% on 2019 figures. These included many Emotet and Trickbot attacks which are often the precursor to targeted ransomware.


Phishing: Trend Micro intercepted over 6.9 million phishing emails in 2020, a 19% increase from the previous year. Discounting credential phishing, the number of threats in this category surged 41% over the period. COVID-19 was a common lure, as were big-name brands like Netflix that have become popular during the pandemic. Attackers were typically looking for personal and financial information to monetize.


Credential phishing: Trend Micro detected nearly 5.5 million attempts to steal users' credentials that were allowed through by existing cloud native security filters. This was a 14% increase on 2019 and accounted for the vast majority of detected phishing emails. Attackers are increasingly supplementing these with phone-based vishing attacks.


Business email compromise (BEC): Although BEC detections declined 18% year-on-year, average losses continue to rise — increasing 48% from the first to the second quarter of 2020.


Trend Micro Cloud App Security offers comprehensive multi-layered protection for platforms such as Microsoft 365 and Google Workspace via:


  • Machine learning-powered Writing Style DNA to spot BEC

  • Computer vision and AI for credential phishing detection

  • Sandbox malware analysis

  • Document exploit detection

  • File, email, and web reputation technologies

  • Data loss prevention (DLP)

  • Trend Micro Vision One, a comprehensive XDR solution providing investigation, detection, and response across your endpoints, email, network, and servers.



SOURCE: Trend Micro Incorporated

Comments


connexion_panel_edited.jpg
CXO_8-in-1.png
subscribe_button.png

 

Disclaimer:

The information contained in this site is for reference only. While we have made every attempt to ensure that the information contained in this site has been obtained from reliable sources, we are not responsible for any errors or omissions, or for the results obtained from the use of this information. All information in this site is provided "as is", with no guarantee of completeness, accuracy, timeliness or of the results obtained from the use of this information, and without warranty of any kind, express or implied, including, but not limited to warranties of performance, merchantability and fitness for a particular purpose. In no event will Ho Hon Asia Limited, its related partnerships or corporations, or the partners, agents or employees thereof be liable to you or anyone else for any decision made or action taken in reliance on the information in this site or for any consequential, special or similar damages, even if advised of the possibility of such damages.
Certain links in this site connect to other websites maintained by third parties over whom we have no control. We make no representations as to the accuracy or any other aspect of information contained in other websites.

2025 @ Inno-Thought and its affiliates. All rights reserved.

bottom of page