Over 1 in 20 emails are malicious, warns internet giant Cloudflare

cointelegraphPublicado em 2025-12-16Última atualização em 2025-12-16

Resumo

More than 5% of all emails sent contain malicious content, with that figure surging to nearly 10% in November, according to Cloudflare's 2025 year-in-review report. Malicious emails are defined as those capable of causing harm, such as stealing credentials, data, or money. These threats are particularly relevant to crypto investors, as phishing attacks have increased in complexity and can result in irreversible losses. Deceptive links were the most common threat category, making up 52% of malicious emails. Identity deception followed at 38%, where attackers impersonate trusted individuals using spoofed domains. The most abused top-level domain was “.christmas,” with 92.7% of emails from it being malicious. Additional research from Barracuda found that one in four emails were unwanted spam, a quarter of all HTML attachments were malicious, and 12% of malicious PDF attachments were Bitcoin scams. Hornet Security also reported a 131% year-over-year increase in malware-laden emails, confirming email as a consistent vector for cyberattacks.

More than 5% of all emails sent worldwide contain malicious content, according to internet infrastructure giant Cloudflare.

The web security giant revealed that an aggregate of 5.6% of global email traffic analyzed by the firm over the past year was found to be malicious. This equates to more than one in every twenty emails containing harmful content.

In November, that figure surged to almost one in 10, nearly double the average for the year, it found.

Malicious emails include those that can cause harm, such as the theft of credentials, data, or money, Cloudflare explained in its 2025 year-in-review report.

The findings are particularly relevant to crypto investors, as phishing attacks targeting crypto traders, investors, and executives have increased in complexity and surged in recent months.

Crypto phishing links can be especially damaging. Once a victim falls for one of these malicious links or sends cryptocurrency to a scammer, there’s usually no way back.

Malicious emails surged to 9.7% in November. Source: Cloudflare

Deceptive links dominate threat categories

More than half of these malicious emails, or 52%, contained a deceptive link, which was the highest threat category, it reported.

Identity deception was the second-highest at 38%, up from 35% in 2024, as attackers impersonated trusted individuals using spoofed domains, similar-looking domains, or display name tricks.

Related: Email auto-reply vulnerability allows hackers to mine cryptocurrency

Cloudflare also revealed that the most abused top-level domain (TLD) extension was “.christmas,” with 92.7% malicious emails and 7.1% spam originating from this domain type.

Other highly abused domain names included “.lol,” “.forum,” “.help,” “.best” and “.click.”

Deceptive links were the highest threat category among malicious emails. Source: Cloudflare

A quarter of HTML attachments are malicious

Earlier this year, researchers at cybersecurity company Barracuda analyzed 670 million emails that were malicious or unwanted spam.

They discovered that email remains the most common attack vector for cyber threats, with malicious attachments and links being used to distribute malware, launch phishing campaigns, and exploit vulnerabilities.

As many as one in four emails were unwanted spam, a quarter of all HTML attachments were malicious, and 12% of malicious PDF attachments were Bitcoin scams, they reported.

In November, Hornet Security reported that email was a “consistent delivery vector” for cyberattacks in 2025, with malware-laden emails surging by 131% year-over-year.

Magazine: Do Kwon sentenced to 15 years, Bitcoin’s ‘choppy dance’: Hodler’s Digest

Leituras Relacionadas

Fu Peng's First Public Speech in 2026: What Exactly Are Crypto Assets? Why Did I Join the Crypto Asset Industry?

Fu Peng, a renowned macroeconomist and now Chief Economist at New火 Group, delivered his first public speech of 2026 at the Hong Kong Web3 Festival. He explained his perspective on crypto assets and why he joined the industry, framing it within the context of macroeconomic trends and financial evolution. Fu emphasized that crypto assets are transitioning from an early, belief-driven phase to a mature, institutionally integrated asset class. He drew parallels to the 1970s-80s, when technological advances (like computing) revolutionized traditional finance, leading to the rise of FICC (Fixed Income, Currencies, and Commodities). Similarly, current advancements in AI, data, and blockchain are reshaping finance, with crypto assets becoming part of a new "FICC + C" (C for Crypto) framework. He noted that institutional capital, including traditional hedge funds, avoided early crypto due to its speculative nature but are now engaging as regulatory clarity emerges (e.g., stablecoin laws, CFTC classifying crypto as a commodity). Fu predicted that 2025-2026 marks a turning point where crypto becomes a standardized, financially viable asset for diversified portfolios, akin to commodities or derivatives in traditional finance. Fu defined Bitcoin not as "digital gold" in a simplistic sense but as a value-preserving, financially tradable asset. He highlighted that crypto's future lies in regulated, institutional adoption, moving away from retail-dominated trading. His entry into crypto signals this maturation, where traditional finance integrates crypto into mainstream asset management.

