Over 1 in 20 emails are malicious, warns internet giant Cloudflare

cointelegraphPublicado em 2025-12-16Última atualização em 2025-12-16

Resumo

More than 5% of all emails sent contain malicious content, with that figure surging to nearly 10% in November, according to Cloudflare's 2025 year-in-review report. Malicious emails are defined as those capable of causing harm, such as stealing credentials, data, or money. These threats are particularly relevant to crypto investors, as phishing attacks have increased in complexity and can result in irreversible losses. Deceptive links were the most common threat category, making up 52% of malicious emails. Identity deception followed at 38%, where attackers impersonate trusted individuals using spoofed domains. The most abused top-level domain was “.christmas,” with 92.7% of emails from it being malicious. Additional research from Barracuda found that one in four emails were unwanted spam, a quarter of all HTML attachments were malicious, and 12% of malicious PDF attachments were Bitcoin scams. Hornet Security also reported a 131% year-over-year increase in malware-laden emails, confirming email as a consistent vector for cyberattacks.

More than 5% of all emails sent worldwide contain malicious content, according to internet infrastructure giant Cloudflare.

The web security giant revealed that an aggregate of 5.6% of global email traffic analyzed by the firm over the past year was found to be malicious. This equates to more than one in every twenty emails containing harmful content.

In November, that figure surged to almost one in 10, nearly double the average for the year, it found.

Malicious emails include those that can cause harm, such as the theft of credentials, data, or money, Cloudflare explained in its 2025 year-in-review report.

The findings are particularly relevant to crypto investors, as phishing attacks targeting crypto traders, investors, and executives have increased in complexity and surged in recent months.

Crypto phishing links can be especially damaging. Once a victim falls for one of these malicious links or sends cryptocurrency to a scammer, there’s usually no way back.

Malicious emails surged to 9.7% in November. Source: Cloudflare

Deceptive links dominate threat categories

More than half of these malicious emails, or 52%, contained a deceptive link, which was the highest threat category, it reported.

Identity deception was the second-highest at 38%, up from 35% in 2024, as attackers impersonated trusted individuals using spoofed domains, similar-looking domains, or display name tricks.

Related: Email auto-reply vulnerability allows hackers to mine cryptocurrency

Cloudflare also revealed that the most abused top-level domain (TLD) extension was “.christmas,” with 92.7% malicious emails and 7.1% spam originating from this domain type.

Other highly abused domain names included “.lol,” “.forum,” “.help,” “.best” and “.click.”

Deceptive links were the highest threat category among malicious emails. Source: Cloudflare

A quarter of HTML attachments are malicious

Earlier this year, researchers at cybersecurity company Barracuda analyzed 670 million emails that were malicious or unwanted spam.

They discovered that email remains the most common attack vector for cyber threats, with malicious attachments and links being used to distribute malware, launch phishing campaigns, and exploit vulnerabilities.

As many as one in four emails were unwanted spam, a quarter of all HTML attachments were malicious, and 12% of malicious PDF attachments were Bitcoin scams, they reported.

In November, Hornet Security reported that email was a “consistent delivery vector” for cyberattacks in 2025, with malware-laden emails surging by 131% year-over-year.

Magazine: Do Kwon sentenced to 15 years, Bitcoin’s ‘choppy dance’: Hodler’s Digest

Criptomoedas em alta

Leituras Relacionadas

Bitcoin Has Yet to Hit Bottom, While Exchange AscendEX Has Already "Run Away"

On July 6, 2026, cryptocurrency exchange AscendEX officially announced it is ceasing operations, with a complete shutdown scheduled for July 1, 2026. The platform cited the full implementation of the EU's MiCA regulation alongside market, financial, and operational challenges. Users can no longer perform most functions, with accounts limited to withdrawal purposes only. Prior to the announcement, on-chain investigator ZachXBT had issued warnings about significant withdrawal delays and a severe lack of high-liquidity assets (like ETH, USDT, SOL) in AscendEX's public hot wallets. Following the news, ZachXBT confirmed that the exchange lacks sufficient liquid assets to process multiple verified seven-figure withdrawal requests. AscendEX acknowledged that all withdrawals now require manual review, with no guarantees on processing times. Chain analysis via Arkham Intelligence shows the platform's marked wallets hold minimal readily accessible funds, with most recent activity being small withdrawals. One highlighted wallet reportedly contains only $13.46 million in altcoins. AscendEX, formerly known as BitMax, launched in 2018 and raised $50 million in a 2021 funding round. However, it suffered a major security breach in December 2021, losing approximately $77.7 million from hot wallets. The exchange compensated users but never fully recovered. The current crisis underscores the inherent risks of centralized exchanges, where poor liquidity management, regulatory pressure, and bear market conditions can trigger a collapse. The event is seen as part of a broader industry shakeout, highlighting the importance for users to prioritize non-custodial wallets or exchanges with transparent proof-of-reserves.

Foresight NewsHá 1h

Bitcoin Has Yet to Hit Bottom, While Exchange AscendEX Has Already "Run Away"

Foresight NewsHá 1h

Sevenfold Oversubscription, Can SK Hynix Save the Semiconductor Industry This Time?

