Credential phishing IOCs increased nearly 45% in Q3

Cofense Intelligence's Q3 2023 report observed a marked increase in email-based threats: credential phishing IOCs rose ~45% versus Q2 (and ~85% year-over-year), PDFs were the most common malicious attachment (~50% of malicious file extensions), QR codes in images/PDFs increased as an evasion technique, Emotet and QakBot remained inactive, and reconnaissance/password-dump utilities resurged to become a top malware type for the quarter.