marsbitHá 27m

Fu Peng's First Public Speech in 2026: What Exactly Are Crypto Assets? Why Did I Join the Crypto Asset Industry?

marsbitHá 27m

Cardano Gets Filecoin-Backed Storage Upgrade

Cardano's ecosystem has integrated a significant storage upgrade through a collaboration between Blockfrost and Filecoin. This new premium storage tier offers Cardano builders a decentralized, verifiable backup solution without requiring any changes to their existing workflows. The integration, which was initially announced in late 2024, has now been productized, providing enhanced data resilience for applications on Cardano. Charles Hoskinson endorsed the move, welcoming Filecoin as "one of the OGs" to the ecosystem. The service leverages Filecoin's decentralized storage network to strengthen app reliability and underscores a commitment to decentralization by coordinating two major layer-1 blockchain ecosystems.

bitcoinistHá 34m

Cardano Gets Filecoin-Backed Storage Upgrade

bitcoinistHá 34m

Justin Sun Sues Trump Family: What $75 Million Bought Was Only a Blacklist

Justin Sun, founder of Tron, has filed a lawsuit in federal court against World Liberty Financial (WLF), alleging he was made the "primary target of a fraudulent scheme" after investing $75 million. Sun claims the investment secured him an advisor title and WLFI tokens, which were later frozen by WLF, causing "hundreds of millions in losses." The dispute began in late 2024 when Sun's investment helped revive WLF's struggling token sale, which ultimately raised $550 million. Shortly after, the SEC dropped its lawsuit against Sun following Donald Trump's inauguration. However, relations soured when Sun refused WLF's demands for additional funding. In August 2025, WLF added a "blacklist" function to its smart contract, allowing it to unilaterally freeze tokens. Sun's holdings, worth approximately $107 million, were frozen, and he was threatened with token destruction. The lawsuit highlights WLF's structure, which directs 75% of token sale profits to the Trump family, who had earned $1 billion by December 2025. WLF's CEO is Zach Witkoff, son of U.S. Middle East envoy Steve Witkoff. The project faces scrutiny for opaque operations, including a controversial loan arrangement on the Dolomite platform, co-founded by a WLF advisor. Despite Sun's history with the SEC, the case underscores centralization risks within DeFi, as WLF controls governance and holds powers to freeze assets arbitrarily. Sun's tokens remain frozen as legal proceedings begin.

marsbitHá 34m

Justin Sun Sues Trump Family: What $75 Million Bought Was Only a Blacklist

marsbitHá 34m

$500 to Buy OpenAI Stock: Silicon Valley's Most Respectable Liquidity Invitation

Silicon Valley's largest venture capital platform, AngelList, has launched a new fund called USVC, allowing U.S. retail investors to buy into high-profile AI companies like OpenAI, Anthropic, and xAI with a minimum investment of $500—no accredited investor status required. Promoted by AngelList co-founder Naval Ravikant, the fund is framed as an opportunity for ordinary people to access high-growth private tech investments traditionally reserved for VCs. However, critics argue it functions more like an exit vehicle for early insiders. USVC acquires shares not through primary rounds but largely via secondary transactions—purchasing stakes from early investors, VC funds, and employees looking to cash out at peak valuations. With companies like xAI heavily weighted in the portfolio, the fund effectively channels retail money into providing liquidity for insiders who entered at much lower valuations. The fund’s structure raises concerns: shares are illiquid, with no secondary market, and buybacks are limited and discretionary. The actual annual fee reaches 3.61%, far above the advertised 1% management fee. This model parallels the "low float, high fully diluted valuation" strategy seen in crypto, where early investors profit by selling to latecomers at inflated prices. The timing—alongside similar moves by platforms like Robinhood—suggests that Silicon Valley’s sudden interest in retail inclusion may be less about democratizing access and more about securing exits for insiders.