SK Hynix's planned US ADR listing is drawing intense interest, with its offering reportedly oversubscribed by over seven times, potentially making it the largest foreign listing in US history. The fundraising of approximately $24.5 billion is intended for expanding its Korean production capacity, including advanced packaging and EUV equipment. This massive demand from long-term funds and prominent institutions like Baillie Gifford and Situational Awareness Partners (led by noted investor Leopold Aschenbrenner) presents a stark contrast to the recent downturn in the broader semiconductor sector. The sector has faced a significant correction, with SK Hynix's own stock falling nearly 30% from its June high. This sell-off was triggered by concerns that major tech giants might slow their AI infrastructure spending, following signals like Meta's reported plan to sell surplus computing capacity. The strong ADR appetite suggests long-term investors still believe in the AI investment cycle's fundamentals, viewing the recent decline more as a valuation reset than a demand collapse. Some market speculation even suggests the pre-IPO price drop could be strategic, setting the stage for a stronger post-listing performance. While SK Hynix's successful listing may act as a short-term positive catalyst for market sentiment, the article argues the true signal for a sustained semiconductor recovery will come from upcoming earnings reports of tech giants like Microsoft, Google, Meta, and Amazon. Their future capital expenditure plans will be crucial in determining whether the AI-driven growth cycle can continue.

Odaily星球日报Há 1h

Sevenfold Oversubscription, Can SK Hynix Save the Semiconductor Industry This Time?

Odaily星球日报Há 1h

Breaking News: Musk Delivers the Most Powerful Grok 4.5, Slashes Price of Top-tier Opus Intelligence Drastically

**Elon Musk Launches Grok 4.5: A Cost-Effective, High-Performance AI Rival** SpaceXAI, in collaboration with Cursor, has released Grok 4.5, its new flagship AI model designed specifically for coding and agentic tasks. Trained on tens of thousands of NVIDIA GB300 GPUs using massive, high-quality data filtered from trillions of Cursor developer interactions, the model emphasizes "per-token intelligence." In benchmark performance, Grok 4.5 is highly competitive. It scores 64.7% on SWE Bench Pro (surpassing GPT-5.5's 58.6% and Opus 4.7's 64.3%), 83.3% on Terminal Bench 2.1 (nearly matching GPT-5.5), and 62.0% on DeepSWE 1.0 (beating Opus 4.8). Overall, it ranks fourth in AAAI official tests and first in the Harvey legal agent benchmark. The model's key advantage is its combination of speed, efficiency, and low cost. It generates responses at 80 tokens per second and, crucially, uses far fewer tokens to complete tasks—4.2 times fewer than Opus 4.8 on SWE Bench Pro. It is priced at $2 per million input tokens and $6 per million output tokens, significantly undercutting competitors. Musk stated it is "roughly equivalent to Opus 4.7, but much faster." Early user tests show Grok 4.5 can generate functional code for applications like 3D solar system simulators and basic games from simple prompts, though some note it still lags behind top models in certain creative tasks. Musk has hinted at a major update next month, leveraging real-world engineering data from his companies, with an even larger 2-trillion parameter version reportedly in development. Grok 4.5 positions itself not as the absolute strongest model, but as a highly efficient and affordable alternative in the top tier.

marsbitHá 1h

Breaking News: Musk Delivers the Most Powerful Grok 4.5, Slashes Price of Top-tier Opus Intelligence Drastically

marsbitHá 1h

Trading

Spot

Artigos em Destaque

Como comprar T

Bem-vindo à HTX.com!Tornámos a compra de Threshold Network Token (T) simples e conveniente.Segue o nosso guia passo a passo para iniciar a tua jornada no mundo das criptos.Passo 1: cria a tua conta HTXUtiliza o teu e-mail ou número de telefone para te inscreveres numa conta gratuita na HTX.Desfruta de um processo de inscrição sem complicações e desbloqueia todas as funcionalidades.Obter a minha contaPasso 2: vai para Comprar Cripto e escolhe o teu método de pagamentoCartão de crédito/débito: usa o teu visa ou mastercard para comprar Threshold Network Token (T) instantaneamente.Saldo: usa os fundos da tua conta HTX para transacionar sem problemas.Terceiros: adicionamos métodos de pagamento populares, como Google Pay e Apple Pay, para aumentar a conveniência.P2P: transaciona diretamente com outros utilizadores na HTX.Mercado de balcão (OTC): oferecemos serviços personalizados e taxas de câmbio competitivas para os traders.Passo 3: armazena teu Threshold Network Token (T)Depois de comprar o teu Threshold Network Token (T), armazena-o na tua conta HTX.Alternativamente, podes enviá-lo para outro lugar através de transferência blockchain ou usá-lo para transacionar outras criptomoedas.Passo 4: transaciona Threshold Network Token (T)Transaciona facilmente Threshold Network Token (T) no mercado à vista da HTX.Acede simplesmente à tua conta, seleciona o teu par de trading, executa as tuas transações e monitoriza em tempo real.Oferecemos uma experiência de fácil utilização tanto para principiantes como para traders experientes.

489 Visualizações TotaisPublicado em {updateTime}Atualizado em 2026.06.02

Como comprar T

Discussões

Bem-vindo à Comunidade HTX. Aqui, pode manter-se informado sobre os mais recentes desenvolvimentos da plataforma e obter acesso a análises profissionais de mercado. As opiniões dos utilizadores sobre o preço de T (T) são apresentadas abaixo.

活动图片