Breaking Down Phishing Site TLDs and Certificate Abuse in Q1   Cybercriminals continue to heavily abuse domains to launch phishing attacks. PhishLabs’ analysis of Q1 phishing attacks has found that:

96% used Legacy Generic (gTLD) or Country Code (ccTLD) Top-level Domains Almost 83% abused HTTPS Domain Validated (DV) Certificates were used 94.5% of the time

https://info.phishlabs.com/blog/breaking-down-phishing-site-tlds-and-certificate-abuse-in-q1

62% of Phishing Sites Abuse Free Tools or Services In Q1, PhishLabs analyzed hundreds of thousands of phishing attacks and found more than 62% abused legitimate no-cost tools or services.

https://info.phishlabs.com/blog/62-of-phishing-sites-abuse-free-tools-or-services

Credential Theft, O365 Lures Dominate Corporate Inboxes in Q1   In Q1, PhishLabs analyzed and mitigated hundreds of thousands of phishing attacks that targeted corporate users. In this post, we break down these attacks and shed light on the phishing emails that are making it into corporate inboxes.

https://info.phishlabs.com/blog/credential-theft-o365-lures-dominate-corporate-inboxes-in-q1

47% Phishing Increase in Q1 Phishing is on the rise. PhishLabs identified 47% more phishing sites in Q1 of 2021 than there were in Q1 of 2020.  This trend is continuing as Q2 attacks are also up significantly year-over-year.

https://info.phishlabs.com/blog/47-phishing-increase-in-q1