Over 1 in 20 emails are malicious, warns internet giant Cloudflare

cointelegraphPublicado em 2025-12-16Última atualização em 2025-12-16

Resumo

According to Cloudflare's 2025 year-in-review report, over 5.6% of global email traffic was malicious, meaning more than one in twenty emails contained harmful content. This figure surged to nearly 10% in November. Malicious emails aim to steal credentials, data, or money, with deceptive links being the most common threat category at 52%. Identity deception followed at 38%. The report highlights that crypto investors are particularly at risk, as phishing attacks have grown more complex and damaging. Additionally, highly abused top-level domains include “.christmas,” “.lol,” and “.forum.” Other studies support these findings, noting that a quarter of HTML attachments are malicious and email remains a primary attack vector.

More than 5% of all emails sent worldwide contain malicious content, according to internet infrastructure giant Cloudflare.

The web security giant revealed that an aggregate of 5.6% of global email traffic analyzed by the firm over the past year was found to be malicious. This equates to more than one in every twenty emails containing harmful content.

In November, that figure surged to almost one in ten, nearly double the average for the year, it found.

Malicious emails include those that can cause harm, such as the theft of credentials, data, or money, Cloudflare explained in its 2025 year-in-review report.

The findings are particularly relevant to crypto investors, as phishing attacks targeting crypto traders, investors, and executives have increased in complexity and surged in recent months.

Crypto phishing links can be especially damaging. Once a victim falls for one of these malicious links or sends cryptocurrency to a scammer, there’s usually no way back.

Malicious emails surged to 9.7% in November. Source: Cloudflare

Deceptive links dominate threat categories

More than half of these malicious emails, or 52%, contained a deceptive link, which was the highest threat category, it reported.

Identity deception was the second-highest at 38%, up from 35% in 2024, as attackers impersonated trusted individuals using spoofed domains, similar-looking domains, or display name tricks.

Related: Email auto-reply vulnerability allows hackers to mine cryptocurrency

Cloudflare also revealed that the most abused top-level domain (TLD) extension was “.christmas,” with 92.7% malicious emails and 7.1% spam originating from this domain type.

Other highly abused domain names included “.lol,” “.forum,” “.help,” “.best” and “.click.”

Deceptive links were the highest threat category among malicious emails. Source: Cloudflare

A quarter of HTML attachments are malicious

Earlier this year, researchers at cybersecurity company Barracuda analyzed 670 million emails that were malicious or unwanted spam.

They discovered that email remains the most common attack vector for cyber threats, with malicious attachments and links being used to distribute malware, launch phishing campaigns, and exploit vulnerabilities.

As many as one in four emails were unwanted spam, a quarter of all HTML attachments were malicious, and 12% of malicious PDF attachments were Bitcoin scams, they reported.

In November, Hornet Security reported that email was a “consistent delivery vector” for cyberattacks in 2025, with malware-laden emails surging by 131% year-over-year.

Magazine: Do Kwon sentenced to 15 years, Bitcoin’s ‘choppy dance’: Hodler’s Digest

Leituras Relacionadas

W3.io and Space and Time Collaborate to Launch Verifiable AI Finance Infrastructure

W3.io and Space and Time have partnered to launch a verifiable AI finance infrastructure designed to address the accountability gap in autonomous financial operations. The collaboration combines W3’s platform for creating and automating agent-powered financial workflows with Space and Time’s verifiable data blockchain, ensuring end-to-end proof from execution to settlement. This two-layer verification system processes over 200,000 operations daily and has been validated in production by Creatorland, a platform serving 100,000 content creators. The partnership enables businesses to deploy multi-vendor financial processes quickly and auditably, with support from integrations including Circle, Stripe, and PayPal. The system provides a trust layer for autonomous financial movements, ensuring data integrity and operational transparency beyond traditional cloud databases.

TheNewsCryptoHá 1h

W3.io and Space and Time Collaborate to Launch Verifiable AI Finance Infrastructure

TheNewsCryptoHá 1h

New York AG Sues Coinbase, Gemini Over Alleged State Law Violations

New York Attorney General Letitia James has filed a lawsuit against Coinbase and Gemini, alleging their prediction markets violate state gambling laws. The complaint argues these platforms operate as unlicensed gambling activities since outcomes rely on chance, not skill. Both companies are also accused of allowing users under 21, the legal age for mobile sports betting in New York. The suit seeks restitution for customers, repayment of illegal profits, civil penalties, and restrictions on marketing, including a ban on promoting services on college campuses. Following the news, Coinbase's stock fell roughly 10%, while Gemini's dropped about 4%.

