Highlights from the report include more than two hundred thousand unique phishing websites detected in August and September, SSL encryption for phishing sites overtaking SSL deployment for general websites, and a 10 percent increase in BEC attacks originating from free webmail accounts.
Threat actors hit a new milestone in their abuse of HTTPS or SSL Certs: Nearly 3/4 of all phishing sites now use it.
APWG's Q4 report shows ups and downs for 2019 phishing attacks, with SSL sites, web email, social media and BEC as the top trends.
APWG's Q3 report shows phishing increasing, 68% of phishing sites use HTTPS.
APWG's Q2 report shows phishing increasing, SaaS industry prime target, and threat actors are after gift cards.
Threat actors are officially using sites with HTTPS or an SSL cert more times than they don't.