It has been 20 years since sender identity fraud shifted to the world of email and became known as phishing. In the early days, email threats were largely content-centric and usually included a malicious link or attachment to trick a user into a trap. But particularly in the past five years, phishing has matured: 89% of all attacks now utilize impersonation to initiate social engineering attacks.
If you’ve ever received a fake email from your “CEO” asking you to rush out and purchase a myriad of gift cards, or if an email tricked you into thinking your CFO needed your full bank account number via email, you were the target of a social engineering attack.