52,185 threats were hosted on domains that enterprise security stacks are configured to trust, including Google Drive, Dropbox, and SharePoint.

95.2% of phishing activity is delivered over encrypted channels.

Services industry phishing hits surged 65.5% year-over-year from 330.9 million to 547.7 million hits.

76% of organizations reported phishing as an intrusion.

Manus AI accounted for 15.6% of attributed AI site builders, Blackbox AI accounted for 14.3%, and Anything AI accounted for 9.8% of attributed builders.

Phishing activity declined by approximately 20% year-over-year in both 2024 and 2025.

One in five phishing links clicked by users went completely undetected by legacy URL filtering.

Phishing consumes 36.5% of security team working hours, up from 33.5% three years ago.

Across the period studied, the use of AI for account discovery rose 8.9% while AI-assisted phishing falls 8.6%.

40% of IT and security professionals expect phishing attack volume, speed, and evasiveness to worsen over the next 12 months.

AI-powered defenses reduce per-incident phishing handling time by 16% (from 27.5 minutes to 23.2 minutes) and reduce cost per phishing email by 12% (from $31.32 to $27.51).

Security teams remediate phishing incidents 16% faster but spend 9% more of their annual hours remediating phishing.

20% of IT and security professionals expect phishing to get easier to deal with in the next 12 months.

Phishing accounts for 44% of AI-assisted initial access attempts.

Phishing costs $51,948 per security analyst annually, a 13.6% increase from $45,726 in 2022.

50% of organizations rate phishing as a high or extreme threat, up from 33% in 2022.

90% of high-volume phishing campaigns use phishing-as-a-service kits.

48% of malicious email activity is phishing.

70% of malicious PDFs contain QR codes leading to phishing websites.

In the last six months, 86% of phishing attacks were AI-driven.