SpyCloud Data Shows Corporate Users 3x More Likely to Be Targeted by Phishing Than by Malware – Latest Hacking News

Hey there, CyberNewsWire readers!

Exciting news from Austin, TX, USA on December 4th, 2025 – Phishing is on the rise!

SpyCloud, the go-to for identity threat protection, just released data showing a staggering 400% increase in phishing attacks targeting corporate users. Shockingly, nearly 40% of the 28+ million phished records contained business email addresses, highlighting the urgency for real-time visibility into identity exposures. This means your workforce is now three times more likely to be hit by phishing than infostealer malware. 

The cyber landscape is evolving, and SpyCloud predicts this trend will continue in 2026. Phishing is now the primary gateway for cybercriminals to enter enterprise environments, as stated in their 2025 Identity Threat Report. In fact, phishing has become the leading entry point for ransomware, accounting for 35% of all ransomware infections. 

“Phishing has become a highly scalable tool for cybercriminals to breach enterprise environments,” said Trevor Hilligoss, SpyCloud’s Head of Security Research. “With cybercrime enablement services providing advanced tools to low-skilled actors, we’re seeing a surge in compromising users at scale. SpyCloud’s insights give organizations a crucial edge in detecting and remediating compromised credentials before they’re exploited.”

SpyCloud stands out by recapturing and automatically remediating successfully phished identity data and targeting lists, thwarting follow-on attacks like ransomware, fraud, and account takeover.

“Traditional defenses are no longer enough to combat phishing and malware attempts,” said Damon Fleury, SpyCloud’s Chief Product Officer. “Prevention is key, but without real-time visibility and post-compromise remediation, organizations remain vulnerable to data breaches. It’s time to take action beyond the basics.”

While phishing dominates, malware remains a significant threat vector. With remote work and BYOD policies, personal exposures are increasingly exploited to breach enterprise systems. The 2025 Nikkei breach is a recent case where malware on a personal device led to the compromise of corporate data. Despite only 11.5% of malware infections directly targeting business email addresses, SpyCloud’s data reveals that nearly 1 in 2 corporate users have fallen victim to infostealer malware infections, emphasizing the lateral movement from personal to corporate accounts by threat actors.

“Enterprise protection now extends beyond corporate accounts,” Fleury emphasized. “As passwords and identity data are reused across personal and professional domains, monitoring and remediating exposures across all digital identities is paramount.”

SpyCloud leads in holistic identity protection, safeguarding organizations from phishing, malware, and breach exposures across personal and professional identities. Dive into their solutions to learn more.

About SpyCloud:

SpyCloud disrupts cybercrime by transforming darknet data. Their automated solutions leverage advanced analytics and AI to prevent ransomware, detect insider threats, and protect identities. With data from breaches, malware, and successful phishes, they power dark web monitoring and identity theft protection services. Trusted by Fortune 10 companies and global enterprises, SpyCloud’s mission is to safeguard businesses and consumers from identity theft.

For more insights and company data, visit spycloud.com.

Contact

Sr. Account Director
Emily Brown
REQ on behalf of SpyCloud
[email protected]

Leave a Reply

Your email address will not be published. Required fields are marked *