Email-borne threats increase at an alarming rate; Mimecast
Email security systems are still missing thousands of known and unknown attacks
Mimecast has reported that both known and unknown attacks, as well as spam, are continuing to get through email security systems.
The findings which were taken from its Mimecast Email Security Risk Assessment (ESRA) discovered that emails that containing no malware rely on duping recipients into responding to a request that usually involves sending the attacker money or highly monetised data.
Furthermore, 40 million emails had been inspected by Mimecast, all of which had already passed through the incumbent email security vendor or cloud email service in use by each organisation.
The ESRA test uncovered almost 9 million pieces of spam, 8,318 dangerous file types, 1,669 known and 487 unknown malware attachments and 8,605 impersonation attacks. The data reinforces the concerning reality that the industry must work towards a higher standard of email security, as 90% of attacks start with email.
Ed Jennings, chief operating officer at Mimecast, said: "Cybercriminals are constantly adapting their attack methods. For instance, this latest ESRA analysis reflects how impersonation attacks are getting through existing email security defences at an alarming rate. If a CISO isn't reviewing its current email security solution on a 12-18 month basis, they may be surprised at what threats are now getting into employees' inboxes.
"At the same time, email security providers need to ensure they're doing their due diligence to protect customers from new attacks, whether they be advanced or simple. The Mimecast ESRA results show a clear need for the security industry to come together in the fight against email-borne threats."