In a report by Egress, researchers found that human-generated phishing campaigns are getting harder to detect, with a 24.4% increase in obfuscation techniques integrated into over half (55%) of phishing emails in 2023. These techniques have also grown in sophistication, with almost half (47%) of phishing threat actors deploying two obfuscation layers, while less than one-third (31%) use only one technique.
Even prior to the rise of AI, phishing emails have been challenging to detect. Threat actors have become quite adept at bypassing email filters. While we still receive the occasional phishing emails with spelling and grammar mistakes, most campaigns today are more cleverly created. With the emergence of AI-driven phishing, the landscape has shifted even more. Phishing messages generated by AI not only possess the potential to appear remarkably authentic but can also be crafted in a matter of seconds. Moreover, AI extends its reach beyond just the content of the message; it can be employed to generate intricate code and scripts to orchestrate mass phishing campaigns.
AI-generated phishing campaigns create a complex challenge where it's harder to distinguish real messages from phishing ones. AI's speed, personalization, and adaptability make phishing an even more serious threat. Members are encouraged to remind users to increase vigilance and awareness against AI-driven phishing attacks. Read more at Info Security Magazine.