More than 75% of cyber breaches in the UAE originate from phishing emails and fraudulent messages, according to the UAE Cyber Security Council, said WAM. The findings highlight a growing vulnerability within the nation’s rapidly expanding digital ecosystem, where email-based attacks continue to serve as a primary entry point for cybercriminals.
The Council noted that phishing remains one of the most effective tactics used by threat actors to infiltrate both personal and organizational systems. By leveraging deceptive emails and messages, attackers are able to steal sensitive information, gain unauthorized access to accounts, and launch broader cyberattacks that can disrupt operations and compromise financial data.
On a global scale, the threat is intensifying. The Council estimates that more than 3.4 billion phishing messages are sent daily, targeting users through malware distribution, credential harvesting, and identity fraud schemes. This surge underscores the scale and persistence of phishing campaigns across digital platforms.
Unlike highly technical cyberattacks, phishing relies heavily on social engineering techniques. Cybercriminals manipulate human behavior by creating a sense of urgency or trust, often sending messages that appear legitimate. These may include fake payment requests, urgent account alerts, suspicious links, or offers that seem unusually attractive.
The Council identified several warning signs that users should watch for, including unsolicited requests for confidential information, messages that pressure immediate action, and login prompts from unfamiliar or unverified sources. Additionally, poor grammar and spelling errors continue to be common indicators of fraudulent communication.
In response to the rising threat, authorities are urging both individuals and organizations to adopt stronger cybersecurity practices. This includes avoiding unknown links, refraining from scanning QR codes from untrusted or public sources, and never sharing personal or login credentials with unverified entities.
Enhancing account security is also a key priority. The Council recommends enabling multi-factor authentication across email and social media platforms, as well as ensuring that systems and applications are regularly updated to minimize potential vulnerabilities.
Timely reporting of suspicious activity is equally critical. Users are encouraged to report phishing attempts immediately, allowing cybersecurity teams to investigate and contain threats before they escalate into larger breaches or ransomware incidents.
The Council emphasized that human behavior remains the weakest link in cybersecurity defenses. As digital adoption continues to accelerate, building awareness and encouraging proactive user behavior are becoming essential components of national cyber resilience.
With cyber threats evolving in parallel with technological advancements, authorities stress that maintaining safe online practices is no longer optional, but a fundamental requirement to protect both personal data and institutional security.
Recommended Cyber Technology News :
- NetSTAR and Varist Partner to Fight AI Cyber Threats
- Darktrace Launches AI Native Email Security for MSSPs
- Silver Fox Targets Japan with Tax Phishing Attacks
To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com
