Skip to main content
HomeTopicsEmail Security

Email Security

We've curated 92 cybersecurity statistics about Email security to help you understand how phishing attacks, malware, and advanced authentication practices are evolving in 2025, ensuring your communications remain safe from emerging threats.

Showing 1-20 of 92 results

Phishing activity declined by approximately 20% year-over-year in both 2024 and 2025.

Zscaler6/15/2026
Phishing

Services industry phishing hits surged 65.5% year-over-year from 330.9 million to 547.7 million hits.

Zscaler6/15/2026
PhishingServices Industry

95.2% of phishing activity is delivered over encrypted channels.

Zscaler6/15/2026
TLS EncryptionPhishing

63% of law firm decision-makers report a significant email-based security breach in the past 12 months.

Integris5/27/2026
Legal Services

One in three email messages is malicious or unwanted spam.

Barracuda5/27/2026
Spam

48% of malicious email activity is phishing.

Barracuda5/27/2026
Phishing

34% of companies experience at least one account takeover incident every month.

Barracuda5/27/2026
Account TakeoverIdentity Risk

More than 10% of HTML attachments are malicious.

Barracuda5/27/2026
Email AttachmentsHTML Attachments

70% of malicious PDFs contain QR codes leading to phishing websites.

Barracuda5/27/2026
PhishingPDF Exploits

Confirmed business email compromise (BEC) losses range from $140,000 to $1.5 million, compared to an average of roughly $40,000 in early 2025.

Guardz5/27/2026
SMBBEC

21.6% of phishing attacks use redirect chains that route victims through multiple URLs to obscure malicious destinations.

Abnormal AI5/27/2026
PhishingEvasion Techniques

Vendor email compromise accounts for 61% of all business email compromise attacks.

Abnormal AI5/27/2026
BECVendor Email Compromise

Phishing accounts for 58% of all attacks.

Abnormal AI5/27/2026
Phishing

57% of desk-based workers who use email or chat say AI makes phishing harder to spot because it feels more professional.

Sagiss5/27/2026
PhishingAI Phishing

64% of desk-based workers who use email or chat say an AI-generated message could likely impersonate someone they work with.

Sagiss5/27/2026
PhishingImpersonation

63% of desk-based workers who use email or chat clicked a work-related link in the past year and later felt they should have double-checked it first.

Sagiss5/27/2026
PhishingEmployee Behavior

68% of desk-based workers who use email or chat check work email or chat outside normal business hours at least sometimes.

Sagiss5/27/2026
Workplace Behavior

56% of desk-based workers who use email or chat feel pressure to respond to work messages after normal business hours at least sometimes.

Sagiss5/27/2026
Workplace Behavior

57% of desk-based workers who use email or chat have verified a message's request only after taking action first.

Sagiss5/27/2026
PhishingEmployee Behavior

72% of desk-based workers who use email or chat say phishing attempts are more convincing than a year ago because of AI-written language.

Sagiss5/27/2026
PhishingAI Phishing