Over 1 in 20 emails are malicious, warns internet giant Cloudflare

cointelegraph2025-12-16 tarihinde yayınlandı2025-12-16 tarihinde güncellendi

Özet

More than 5% of all emails sent contain malicious content, with that figure surging to nearly 10% in November, according to Cloudflare's 2025 year-in-review report. Malicious emails are defined as those capable of causing harm, such as stealing credentials, data, or money. These threats are particularly relevant to crypto investors, as phishing attacks have increased in complexity and can result in irreversible losses. Deceptive links were the most common threat category, making up 52% of malicious emails. Identity deception followed at 38%, where attackers impersonate trusted individuals using spoofed domains. The most abused top-level domain was “.christmas,” with 92.7% of emails from it being malicious. Additional research from Barracuda found that one in four emails were unwanted spam, a quarter of all HTML attachments were malicious, and 12% of malicious PDF attachments were Bitcoin scams. Hornet Security also reported a 131% year-over-year increase in malware-laden emails, confirming email as a consistent vector for cyberattacks.

More than 5% of all emails sent worldwide contain malicious content, according to internet infrastructure giant Cloudflare.

The web security giant revealed that an aggregate of 5.6% of global email traffic analyzed by the firm over the past year was found to be malicious. This equates to more than one in every twenty emails containing harmful content.

In November, that figure surged to almost one in 10, nearly double the average for the year, it found.

Malicious emails include those that can cause harm, such as the theft of credentials, data, or money, Cloudflare explained in its 2025 year-in-review report.

The findings are particularly relevant to crypto investors, as phishing attacks targeting crypto traders, investors, and executives have increased in complexity and surged in recent months.

Crypto phishing links can be especially damaging. Once a victim falls for one of these malicious links or sends cryptocurrency to a scammer, there’s usually no way back.

Malicious emails surged to 9.7% in November. Source: Cloudflare

Deceptive links dominate threat categories

More than half of these malicious emails, or 52%, contained a deceptive link, which was the highest threat category, it reported.

Identity deception was the second-highest at 38%, up from 35% in 2024, as attackers impersonated trusted individuals using spoofed domains, similar-looking domains, or display name tricks.

Related: Email auto-reply vulnerability allows hackers to mine cryptocurrency

Cloudflare also revealed that the most abused top-level domain (TLD) extension was “.christmas,” with 92.7% malicious emails and 7.1% spam originating from this domain type.

Other highly abused domain names included “.lol,” “.forum,” “.help,” “.best” and “.click.”

Deceptive links were the highest threat category among malicious emails. Source: Cloudflare

A quarter of HTML attachments are malicious

Earlier this year, researchers at cybersecurity company Barracuda analyzed 670 million emails that were malicious or unwanted spam.

They discovered that email remains the most common attack vector for cyber threats, with malicious attachments and links being used to distribute malware, launch phishing campaigns, and exploit vulnerabilities.

As many as one in four emails were unwanted spam, a quarter of all HTML attachments were malicious, and 12% of malicious PDF attachments were Bitcoin scams, they reported.

In November, Hornet Security reported that email was a “consistent delivery vector” for cyberattacks in 2025, with malware-laden emails surging by 131% year-over-year.

Magazine: Do Kwon sentenced to 15 years, Bitcoin’s ‘choppy dance’: Hodler’s Digest

İlgili Okumalar

380,000 Apps Exposed, 2,000+ Apps Leaked Secrets: AI Programming Turns 'Intranet' into Public Internet

Israeli cybersecurity firm RedAccess uncovered a severe data exposure trend linked to "vibe coding" or AI-powered software development tools. Their research found approximately 38,000 publicly accessible web applications built with platforms like Lovable, Base44, Netlify, and Replit. Of these, an estimated 2,000 apps exposed sensitive corporate and personal data, including medical records, financial information, internal strategic documents, and customer chat logs. In some cases, access even granted administrative privileges. The core issue stems from default privacy settings that make applications public by default, combined with a lack of built-in security controls (like authentication) in the AI-generated code. This allows employees without security expertise—"citizen developers"—to easily create and deploy applications that bypass standard corporate security reviews. The exposed apps, often indexed by search engines, are trivially discoverable. While some platform providers (Replit, Lovable, Wix/Base44) argue that security configuration is the user's responsibility and question the validity of some findings, security researchers confirm the widespread reality of such exposures. This pattern, also noted in prior studies, highlights a critical security gap as AI democratizes app creation, potentially leading to massive, unintentional data leaks.

