Specifically, 85% of all malspam shipped to 2's Q2019 (April, May, and June) contained a link to a malicious file download instead of a malicious file attached to the email.
Q2 continues the trend observed at Q1, where malicious addresses URL they also dominated as the favorite way of distributing malware via spam.
"While the reason for the continued dominance of URLs may be due to a number of factors, the most important is that users are more suspicious of attachments," Proofpoint said.
Proofpoint's findings should impact the entire cybersecurity market. The companies that provide anti-phishing training must follow the hackers' tactics.
Employee education is important
A previous Proofpoint survey found that 99% of all phishing emails require human interaction, that is, opening files, clicking on links, or any other inattentive action. With a little training, employees can identify and avoid phishing attacks.