{"id":20973,"date":"2025-05-07T10:00:46","date_gmt":"2025-05-07T08:00:46","guid":{"rendered":"https:\/\/cyberinsights.iainfraser.net\/?p=20973"},"modified":"2026-06-15T15:29:31","modified_gmt":"2026-06-15T13:29:31","slug":"low-tech-phishing-tactics-rising","status":"publish","type":"post","link":"https:\/\/smecyberinsights.co.uk\/index.php\/2025\/05\/07\/low-tech-phishing-tactics-rising\/","title":{"rendered":"EMAIL SECURITY: Low-Tech Phishing Tactics Rising as Cybercriminals Target Businesses"},"content":{"rendered":"\t\t
\n\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t\t\t
\"Partners1_NordVPN\"<\/figure><\/div>
\"Partners3_R3\"<\/figure><\/div>
\"Partners2_Zoho\"<\/figure><\/div>
\"Partners4_Plesk\"<\/figure><\/div>
\"Red_Button_Slider\"<\/figure><\/div>
\"ogo2\"<\/figure><\/div>
\"Detection.<\/figure><\/div>\t\t\t<\/div>\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\"Image\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t
Image Credit: SME CYBERInsights<\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t

Helping Keep Small Business CYBERSafe!
\n<\/strong>Gibraltar: Wednesday 07 May 2025 at 10:00 CET<\/p>\n

EMAIL SECURITY: Low-Tech Phishing Tactics Rising as Cybercriminals Target Businesses
\n<\/strong>By: Iain Fraser<\/a> – Cybersecurity Journalist<\/a>
\nSMECYBERInsights<\/a> \u2013\u00a0The UK Small Business Cybersecurity Network
\n<\/a>Google Indexed on 070525 at 11:36 CET<\/a>
\n#SMECyberInsights #SMECyberSecurity #SMECyberAwareness #CyberSafe #SME #SmallBusiness
\n<\/em><\/p>\n<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t

Cybercriminals are increasingly abandoning sophisticated technical approaches in favour of human-centric social engineering tactics, according to a new report from cybersecurity firm VIPRE Security Group<\/strong><\/a>.<\/strong><\/p>\n

The company’s Q1 2025 Email Threat Analysis<\/strong>, released this week, reveals a significant shift in attack vectors with “callback phishing” emerging as a major threat to businesses of all sizes, including SMEs <\/strong>who often lack robust security infrastructure.<\/p>\n

Old Tricks, New Tactics<\/strong><\/p>\n

After analysing 1.45 billion emails processed globally during the first quarter of 2025, VIPRE <\/strong>discovered that callback Phishing<\/strong> scams – virtually non-existent in their data last year – now account for 16% of all phishing attempts.<\/p>\n

These scams involve tricking victims into calling seemingly legitimate phone numbers through emails or texts, where they’re then manipulated into revealing sensitive information or downloading malware. The approach allows attackers to completely bypass traditional email scanning technology.<\/p>\n

This rise corresponds with a dramatic 42% drop in link-based phishing attempts compared to Q1 2024, suggesting criminals are adapting to evade increasingly effective link-scanning defences.<\/p>\n

SVG Files: The New Weapon of Choice<\/strong><\/p>\n

The report identifies another concerning trend for small and medium businesses: SVG image files are rapidly becoming Cybercriminals<\/strong>‘ preferred attachment type for delivering malicious payloads, accounting for 34% of Phishing<\/strong> attachments – nearly matching PDFs at 36%.<\/p>\n

By embedding malicious code in SVG files, attackers can execute JavaScript when opened in a web browser, redirecting users to compromised websites while bypassing anti-phishing technologies. The US remains the most targeted region for such attacks, followed by Europe.<\/p>\n

Manufacturing Sector Most Vulnerable<\/strong><\/p>\n

Particularly relevant for manufacturing SMEs<\/strong>, the report confirms the sector remains Cybercriminals’ primary target, accounting for 36% of targeted email attacks. Retail and financial sectors tie for second place at 15% each.<\/p>\n

This continued focus on manufacturing businesses highlights the need for enhanced vigilance and security awareness among smaller manufacturers who may lack the Cybersecurity resources of larger enterprises.<\/p>\n

Spam Dominates Email Traffic<\/strong><\/p>\n

The report presents a sobering picture of overall email security: 92% of all processed emails were classified as spam, with 67% of those categorised as actively malicious. The US leads as both the primary source and recipient of spam emails.<\/p>\n

For UK-based SMEs<\/strong>, the data shows the UK and Ireland each account for 8% of both sending and receiving malicious emails – a significant figure that underscores the need for robust email security among British small businesses.<\/p>\n

Processing 1.45 billion emails, the key findings:<\/strong><\/p>\n

\u2022 92%<\/strong> of emails were spam<\/p>\n

\u2022 Callbacks<\/strong> account for 1 in 5 phishing attempts<\/p>\n

\u2022 SVG<\/strong> files are fast becoming cybercriminals\u2019 favoured types of attachments<\/p>\n

\u2022 XRed<\/strong> was responsible for the most malware attacks in Q1 2025, surpassing Lumma<\/p>\n

\u2022 The manufacturing<\/strong> sector remains the most targeted sector<\/p>\n

