Email and messaging security (44.6%) was among the controls with the highest failure rates in enterprise fraud attacks.

68% of attacks originate from email.

Nearly 99% of small healthcare organisations have not implemented secure email transfer protocols.

98% of small healthcare practices claim their platforms "encrypt emails by default".

20% of healthcare practices do not utilise any form of email archiving or audit trail.

Nearly half of healthcare email breaches stem from Microsoft 365 alone.

Email is a primary attack vector for ransomware, with 71% of organisations that suffered an email breach also being hit with ransomware.

PDFs remain the preferred vehicle for delivering malicious attachments in phishing, at 64%.

Compromised websites are the second most prevalent link delivery method, at 30%.

Swedish and Norwegian targets comprise a combined 19% of BEC targets.

Among the unidentifiable phishing kits used by phishing sites, Tycoon 2FA accounts for 10%.

After CEOs and executives, the remaining BEC impersonation efforts are aimed at directors and managers (9%), HR personnel (4%), IT staff (3%), and school heads (2%).

Among the unidentifiable phishing kits used by phishing sites, Evilginx accounts for 20%.

The use of URL shorteners accounts for 7% of phishing delivery.

The strategic use of Danish language in BEC scams is 11.9%.

Among the unidentifiable phishing kits used by phishing sites, 16shop accounts for 7%.

The most observed phishing exploitation mechanisms are HTTP POST to remote server accounting (52%) and email exfiltration (30%).

58% of phishing sites now use unidentifiable phishing kits.

A significant portion of BEC targets are Danish, at 38%.

Financial lures are the number one ploy in phishing emails, representing 35% of samples.