marsbitHá 1h

$500 to Buy OpenAI Stock: Silicon Valley's Most Respectable Liquidity Invitation

marsbitHá 1h

Bitcoin Approaches $80,000 Mark, ETF Funds Continue Inflow, Is the Crypto Market Shifting?

Bitcoin is approaching the $80,000 mark, reaching a new high since February, while Ethereum remains around $2,400 with some altcoins surging significantly. Over the past 24 hours, $462 million in futures contracts were liquidated, with shorts accounting for $353 million. The market fear and greed index has risen to 60, indicating neutral sentiment. Global risk assets continue to rebound, with U.S. stock markets hitting record highs. The S&P 500, Nasdaq, and Dow Jones all saw gains. Meanwhile, the U.S. dollar index remains stable around 98.61. Geopolitical developments, including a temporary extension of the U.S.-Iran ceasefire, have influenced market dynamics, though tensions persist. Bitcoin spot ETFs have seen six consecutive days of net inflows, with a peak single-day inflow of $663.91 million. Ethereum spot ETFs also recorded nine straight days of net inflows. Stablecoin market capitalization has risen to $320.6 billion, with a weekly net inflow of $635 million. Market analysts note that Bitcoin's recovery is supported by renewed spot demand and ETF inflows. However, high realized profits and low volatility suggest caution, with resistance expected near $80,000. Institutional and ETF-driven demand is strengthening market support, indicating a potential shift toward a new trading range with increased upward momentum.

marsbitHá 1h

Bitcoin Approaches $80,000 Mark, ETF Funds Continue Inflow, Is the Crypto Market Shifting?

marsbitHá 1h

Trading

Spot
Futuros

Artigos em Destaque

Como comprar T

Bem-vindo à HTX.com!Tornámos a compra de Threshold Network Token (T) simples e conveniente.Segue o nosso guia passo a passo para iniciar a tua jornada no mundo das criptos.Passo 1: cria a tua conta HTXUtiliza o teu e-mail ou número de telefone para te inscreveres numa conta gratuita na HTX.Desfruta de um processo de inscrição sem complicações e desbloqueia todas as funcionalidades.Obter a minha contaPasso 2: vai para Comprar Cripto e escolhe o teu método de pagamentoCartão de crédito/débito: usa o teu visa ou mastercard para comprar Threshold Network Token (T) instantaneamente.Saldo: usa os fundos da tua conta HTX para transacionar sem problemas.Terceiros: adicionamos métodos de pagamento populares, como Google Pay e Apple Pay, para aumentar a conveniência.P2P: transaciona diretamente com outros utilizadores na HTX.Mercado de balcão (OTC): oferecemos serviços personalizados e taxas de câmbio competitivas para os traders.Passo 3: armazena teu Threshold Network Token (T)Depois de comprar o teu Threshold Network Token (T), armazena-o na tua conta HTX.Alternativamente, podes enviá-lo para outro lugar através de transferência blockchain ou usá-lo para transacionar outras criptomoedas.Passo 4: transaciona Threshold Network Token (T)Transaciona facilmente Threshold Network Token (T) no mercado à vista da HTX.Acede simplesmente à tua conta, seleciona o teu par de trading, executa as tuas transações e monitoriza em tempo real.Oferecemos uma experiência de fácil utilização tanto para principiantes como para traders experientes.

376 Visualizações TotaisPublicado em {updateTime}Atualizado em 2025.03.21

Como comprar T

Discussões

Bem-vindo à Comunidade HTX. Aqui, pode manter-se informado sobre os mais recentes desenvolvimentos da plataforma e obter acesso a análises profissionais de mercado. As opiniões dos utilizadores sobre o preço de T (T) são apresentadas abaixo.

活动图片

Categorias popularesright-arrow

Etiquetas Popularesright-arrow