bitcoinistHá 2h

New York AG Sues Coinbase, Gemini Over Alleged State Law Violations

bitcoinistHá 2h

Crypto Extortion Hits Strait Of Hormuz As Scammers Exploit Shipping Crisis

An emerging crypto extortion scam is targeting shipping companies with vessels stranded near the Strait of Hormuz, according to maritime risk firm Marisks. Criminals posing as Iranian security officials are sending fraudulent messages offering safe passage in exchange for transit fees paid in Bitcoin or Tether. The scam exploits desperation amid the ongoing regional conflict, which has severely restricted movement through the critical waterway. Victims are instructed to submit documents and pay a cryptocurrency fee to secure transit. However, the messages are not from Iranian authorities. Paying could not only result in financial loss but also potentially violate international sanctions, as any crypto transfer linked to Iranian entities may be considered material support. Legal risks remain even if companies are defrauded. The scheme appears to capitalize on earlier reports that Iran was considering a real crypto-based toll system.

bitcoinistHá 5h

Crypto Extortion Hits Strait Of Hormuz As Scammers Exploit Shipping Crisis

bitcoinistHá 5h

MIT Researcher Proposes New Path To Make Bitcoin Quantum-Safe

MIT Digital Currency Initiative director Neha Narula proposes a practical, staged approach to make Bitcoin quantum-safe. She argues that Bitcoin should immediately implement low-risk defenses through a soft fork, rather than waiting for full consensus on more complex issues. Her recommended solution involves deploying a post-quantum output type like P2MR (BIP 360) along with a new quantum-resistant signature opcode. This would allow users to securely migrate their funds to quantum-resistant addresses, provided they avoid address exposure. While this doesn’t resolve all challenges—such as how to handle inactive or lost coins—Narula emphasizes that immediate action reduces risk and provides time to gather data before a cryptographically relevant quantum computer emerges. She dismisses alternative proposals as impractical for broad use and acknowledges tradeoffs, such as reduced privacy efficiency, but insists progress shouldn’t be delayed by unresolved governance debates.

bitcoinistHá 5h

MIT Researcher Proposes New Path To Make Bitcoin Quantum-Safe

bitcoinistHá 5h

What To Know About This Week’s CLARITY Act Push—And Why Mid-May Is Now Key

After months of delay, the Senate is approaching a decisive moment for the CLARITY Act, with mid-May emerging as a critical timeframe. Pressure from traditional banking groups, particularly concerning stablecoin yield restrictions, is causing potential delays. Banking associations are urging members to voice concerns to key negotiators like Senator Thom Tillis. Although a recent compromise largely satisfied the crypto industry, unresolved issues remain, including ethics and DeFi provisions. The markup could be postponed until after the Senate's recess, pending further negotiations.

bitcoinistHá 6h

What To Know About This Week’s CLARITY Act Push—And Why Mid-May Is Now Key

bitcoinistHá 6h

Trading

Spot
Futuros

Artigos em Destaque

Como comprar T

Bem-vindo à HTX.com!Tornámos a compra de Threshold Network Token (T) simples e conveniente.Segue o nosso guia passo a passo para iniciar a tua jornada no mundo das criptos.Passo 1: cria a tua conta HTXUtiliza o teu e-mail ou número de telefone para te inscreveres numa conta gratuita na HTX.Desfruta de um processo de inscrição sem complicações e desbloqueia todas as funcionalidades.Obter a minha contaPasso 2: vai para Comprar Cripto e escolhe o teu método de pagamentoCartão de crédito/débito: usa o teu visa ou mastercard para comprar Threshold Network Token (T) instantaneamente.Saldo: usa os fundos da tua conta HTX para transacionar sem problemas.Terceiros: adicionamos métodos de pagamento populares, como Google Pay e Apple Pay, para aumentar a conveniência.P2P: transaciona diretamente com outros utilizadores na HTX.Mercado de balcão (OTC): oferecemos serviços personalizados e taxas de câmbio competitivas para os traders.Passo 3: armazena teu Threshold Network Token (T)Depois de comprar o teu Threshold Network Token (T), armazena-o na tua conta HTX.Alternativamente, podes enviá-lo para outro lugar através de transferência blockchain ou usá-lo para transacionar outras criptomoedas.Passo 4: transaciona Threshold Network Token (T)Transaciona facilmente Threshold Network Token (T) no mercado à vista da HTX.Acede simplesmente à tua conta, seleciona o teu par de trading, executa as tuas transações e monitoriza em tempo real.Oferecemos uma experiência de fácil utilização tanto para principiantes como para traders experientes.

376 Visualizações TotaisPublicado em {updateTime}Atualizado em 2025.03.21

Como comprar T

Discussões

Bem-vindo à Comunidade HTX. Aqui, pode manter-se informado sobre os mais recentes desenvolvimentos da plataforma e obter acesso a análises profissionais de mercado. As opiniões dos utilizadores sobre o preço de T (T) são apresentadas abaixo.

活动图片

Categorias popularesright-arrow

Etiquetas Popularesright-arrow