---
title: "Increased Phishing Attacks During The Pandemic : How To Stay Safe and Relevant In a Post-COVID Era | Phish Protection"
description: "Increased Phishing Attacks During The Pandemic : How To Stay Safe and Relevant In a Post-COVID Era: Phishing has been one of the favorite modes of."
image: "https://phishprotection.com/og/blog/increased-phishing-attacks-during-pandemic-how-to-stay-safe-and-relevant-post-covid-era.png"
canonical: "https://phishprotection.com/blog/increased-phishing-attacks-during-pandemic-how-to-stay-safe-and-relevant-post-covid-era/"
---

Quick Answer

Phishing has been one of the favorite modes of cyber-attacks employed by malicious actors for years now. COVID-19 has given them a fresh lease of life by providing these threat actors to ramp up their phishing efforts to an entirely new level. Here are some chilling statistics that drive home the point.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fincreased-phishing-attacks-during-pandemic-how-to-stay-safe-and-relevant-post-covid-era%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Increased%20Phishing%20Attacks%20During%20The%20Pandemic%20%3A%20How%20To%20Stay%20Safe%20and%20Relevant%20In%20a%20Post-COVID%20Era&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fincreased-phishing-attacks-during-pandemic-how-to-stay-safe-and-relevant-post-covid-era%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fincreased-phishing-attacks-during-pandemic-how-to-stay-safe-and-relevant-post-covid-era%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fincreased-phishing-attacks-during-pandemic-how-to-stay-safe-and-relevant-post-covid-era%2F&title=Increased%20Phishing%20Attacks%20During%20The%20Pandemic%20%3A%20How%20To%20Stay%20Safe%20and%20Relevant%20In%20a%20Post-COVID%20Era "Share on Reddit") [ ](mailto:?subject=Increased%20Phishing%20Attacks%20During%20The%20Pandemic%20%3A%20How%20To%20Stay%20Safe%20and%20Relevant%20In%20a%20Post-COVID%20Era&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fincreased-phishing-attacks-during-pandemic-how-to-stay-safe-and-relevant-post-covid-era%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2021/06/email-phishing-protection-1028.jpg) 

_Phishing has been one of the favorite modes of cyber-attacks employed by malicious actors for years now_. [COVID-19 has given them a fresh lease](/blog/is-covid-19-germinating-more-cyber-attacks/) of life by providing these threat actors to ramp up their phishing efforts to an entirely new level. Here are some chilling statistics that drive home the point.

- **Phishing emails** have surged by a staggering [667% in one month](https://www.infosecurity-magazine.com/news/covid19-drive-phishing-emails-667/), February 2020.
- _With January 2020 reporting 137 incidents, the figure rose to 1188 in February, and 9116 in March_.
- The break-up shows **54% of phishing attacks** as scams, 34% as impersonation attacks, 11% classified as blackmail, and 1% comprising business email correspondence.

_Phishing attacks have increased and much of this can be attributed to individual negligence_, unawareness on the part of people, and the failure of organizations to build necessary controls around their information assets.

### Phishing During COVID-19

Globally, it has been accepted that a complete lockdown is one of the most reliable ways to halt the pandemic in its tracks. With the lockdown enforced, no one would be able to travel. Therefore, this situation has given rise to a new breed of workers, also known as the virtual workforce, employees who work from home.

Now, working from home involves teleworking, which, in turn, relies on emails as one of the primary communication modes. Therefore, _there has been an unprecedented spurt in email traffic during COVID-19_. _Phishing also depends on email for its proliferation_. The increase in email traffic provided the perfect breeding ground for the rise in [phishing attempts](/blog/phishing-scams-revolving-covid-19-vaccines-remain-secure-attacks/) by malicious actors lurking all over the place.

Here is how these threat actors take advantage of the situation and indulge in cybercrime.

