Email Attacks on Businesses Tripled in 2023 – ChatGPT Identified as Key Culprit
New research has revealed a significant surge in email attacks targeting businesses, with a particular standout being the role of generative AI tools in facilitating these malicious campaigns. Acronis, an industry-leading cybersecurity firm, has reported that the use of AI-powered phishing techniques impacted over 90% of organizations last year, resulting in a staggering 222% increase in email attacks between the second half of 2023 and the present day.
The rise of ChatGPT and similar generative AI systems has become a concerning global trend among cybercriminals. Candid Wüest, Acronis VP of Product Management, cautioned that these threat actors exploit such tools to enhance the efficiency of cyberattacks, create malevolent code, and automate their offensive operations. Consequently, businesses are urged to prioritize comprehensive cyber protection solutions to ensure uninterrupted business continuity.
The Acronis report emphasized that email attacks remain the primary source of infection, predominantly through phishing. On average, organizations experienced a startling 54% surge in attack occurrences per firm. Notably, Singapore, Spain, and Brazil topped the list of countries affected by these cyber threats. Acronis further revealed that approximately one third of all emails (33.4%) were flagged as spam, while an additional 1.5% contained either malware or phishing links.
The enduring prevalence of phishing attacks can be attributed to several factors. Email is a ubiquitous communication channel, cherished for its simplicity, accessibility, and minimal cost. The process can also be easily automated. Moreover, victims often place unwavering trust in their email service providers to shield them from potential threats, inadvertently falling prey to attackers by unquestioningly clicking on links and downloading attachments.
In contrast to the pre-ChatGPT era, when phishing attacks could often be discerned through common sense, the introduction of generative AI tools has elevated the sophistication and believability of email messages. Hackers, who are frequently non-native English speakers, used to leave telltale signs of their fraudulent intentions through spelling and grammar errors, awkward wording, and inconsistencies. However, the deployment of AI-powered techniques has rendered email attacks significantly more convincing.
Michael Suby, Research VP at IDC, commented on the Acronis Cyberthreats Report H2 2023, noting the persistent challenges faced by businesses worldwide. Suby lamented the fact that malicious actors continue to profit from these activities, leveraging AI-enhanced methods to create highly persuasive phishing schemes. Regrettably, this ongoing problem is set to plague businesses for the foreseeable future.
With the prevalence of email attacks reaching unprecedented levels, it is imperative for businesses of all sizes to prioritize robust cybersecurity measures. As threat actors constantly innovate and adapt their techniques, organizations should proactively invest in comprehensive cyber protection solutions to safeguard their invaluable data and ensure uninterrupted operations. Building a resilient defense strategy has become an urgent necessity in today’s high-stakes digital landscape.