August 2025 Trends Report on Phishing Emails

Description

The analysis reveals that phishing was the predominant threat in email attachments during August 2025, accounting for 63% of cases. Threat actors employed HTML scripts to replicate legitimate login pages and promotional content, aiming to capture user credentials. The report highlights an increase in malware distribution through document files exploiting vulnerabilities, such as the Equation Editor EQNEDT32.EXE vulnerability (CVE-2017-11882), leading to Purecrypter malware execution. Additionally, there's a rising trend in distributing PE files compressed in ZIP formats via phishing emails. The analysis covers Korean language phishing emails, providing insights into commonly used keywords and attachment types. The report also includes statistics on attachment file extensions and distribution trends over the past six months.