- Phishers take advantage of the pandemic by playing on the unsuspecting people and tricking them into revealing their personally identifiable information or PII.
- As an alternative they try to entice users to click on malicious links and attachments, thereby downloading malware and locking them out of their systems.
- The malicious actors impersonate governmental organizations, health ministries, public health centers, and even heads of Government to disguise themselves as reliable sources.
- As these **phishing emails** look authentic because of the presence of specific organizations’ logos, people unwittingly fall prey to their evil designs and end up compromising their PII.
![Email phishing protection](https://media.mailhop.org/phishprotection/images/2021/06/email-phishing-protection-1028.jpg) 

### How Do These Scammers Operate?

> “Zero-day phishing URLs have an average lifespan of just 12 hours before they’re added to blocklists. During that window, traditional signature-based filters are blind. Our real-time behavioral analysis catches these threats by pattern, not by signature - which is how we detect attacks that no database has seen yet.” - **Adam Lundrigan**, CTO, DuoCircle

Before discussing the cybersecurity [challenges organizations face](/resources/stop-phishing-before-it-infiltrates-organization/) and the steps needed for protection, one should know how these scammers operate.

- They send innocent-looking emails with malicious attachments or links enticing people to download them.
- These messages seem to originate from a reputed and authentic source. Hence, people fall for the bait and click on the links or download the attachments onto their computers.
- The malicious software or malware proceeds to take over the network and starts logging your keystrokes and access personal information, including financial data (such as your bank a/c or credit card details). The final step of this façade is end-users becoming victims of identity theft and substantial data loss.

### Cybersecurity Challenges Facing Organizations

With the global pandemic showing no signs of abating, organizations are at crossroads when it comes to doing business. They are facing tremendous challenges, both on the business and information security fronts.

- Though beneficial to the business, _the virtual workforce has opened up multiple avenues for cyberattacks_ because of their dependency on unprotected personal devices and unsecured home networks.
- The vulnerable virtual workforce is the ‘People’ part of PPT (People, Proces, and Technology) and hence are prone to [social engineering attacks](/resources/protection-against-social-engineering-phishing-and-ransomware/).
- SOCs (Security Operations Centers) are facing the heat and are operating with impaired visibility because every situation looks anomalous, and not all [anti-phishing solutions](/) offer what they promise in most of the cases.
- Cybercriminals have widened their network and are targeting critical business assets to **exploit vulnerabilities** and plan for future attacks.
- Services like the health and financial sector have been hit hard by innovative **ransomware attacks** aimed at disrupting connectivity using DDoS attacks, as these sectors are generally observed not to adopt very high standards of cybersecurity.

### How Organizations Stay Safe And Relevant In The Post-COVID Era?

The lockdowns will not be forever. Restrictions are being gradually lifted, and the economies are showing signs of opening up. Under such circumstances, one can expect a significant change in the way people do business. Some of the most significant changes could be:

- Increased reliance on the virtual workforce
- Accelerated migration to **cloud-based services**
- Enhanced usage of online collaborative tools
- A manifold increase in e-commerce activities
- Expansion of cyberattacks because of increased teleworking
- Concentrate on enterprise resilience

For achieving these objectives, businesses should focus on the following areas.

#### Secure Teleworking Solutions

_Organizations should ensure maintaining cybersecurity controls for the virtual workforce_. These measures include using **secure email solutions**, VPN, managing identity and access of the remote workforce, implementing mobile device management solutions, etc.

#### Ensuring A Backup Plan

Organizations should focus on implementing a robust [Business Continuity Planning](https://www.ibm.com/services/business-continuity/plan) (BCP) and [Disaster Recovery](https://blog.eccouncil.org/types-of-cybersecurity-disaster-recovery-plans/) (DR) plan along with a well configured and tested backup plan to bounce back in case of an attack.

#### How Do You Implement the best anti-phishing solutions?

Organizations should look to implement [phishing protection](/) solutions, that also guarantee email backup, advance threat defense, [email impersonation protection](/products/email-impersonation-protection/).

#### Have a robust cybersecurity policy

The existing cybersecurity policies need a thorough makeover because of the change in the risk perception post-COVID-19\. Organizations should insist on features like **multi-factor authentication**, single sign-on, and automatic logout from unattended devices.

