A new report reveals more than 1,000% increase in malicious phishing messages since Q4 2022.

The annual SlashNext State of Phishing Report for 2023 analyzes billions of threats including link-based, malicious attachments and natural language messages in email, mobile and browser channels during a 12-month period from Q4 2022 to Q3 2023. SlashNext Threat Labs conducted in-depth research into cybercriminal behavior and activity on the Dark Web particularly as it relates to leveraging generative AI tools and chatbots; and surveyed more than 300 cybersecurity professionals. Among the findings are a 1,265% increase in malicious phishing emails and a 967% increase in credential phishing in particular.

Other key report highlights

• 1,265% increase in malicious phishing messages since Q4 2022
• On average, 31,000 phishing attacks were sent on a daily basis 
• 967% increase in credential phishing
• 68% of all phishing emails are text-based Business Email Compromise (BEC) 
• 46% of cybersecurity professionals polled reported receiving a BEC attack
• 77% of cybersecurity professionals polled reported being targets of phishing attacks, and 28% reported receiving those messages via text message
• 39% of all mobile-based attacks were SMS phishing (Smishing)