AI Drives Doubling of Phishing Attacks in a Year

Staff Editor 2026-02-04
AI Drives Doubling of Phishing Attacks in a Year

AI Drives Doubling of Phishing Attacks in a Year

https://www.infosecurity-magazine.com/news/ai-double-volume-phishing-attacks/

Publish Date: 2026-02-04 09:00:00

Source Domain: www.infosecurity-magazine.com

Security filters caught one phishing email every 19 seconds in 2025, more than double the rate a year previously, Cofense has revealed.

AI technology is helping threat actors to increase the speed and scale of attacks, to the point where detected phishing emails last year far outstripped 2024 figures of one every 42 seconds, the cybersecurity firm claimed.

The security vendor’s latest report, The New Era of Phishing: Threats Built in the Age of AI, is based on its own threat intelligence.

“Threat actors no longer experiment with AI in isolated ways. Instead, they use it as a core capability to generate, test, and deploy phishing campaigns at scale,” the report warned.

“The result is phishing that is faster, more adaptive, and more convincing than ever before, giving rise to polymorphic, multi-channel campaigns that continuously change their appearance while preserving the same malicious intent.”

Read more on phishing: AI-Generated Code Used in Phishing Campaign Blocked by Microsoft.

AI is helping threat actors in several ways, the report claimed. Most obvious is the ability it gives them to compose emails in near-flawless local languages.

Cofense said that “conversational” phishing emails (ie those not including malicious attachments, QR codes or links) accounted for 18% of the total. That speaks to the growth of business email compromise (BEC) attacks.

Other trends include:

  • Highly personalized campaigns: Cofense observed a rise in campaigns where the same phishing website delivered different payloads depending on the type of machine/device it was accessed from. AI might also be helping campaigns to serve up different spoofed brands depending on the browser, or optimize credential harvesting pages specifically for mobile users, among other things
  • Polymorphism by default: AI is helping threat actors to dynamically alter logos, signatures, wording, and URLs and files according to the specific victim. Three-quarters (76%) of initial…

Source

More Stories

Are connected electric vehicles safe? The top threats they face

Are connected electric vehicles safe? The top threats they face

Staff Editor 2026-06-06
Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

Staff Editor 2026-06-06
Three highlights in latest DHS spending bill

Three highlights in latest DHS spending bill

Staff Editor 2026-06-05

Terms and Conditions - Privacy Policy