#### Revamp BYOD Policies

As the virtual workforce will increasingly use their devices, the organization should revamp their BYOD (Bring Your Own Device) policies to ensure adherence to the [cybersecurity norms](/content/cybersecurity-in-a-nutshell/) laid down in the cybersecurity policy.

![Email phishing protection](https://media.mailhop.org/phishprotection/images/2021/06/email-phishing-protection-1029.jpg) 

#### Cyber Incident Response Plan

As the frequency of cyberattacks increases post-COVID, one should not be caught unaware of such an eventuality. Organizations should formulate a cyber incident response plan to ensure a quick response, recovery, and **business continuity**.

#### Phishing simulation and training

[Phishing attack simulation](/products/phishing-simulation/) and [phishing awareness training](/products/phishing-awareness-training/) can help employees understand what to look for, and be more attentive in determining the authenticity of an email. 

#### Third-Party Risk Management

A trusted third-party vendor or solution provider who understands the organization’s unique computing environment and requirements can go a long way in safeguarding your information assets.

#### Have a Cyber Insurance Policy

Despite ensuring all the possible security measures, cyberattacks could still happen. It can result in a financial or reputational loss to the organization. Therefore, businesses should focus on covering these losses by investing in **cyber insurance**.

### Final Thoughts

With the entire world reeling under COVID-19, businesses have taken a severe hit. Many organizations have employees working from home, thereby giving rise to a virtual workforce. Cybercriminals have seized on this opportunity to increase their footprint and carry out **phishing attacks** with impunity. _Statistics show that there has been a manifold increase in phishing and other cybercrime-related activities_. Therefore, organizations should formulate effective cybersecurity policies and implement advanced [anti-phishing solutions](/) that can address today’s challenges and help them to stay safe and relevant in the post-COVID-19 era.

## Topics

[ Phishing ](/tags/phishing/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Foundational 5m  0ktapus, Okta Breach Helps Attackers Launch Sophisticated Supply Chain Attacks  Sep 5, 2022 ](/blog/0ktapus-okta-breach-helps-attackers-launch-sophisticated-supply-chain-attacks/)[  Foundational 4m  13 Spear Phishing Attacks Examples To Justify Investment For Phishing Prevention Solutions In Your Organization  Aug 1, 2019 ](/blog/13-spear-phishing-attacks-examples-to-justify-investment-for-phishing-prevention-solutions-in-your-organization/)[  Foundational 4m  All 14 centers of Kettering Health were affected by a massive ransomware attack, Major outage in the Ohio medical center  May 23, 2025 ](/blog/14-centers-of-kettering-health-were-affected-by-massive-ransomware-attack-in-ohio-medical-center/)[  Foundational 4m  2021 Phishing Trends You Need To Be Wary Of  Aug 2, 2021 ](/blog/2021-phishing-trends-to-be-wary-of/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Increased Phishing Attacks During The Pandemic : How To Stay Safe and Relevant In a Post-COVID Era","description":"Increased Phishing Attacks During The Pandemic : How To Stay Safe and Relevant In a Post-COVID Era: Phishing has been one of the favorite modes of.","url":"https://phishprotection.com/blog/increased-phishing-attacks-during-pandemic-how-to-stay-safe-and-relevant-post-covid-era/","datePublished":"2021-06-21T11:20:06.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2021-06-21T11:20:06.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/increased-phishing-attacks-during-pandemic-how-to-stay-safe-and-relevant-post-covid-era/"},"articleSection":"foundational","keywords":"Phishing","wordCount":1206,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2021/06/email-phishing-protection-1028.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://phishprotection.com/foundational/"},{"@type":"ListItem","position":4,"name":"Increased Phishing Attacks During The Pandemic : How To Stay Safe and Relevant In a Post-COVID Era","item":"https://phishprotection.com/blog/increased-phishing-attacks-during-pandemic-how-to-stay-safe-and-relevant-post-covid-era/"}]}
```