\u2022 The US is the leading source <\/strong>of spam emails<\/p>\n

Rethinking Email Security<\/strong><\/p>\n

Usman Choudhary, Chief Product and Technology Officer at VIPRE Security Group<\/strong><\/a>, emphasised the implications of these findings: “There’s a clear shift in cybercriminals’ preference towards low-tech, high-impact, human-centric tactics. This demands a fundamental rethink of email security \u2013 one that addresses the human element as vigilantly as the technological.”<\/em><\/p>\n

The findings suggest that small and medium businesses, often operating with limited security resources, must prioritise both technical defences and staff training to combat these evolving threats.<\/p>\n

For SMEs<\/strong> concerned about these emerging threats, VIPRE<\/strong> recommends implementing comprehensive email security solutions that combine technical protection with ongoing security awareness training for all employees.<\/p>\n<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\n\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\tREAD FULL REPORT \/...<\/span>\n\t\t\t\t\t<\/span>\n\t\t\t\t\t<\/a>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\"CYBERInsights\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t
Image Credit: IfOnlyCommunications<\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t

SMECYBER Insights \u2013 Helping Keep Small Business CYBERSafe!\u00a0<\/strong><\/p>\n

Launched in 2020 by\u00a0Cybersecurity Journalist<\/a>\u00a0Iain Fraser<\/strong>\u00a0and his team at\u00a0IfOnly…<\/strong><\/a> SMECYBERInsights<\/strong><\/a> was developed to be the go-to platform providing definitive, reliable & actionable Cybersecurity News, Intel,\u00a0 Awareness & Training specifically written and curated for Small Business<\/strong><\/a> & Enterprise Owners, Partners and Directors throughout the UK.\u00a0#SMECyberInsights #SMECyberSecurity #CyberAttack #CyberAwareness\u00a0 #Compliance #DDoS #Fraud #Ransomware #ScamAlert #SME #SmallBusiness #SmallBusinessOwner #ThreatIntel <\/span>\u00a0<\/em><\/p>\n<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t

\n\t\t\t\t\t
\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\"UK\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t
<\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t

FOXTECH – Effortless Security | World-class Expertise<\/strong>
\nManaged Cyber Security Services for SMEs – <\/strong>Security monitoring, vulnerability management, penetration testing and consultancy.\u00a0Get straightforward advice on how to make your business more secure.<\/p>\n

Get In Touch –\u00a0<\/strong>Get in touch for a free, no obligation consultation. If you would prefer to speak to an expert now call us on: 0330 223 5622<\/strong><\/p>\n

LinkedIn: @FoxtechUK\u00a0<\/a> | Email: info@foxtrot-technologies.com<\/a>
\nFoxtrot Technologies, England. UK<\/p>\n<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\n\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\tGet a Demo<\/span>\n\t\t\t\t\t<\/span>\n\t\t\t\t\t<\/a>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t\t\t
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"_CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Report<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>\t\t\t<\/div>\n\t\t\t\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\t<\/path><\/svg>\t\t\t\t\t<\/div>\n\t\t\t\t\t
\n\t\t\t\t\t\t<\/path><\/svg>\t\t\t\t\t<\/div>\n\t\t\t\t\n\t\t\t\t\t\t\t\t\t
<\/div>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"

Image Credit: SME CYBERInsights READ FULL REPORT \/… Image Credit: IfOnlyCommunications Get a Demo<\/p>\n","protected":false},"author":1,"featured_media":6379,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"cybocfi_hide_featured_image":"yes","footnotes":""},"categories":[565],"tags":[567],"ppma_author":[505],"class_list":["post-20973","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybernewsbytes","tag-cybernewsbyte"],"featured_image_urls":{"full":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/04\/CI_Fishing_Phising_1-2.jpg",1019,717,false],"thumbnail":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/04\/CI_Fishing_Phising_1-2-150x150.jpg",150,150,true],"medium":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/04\/CI_Fishing_Phising_1-2-300x211.jpg",300,211,true],"medium_large":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/04\/CI_Fishing_Phising_1-2-768x540.jpg",640,450,true],"large":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/04\/CI_Fishing_Phising_1-2.jpg",640,450,false],"1536x1536":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/04\/CI_Fishing_Phising_1-2.jpg",1019,717,false],"2048x2048":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/04\/CI_Fishing_Phising_1-2.jpg",1019,717,false],"covernews-featured":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/04\/CI_Fishing_Phising_1-2.jpg",1019,717,false],"covernews-medium":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/04\/CI_Fishing_Phising_1-2-540x340.jpg",540,340,true]},"author_info":{"display_name":"Cybersecurity Journalist Iain Fraser","author_link":false},"category_info":"SMECYBERNEWSBYTES<\/a>","tag_info":"SMECYBERNEWSBYTES","comment_count":"0","authors":[{"term_id":505,"user_id":1,"is_guest":0,"slug":"admin_yjdstq4n","display_name":"Cybersecurity Journalist Iain Fraser","avatar_url":{"url":"https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/10\/index_image440-removebg-preview.png","url2x":"https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/10\/index_image440-removebg-preview.png"},"author_category":"1","user_url":"http:\/\/smecyberinsights.co.uk","last_name":"Cybersecurity Journalist","first_name":"Iain Fraser","job_title":"","description":""}],"_links":{"self":[{"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/posts\/20973","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/comments?post=20973"}],"version-history":[{"count":11,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/posts\/20973\/revisions"}],"predecessor-version":[{"id":29635,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/posts\/20973\/revisions\/29635"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/media\/6379"}],"wp:attachment":[{"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/media?parent=20973"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/categories?post=20973"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/tags?post=20973"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/ppma_author?post=20973"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}