Spycloud Analysis Reveals 94% Of Fortune 50 Companies Have Employee Data Exposed In Phishing Attacks

Austin, USA / Texas, May 7th, 2025, CyberNewsWire

SpyCloud, nan starring personality threat protection company, coming released an study of astir 6 cardinal phished information records recaptured from nan criminal underground complete nan past six months. Phishing attacks person been increasing successful standard and sophistication, and SpyCloud’s investigation reveals that cybercriminals are progressively targeting high-value personality information that tin beryllium utilized for follow-on attacks for illustration ransomware, relationship takeover, and fraud. 

While nan information reflects only a snapshot of nan phishing threat landscape, it provides valuable insights for organizations seeking to bolster defenses, heighten personification training, and forestall identity-based attacks. 

Key findings from SpyCloud’s study of phished information include:

• 94% of Fortune 50 companies person worker personality information exposed arsenic a consequence of phishing attacks. 
• 81% of these records incorporate email addresses, 42% see IP addresses, and 31% see user-agent accusation identifying instrumentality and browser details.
• The apical impersonated industries successful phishing campaigns include: telecommunications, IT, and financial services.
• Two thirds of nan 5.5 cardinal records contained credentials, financial information, aliases visitant metadata, while 37% came from email targeting lists (a postulation of addresses selected for phishing attempts, not needfully resulting successful compromise). 

“Phishing threats are not only increasing – they’re evolving. In nan past six months alone, we’ve seen a 17% summation successful phishing emails. What’s particularly concerning is that astir 82% of victims had their email credentials compromised successful anterior information breaches, giving attackers a captious advantage,” said Brian Jack, main accusation information serviceman astatine KnowBe4, a partner of SpyCloud. “This highlights nan urgent request for ongoing information consciousness training, but it’s only half nan equation. Security teams must besides person visibility into these circumstantial exposures truthful they tin return swift, targeted action to remediate. Combining quality vigilance pinch actionable intelligence is nan astir effective measurement to extremity phishing successful its tracks – and forestall it from opening nan doorway to broader cyberattacks.”

Phishing attacks are connected nan emergence – not because organizations deficiency defenses, but because cybercriminals are modernizing their tactics, evolving phishing campaigns into business standard operations pinch phishing-as-a-service (PhaaS) platforms and AI. With nan expertise to automate nan creation of blase phishing kits, threat actors tin much easy harvest credentials and 2FA codes, administer phishing links via QR codes, and bypass CAPTCHAs to debar detection. 

“To combat nan increasing standard and sophistication of phishing attacks, information teams request entree to real-time exposed personality information earlier it leads to broader compromise,” said Trevor Hilligoss, caput of information investigation astatine SpyCloud. “One area we find organizations lacking penetration is erstwhile it comes to phishing target lists, ripe pinch imaginable victims of phishing campaigns. Armed pinch this knowledge, organizations tin proactively emblem susceptible accounts, alert these users, and enactment moreover much vigilant to debar falling prey. This action, further up nan onslaught chain, takes a proactive attack to combating phishing threats earlier they happen.”

Hilligoss continues, “When organizations remediate phished credentials, terminate compromised web sessions, and enactment connected different stolen personality artifacts, they trim their consequence substantially – and disrupt attackers’ expertise to escalate privileges and motorboat ransomware.”

SpyCloud will dive deeper into these findings during its upcoming webinar connected Thursday, May 15, Phish Happens: What Recaptured Data Reveals About nan Industrialization of Phishing. Organizations willing successful detecting and disrupting phishing-related personality exposures earlier they escalate are invited to register here. 

About SpyCloud

SpyCloud transforms recaptured darknet information to disrupt cybercrime. Its automated personality threat protection solutions leverage precocious analytics to proactively forestall ransomware and relationship takeover, safeguard worker and user accounts, and accelerate cybercrime investigations. SpyCloud’s information from breaches, malware-infected devices, and successful phishes besides powers galore celebrated acheronian web monitoring and personality theft protection offerings. Customers see 7 of nan Fortune 10, on pinch hundreds of world enterprises, mid-sized companies, and authorities agencies worldwide. Headquartered successful Austin, TX, SpyCloud is location to much than 200 cybersecurity experts whose ngo is to protect businesses and consumers from nan stolen personality information criminals are utilizing to target them now.

To study much and spot insights connected users’ companies’ exposed data, users tin sojourn spycloud.com.

Contact

Brown
Emily
REQ connected behalf of SpyCloud
[email protected]