marsbit20 dk önce

380,000 Apps Exposed, 2,000+ Apps Leaked Secrets: AI Programming Turns 'Intranet' into Public Internet

marsbit20 dk önce

Attracting Global Capital, Asia's New 'Super Cycle' Is Unfolding

Investors are turning to Asia as the next frontier for global equity growth, with a new "super cycle" unfolding across the region. Driven by the AI revolution, Asian markets, particularly South Korea, have seen significant rallies. According to Morgan Stanley analysis, the underlying drivers of Asia's industrial cycle are shifting from traditional sectors like real estate and manufacturing to massive investments in AI infrastructure, energy security and transition, and supply chain resilience. Fixed asset investment in Asia is projected to grow from around $11 trillion in 2025 to $16 trillion by 2030, with a 7% annual growth rate from 2026-2030. The AI wave is a primary catalyst, driving immense capital expenditure for chips, servers, data centers, and power systems. Asia is central to this hardware supply chain. In China, AI investment is focused on building a full-system domestic capability, with the local AI chip market potentially reaching $86 billion by 2030. Beyond AI, China's export story is expanding from EVs and batteries to robotics. The country already captures about half of new global industrial robot demand and over 90% of humanoid robot shipments. This growth phase mirrors the early stages of China's EV export boom. Simultaneously, energy security investments, spurred by AI's massive power needs, are rising, with China benefiting from its leadership in solar, batteries, and EVs. Regional defense spending is also increasing structurally, supporting demand for advanced manufacturing. The main beneficiaries are China, South Korea, and Japan, positioned in core supply chain areas. However, risks remain, including potential overcapacity, profit margin pressures from competition, persistent technological restrictions, geopolitical friction, and workforce displacement due to AI-driven automation. Market volatility is also expected to increase as investor expectations diverge on the realization of these capital investment and export themes.

marsbit21 dk önce

Attracting Global Capital, Asia's New 'Super Cycle' Is Unfolding

marsbit21 dk önce

OpenAI's Largest Internal Wealth Creation: 600 Individuals Cash Out $6.6 Billion Combined, 75 Take the Full $30 Million Cap

OpenAI conducted its largest-ever internal stock sale in October, allowing over 600 current and former employees to collectively cash out approximately $6.6 billion. About 75 individuals sold the maximum allowed amount of $30 million per person, a limit tripled from $10 million due to high investor demand. The tender offer was based on a $500 billion company valuation. President Greg Brockman confirmed in court that his OpenAI stake is worth around $30 billion. Employees collectively own about 26% of the company, with average paper wealth per employee around $1 billion, far exceeding pre-IPO norms at other major tech firms. Following a recent funding round at an $852 billion valuation and with monthly revenue reaching $2 billion, OpenAI is reportedly preparing for a potential trillion-dollar IPO in late 2026.

marsbit54 dk önce

OpenAI's Largest Internal Wealth Creation: 600 Individuals Cash Out $6.6 Billion Combined, 75 Take the Full $30 Million Cap

marsbit54 dk önce

Japan's Bond Market to Go Fully 'On-Chain'

The article details Japan's urgent move to tokenize its Government Bonds (JGBs) on the blockchain, specifically via the Canton Network, in a landmark 2026 proof-of-concept. With over $9 trillion in circulation, JGBs are a cornerstone of Asian institutional collateral, but their legacy settlement system is slow and limited to Tokyo business hours. This inefficiency risks JGBs losing their premier status to faster, 24/7 tokenized U.S. Treasuries, already being settled on Canton by giants like DTCC and JPMorgan. Canton Network was chosen for its unique architecture, enabling atomic, real-time settlements while ensuring strict data privacy and legal compliance—critical for sovereign debt. The shift to "always-on" collateral promises transformative benefits: reducing forced asset sales during market stress by allowing direct collateral posting, eliminating settlement risk in repo transactions, and integrating tokenized commercial bank deposits for institutional-grade cash settlement. This convergence of major sovereign bonds (U.S., Japanese, European) on Canton positions it as a potential new global financial rail, akin to SWIFT for collateral movement. The article frames this as a profound efficiency upgrade within the existing financial system, empowering traditional institutions with superior infrastructure rather than displacing them.

