Phishing Evolution: From Emails to Deepfakes

Written By Mathew Burch

Phishing powers the $9.5 trillion cybercrime economy, evolving from crude emails to AI-driven deepfakes. Cybersecurity Ventures predicts $10.5 trillion in damages by 2025, with phishing at 39.6% of email threats (Hornetsecurity).

Once simple scams, phishing now uses sophistication—93% of 2021 breaches started here (Cofense). IBM’s 2023 report tags it at 16% of attack vectors, with 62% using spear-phishing attachments. Z Scaler notes a 58.2% rise in 2023, targeting finance. Deepfakes, like 2020’s $35 million voice scam (Forbes), trick even savvy users. HTTPS phishing sites (32% in 2020, Astra) fake legitimacy.

Costs mount—$136 per victim (AAG IT), but breaches average $4.45 million (IBM). The NHS’s WannaCry hit cost £92 million (Field, 2018). Small firms, 43% of targets (Astra), crumble fast. Verizon’s 2024 report says 68% of breaches involve human error—phishing’s sweet spot.

Defenses? Training cuts 95% of errors (Cybint), while AI filters evolve. In this $9.5 trillion game, staying ahead of phishing’s tricks is non-negotiable.

References

  • Cybersecurity Ventures. (2025). Cybercrime to Cost $10.5 Trillion by 2025.

  • IBM. (2023). Cost of a Data Breach Report.

  • Hornetsecurity. (2024). Cyber Security Report.

  • Astra. (2025). 90+ Cyber Crime Stats 2025.

  • Verizon. (2024). 2024 Data Breach Investigations Report.

Mathew Burch
Previous

The Human Cost of Cybercrime
Next

Nation-State Cyberattacks: Profit Meets Politics