Spam and phishing in 2025

This report summarizes 2025 global spam and phishing trends: massive volumes of phishing (554M blocked link attempts) and malicious email attachments (144.7M blocked) were observed, with attackers focusing on credential harvesting (messaging apps, government services, KYC), scams (ticket, job, investment, and brand-partner fraud), and distribution techniques that abuse legitimate platforms (Google services, OpenAI, link-protection services) and use QR codes and password-protected archives; multiple malware and stealer families (e.g., Makoob, Badun, Taskun, Agensla, Noon) were highlighted along with regional targeting and top-level domain trends.