Over 1 in 20 emails are malicious, warns internet giant Cloudflare

cointelegraphОпубліковано о 2025-12-16Востаннє оновлено о 2025-12-16

Анотація

More than 5% of all emails sent contain malicious content, with that figure surging to nearly 10% in November, according to Cloudflare's 2025 year-in-review report. Malicious emails are defined as those capable of causing harm, such as stealing credentials, data, or money. These threats are particularly relevant to crypto investors, as phishing attacks have increased in complexity and can result in irreversible losses. Deceptive links were the most common threat category, making up 52% of malicious emails. Identity deception followed at 38%, where attackers impersonate trusted individuals using spoofed domains. The most abused top-level domain was “.christmas,” with 92.7% of emails from it being malicious. Additional research from Barracuda found that one in four emails were unwanted spam, a quarter of all HTML attachments were malicious, and 12% of malicious PDF attachments were Bitcoin scams. Hornet Security also reported a 131% year-over-year increase in malware-laden emails, confirming email as a consistent vector for cyberattacks.

More than 5% of all emails sent worldwide contain malicious content, according to internet infrastructure giant Cloudflare.

The web security giant revealed that an aggregate of 5.6% of global email traffic analyzed by the firm over the past year was found to be malicious. This equates to more than one in every twenty emails containing harmful content.

In November, that figure surged to almost one in 10, nearly double the average for the year, it found.

Malicious emails include those that can cause harm, such as the theft of credentials, data, or money, Cloudflare explained in its 2025 year-in-review report.

The findings are particularly relevant to crypto investors, as phishing attacks targeting crypto traders, investors, and executives have increased in complexity and surged in recent months.

Crypto phishing links can be especially damaging. Once a victim falls for one of these malicious links or sends cryptocurrency to a scammer, there’s usually no way back.

*Malicious emails surged to 9.7% in November. Source:* *Cloudflare*

Deceptive links dominate threat categories

More than half of these malicious emails, or 52%, contained a deceptive link, which was the highest threat category, it reported.

Identity deception was the second-highest at 38%, up from 35% in 2024, as attackers impersonated trusted individuals using spoofed domains, similar-looking domains, or display name tricks.

Related: Email auto-reply vulnerability allows hackers to mine cryptocurrency

Cloudflare also revealed that the most abused top-level domain (TLD) extension was “.christmas,” with 92.7% malicious emails and 7.1% spam originating from this domain type.

Other highly abused domain names included “.lol,” “.forum,” “.help,” “.best” and “.click.”

*Deceptive links were the highest threat category among malicious emails. Source:* *Cloudflare*

A quarter of HTML attachments are malicious

Earlier this year, researchers at cybersecurity company Barracuda analyzed 670 million emails that were malicious or unwanted spam.

They discovered that email remains the most common attack vector for cyber threats, with malicious attachments and links being used to distribute malware, launch phishing campaigns, and exploit vulnerabilities.

As many as one in four emails were unwanted spam, a quarter of all HTML attachments were malicious, and 12% of malicious PDF attachments were Bitcoin scams, they reported.

In November, Hornet Security reported that email was a “consistent delivery vector” for cyberattacks in 2025, with malware-laden emails surging by 131% year-over-year.

Magazine: Do Kwon sentenced to 15 years, Bitcoin’s ‘choppy dance’: Hodler’s Digest

Пов'язані матеріали

A $50 Million Funding Round Ignites Airdrop Expectations, Making Variational the New Focus in Perp DEX

Perp DEX Variational has become a focal point in the airdrop community following its announcement of a $50 million Series A funding round led by Dragonfly Capital, with participation from Bain Capital Crypto and CoinBase Ventures. The news caused a significant pre-market price surge. Variational is a zero-fee perpetual decentralized exchange built on Arbitrum, notable for its "brokerage-style" model that aggregates liquidity from various sources. It currently ranks fourth in open interest among Perp DEXs and is the only top-five platform yet to issue a token. The primary way for users to participate is through its "Trade to Earn" points program, designed to reward organic trading activity. The system includes benefits for early users, a tiered rewards structure based on trading volume, and a referral program. The platform has committed to allocating approximately 50% of its token supply to the community. While an exact Token Generation Event (TGE) date has not been announced, official documentation indicates the points program will run at least until the end of Q3 2026. Prediction markets currently suggest a TGE is more likely in Q4 2026.

marsbit7 хв тому

A $50 Million Funding Round Ignites Airdrop Expectations, Making Variational the New Focus in Perp DEX

marsbit7 хв тому

$50 Million Funding Ignites Airdrop Anticipation, Variational Becomes New Focus of Perp DEX

Variational, a perpetual decentralized exchange (Perp DEX) on Arbitrum, has become a focal point in the crypto community after announcing a $50 million Series A funding round led by Dragonfly Capital, with participation from Bain Capital Crypto and Coinbase Ventures. This news caused a significant pre-listing price surge and increased predictions of a high fully diluted valuation (FDV) upon launch. A key feature of Variational is its zero-trading-fee model. It differentiates itself by aggregating multi-source liquidity, including traditional and crypto-native market makers, to address on-chain liquidity challenges. According to DefiLlama, it ranks fourth among Perp DEXs by open interest and is notable as the only top-five platform yet to issue a token. The primary way for users to engage is through its "Trade-to-Earn" Omni Points program. Points are awarded weekly based on trading activity, with bonuses for early users and a tiered reward system that incentivizes higher trading volumes. The program also includes a referral system offering USDC rewards and extra points. The design emphasizes organic trading over mere volume farming. While an exact Token Generation Event (TGE) date for the VAR token is not confirmed, official documentation states the points program will run at least until the end of Q3 2026. Community and prediction market sentiment generally expects the TGE to occur in Q3 or Q4 of this year.