marsbit1 saat önce

Japan's Bond Market to Go Fully 'On-Chain'

marsbit1 saat önce

Funding Weekly Report | 14 Public Funding Events, Kalshi Completes $10B New Funding Round at $220B Valuation Led by Coatue Management

Weekly Funding Roundup: 14 Deals and $10.49B+ in Total Funding, Led by Kalshi's $1B Round Last week (5.4-5.10) saw 14 notable funding events in the global blockchain ecosystem, raising over $10.49 billion in total. Key highlights include Kalshi, a prediction market platform, securing a $1 billion round led by Coatue Management, reaching a $22 billion valuation. The platform now boasts ~2 million MAUs and $178B in annualized trading volume. In DeFi, regulated on-chain reinsurer OnRe raised $5 million in Series A funding, and Bitcoin-backed credit protocol Saturn Credit completed a $2 million seed round. For Infrastructure & Tools, OpenTrade raised $17 million to expand its stablecoin yield infrastructure, and RWA platform Balcony secured $12.7 million to deploy its property settlement service in the US. Centralized Finance saw one deal: AI-driven trading platform Stockcoin.ai completed a seed round led by Amber Group. In the prediction market sector alongside Kalshi, AI-powered platform Elastics raised $2 million. Other notable deals include SC Ventures' strategic investment in crypto market maker GSR and Centrifuge securing a "seven-figure" investment from Coinbase to become a core RWA partner for Base. On the investor side, Haun Ventures raised a new $1 billion fund targeting crypto and AI, and Multi Investment raised ~$616 million to focus on blockchain and Web3 investments.

marsbit1 saat önce

Funding Weekly Report | 14 Public Funding Events, Kalshi Completes $10B New Funding Round at $220B Valuation Led by Coatue Management

marsbit1 saat önce

İşlemler

Spot
Futures

Popüler Makaleler

T Nasıl Satın Alınır

HTX.com’a hoş geldiniz! Threshold Network Token (T) satın alma işlemlerini basit ve kullanışlı bir hâle getirdik. Adım adım açıkladığımız rehberimizi takip ederek kripto yolculuğunuza başlayın. 1. Adım: HTX Hesabınızı OluşturunHTX'te ücretsiz bir hesap açmak için e-posta adresinizi veya telefon numaranızı kullanın. Sorunsuzca kaydolun ve tüm özelliklerin kilidini açın. Hesabımı Aç2. Adım: Kripto Satın Al Bölümüne Gidin ve Ödeme Yönteminizi SeçinKredi/Banka Kartı: Visa veya Mastercard'ınızı kullanarak anında Threshold Network Token (T) satın alın.Bakiye: Sorunsuz bir şekilde işlem yapmak için HTX hesap bakiyenizdeki fonları kullanın.Üçüncü Taraflar: Kullanımı kolaylaştırmak için Google Pay ve Apple Pay gibi popüler ödeme yöntemlerini ekledik.P2P: HTX'teki diğer kullanıcılarla doğrudan işlem yapın.Borsa Dışı (OTC): Yatırımcılar için kişiye özel hizmetler ve rekabetçi döviz kurları sunuyoruz.3. Adım: Threshold Network Token (T) Varlıklarınızı SaklayınThreshold Network Token (T) satın aldıktan sonra HTX hesabınızda saklayın. Alternatif olarak, blok zinciri transferi yoluyla başka bir yere gönderebilir veya diğer kripto para birimlerini takas etmek için kullanabilirsiniz.4. Adım: Threshold Network Token (T) Varlıklarınızla İşlem YapınHTX'in spot piyasasında Threshold Network Token (T) ile kolayca işlemler yapın.Hesabınıza erişin, işlem çiftinizi seçin, işlemlerinizi gerçekleştirin ve gerçek zamanlı olarak izleyin. Hem yeni başlayanlar hem de deneyimli yatırımcılar için kullanıcı dostu bir deneyim sunuyoruz.

416 Toplam GörüntülenmeYayınlanma 2024.12.10Güncellenme 2025.03.21

T Nasıl Satın Alınır

Tartışmalar

HTX Topluluğuna hoş geldiniz. Burada, en son platform gelişmeleri hakkında bilgi sahibi olabilir ve profesyonel piyasa görüşlerine erişebilirsiniz. Kullanıcıların T (T) fiyatı hakkındaki görüşleri aşağıda sunulmaktadır.

活动图片