India has emerged as a significant hotspot for phishing attacks globally, ranking third after the United States and the United Kingdom, a recent report reveals. The technology sector in India is particularly vulnerable, with nearly one-third of all phishing incidents targeting this industry. This information comes from the ThreatLabz 2024 Phishing Report by cybersecurity firm Zscaler, which analyzed over 2 billion blocked phishing transactions from January to December 2023.

The report highlights a worrying 60 per cent increase in phishing attacks worldwide over the past year. In India, the technology industry is not the only sector under siege; the finance and insurance sectors have also seen a dramatic rise in phishing attempts, with a staggering 393 per cent increase compared to the previous year. The manufacturing industry follows closely, experiencing a 31 per cent surge in attacks.

According to the findings, the United States bore the brunt of these attacks, with 55.9 per cent of phishing scams targeting it. The United Kingdom and India followed with 5.6 per cent and 3.9 per cent, respectively. India alone faced over 79 million phishing attacks in 2023, underscoring the growing challenge of cyber security in the country.

The report attributes this rise in phishing activities partly to the increased reliance on digital financial platforms, making sectors like finance and insurance prime targets for cybercriminals. The adoption of AI technology further exacerbates the vulnerability of these industries to such threats.

Sudip Banerjee, CTO for Asia Pacific & Japan at Zscaler, commented on the situation, noting that the Indian government is taking steps to combat these threats. The implementation of the Digital Personal Data Protection Act is one such measure aimed at curbing the proliferation of phishing attacks.

Moreover, the report sheds light on the most imitated brands in these phishing schemes. Microsoft tops the list as the most frequently impersonated enterprise brand in 2023, followed by Adobe, Amazon, and Google. Social media platforms are also heavily exploited, with Telegram experiencing the highest number of phishing hits, followed by Facebook and WhatsApp.

The use of AI by cybercriminals to facilitate phishing attacks is particularly concerning. According to the report, Large Language Models (LLMs) have simplified the process for attackers, enabling even those with minimal coding experience to execute sophisticated phishing campaigns.

This surge in phishing attacks underscores the critical need for robust cybersecurity measures and public awareness about digital safety practices. As cybercriminals become more sophisticated in their methods, individuals and organizations must stay vigilant and informed to protect themselves against these evolving threats.