Odaily星球日报9 хв тому

$50 Million Funding Ignites Airdrop Anticipation, Variational Becomes New Focus of Perp DEX

Odaily星球日报9 хв тому

Morning Brief | Deloitte Acquires Crypto Infrastructure Firm Blocknative; Stablecoin Firm Checker Raises $8M; a16z Likely Becomes Largest External Holder of HYPE

ChainCatcher Daily Update - May 21st Major headlines include Deloitte's acquisition of crypto infrastructure firm Blocknative, signaling further traditional finance adoption. In funding news, stablecoin infrastructure company Checker secured $8 million, while decentralized derivatives platform Variational raised $50 million in a Series A round led by Dragonfly Capital. Significant corporate moves saw Tether acquire SoftBank's entire stake in Twenty One Capital (XXI), and Mastercard pivot its strategy by investing in BVNK for stablecoin payments after abandoning Zerohash. VC giant Andreessen Horowitz (a16z) is reported to be a major external holder of HYPE, with positions exceeding $356 million. On the institutional front, MicroStrategy's CEO noted that 13 of its top 15 institutional shareholders increased their $MSTR holdings in Q1 2026, with aggregate positions growing 27%. Meanwhile, the parent company of the NYSE, ICE, announced plans to launch a futures market for AI computing power ("hashrate"). The report also features a "Meme Hot List" ranking trending tokens on Ethereum, Solana, and Base networks, and highlights several key articles. These include an analysis of renowned investor Duan Yongping's first crypto investment in Circle, concerns over talent drain and institutional selling pressure at the Ethereum Foundation, the growing business of crypto asset recovery, and an examination of the trillion-dollar potential and remaining hurdles for the tokenized asset market.

链捕手38 хв тому

Morning Brief | Deloitte Acquires Crypto Infrastructure Firm Blocknative; Stablecoin Firm Checker Raises $8M; a16z Likely Becomes Largest External Holder of HYPE

链捕手38 хв тому

The Bitcoin Playbook To Know: Step 4 Says A Crash Is Coming, But Where’s The Bottom?

A crypto analyst's six-step framework, based on the 2021 market cycle, suggests Bitcoin is approaching a critical phase. According to Merlijn The Trader, BTC has already completed the distribution, small consolidation, and redistribution phases. The next projected step is a significant price crash into an accumulation range between $45,000 and $59,000, representing a potential decline of 24% to 42% from current levels near $77,500. However, a key condition exists: if Bitcoin can maintain a weekly close above the $78,000 level, this deeper correction phase could be skipped entirely, allowing the cycle to advance directly toward re-accumulation and a potential future rally.

bitcoinist39 хв тому

The Bitcoin Playbook To Know: Step 4 Says A Crash Is Coming, But Where’s The Bottom?

bitcoinist39 хв тому

147 Trillion vs 70 Billion: The Rise of On-Chain 'Risk Managers' and the Potential Dawn of a New Era in DeFi Asset Management

"147 Trillion vs 70 Billion: The Rise of On-Chain 'Risk Managers' and the Potential Dawn of a New Era in DeFi Asset Management" Key Points: The role of professional asset managers is emerging in DeFi, ending the era where protocols and governance dictated everything. While early DeFi protocols like Aave and Compound bundled risk management within their code, innovations like Morpho have separated infrastructure from risk judgment. This allows specialized "Risk Managers" to operate independent lending vaults, acting as on-chain asset managers. The market, though early with ~$7B in assets under management (AUM), is rapidly consolidating around top performers like SteakhouseFi (RWA focus), SentoraHQ (AI-driven models), and Gauntlet (crisis management). This modular structure mirrors TradFi's division of labor: distributors (e.g., exchanges) source capital, Risk Managers design strategies and set standards, and underlying protocols handle custody and execution. For traditional asset managers, this familiar structure presents clear entry paths: 1) **Distribution**: Partnering with Risk Managers as a backend service. 2) **Supply**: Bringing real-world assets (RWA) on-chain as collateral. 3) **Operation**: Becoming a Risk Manager themselves (e.g., Bitwise). The core competency required is shifting from coding to traditional risk underwriting and financial expertise—areas where established institutions hold a natural advantage. While the current DeFi market (~$80B) is minuscule compared to global asset management (~$147T), it represents a significant growth runway. The teams that build the trusted standards and rails for risk-managed capital now are poised to define the market's future as institutional capital seeks secure on-ramps.

marsbit46 хв тому

Торгівля

Спот

Ф'ючерси

Обговорення

Ласкаво просимо до спільноти HTX. Тут ви можете бути в курсі останніх подій розвитку платформи та отримати доступ до професійної ринкової інформації. Нижче представлені думки користувачів щодо ціни T (T).