Phishing Threats Evolve, Targeting More in 2025

Phishing and cyber fraud threats have continued to intensify into 2025, targeting both individuals and organizations with increasingly sophisticated techniques. Gmail has introduced end-to-end encryption for enterprise users, but experts caution that unfamiliarity with new invitation emails may leave non-Gmail users more susceptible to phishing. Modern phishing tactics increasingly bypass multi-factor authentication and detection controls, with most attacks now appearing as zero-day threats that evade traditional blocklists. In a recent case, bank staff intervened to prevent a 'digital arrest' scam against an elderly woman, illustrating the critical role of awareness and human intervention. The industrial sector, especially manufacturing, remains a major target for ransomware and credential theft, underscoring that many cybersecurity risks originate from human error rather than technology gaps. Experts continue to advise vigilance, verifying sender authenticity, and reporting suspicious messages to combat these evolving threats.