|

How Generative AI Doubled the Phishing Threat: Malicious Emails Now Every 19 Seconds

ByInnoVirtuoso

If you’ve been trusting your gut to catch phishing emails—looking for typos, awkward phrasing, odd salutations—here’s a wake-up call: that playbook is increasingly obsolete. Attackers are using generative AI to write flawless messages, mimic internal tone, and even carry on multi-email conversations with zero links or attachments. And the numbers are sobering.

According to a recent analysis from Cofense, as reported by Cyber Recaps, the rate of detected malicious emails nearly doubled in just a year—from one every 42 seconds in 2024 to one every 19 seconds in 2025. That’s not just more noise; it’s smarter noise. Business Email Compromise (BEC) is surging, conversational phishing now accounts for 18% of incidents, and polymorphic campaigns change content, URLs, and logos per target to slip past filters.

So what do you do when the enemy’s messages are indistinguishable from your colleagues’—and sometimes come from their real accounts?

Let’s break down what’s changed, what’s coming next, and how to evolve your defenses for an AI-powered threat landscape.

The Stat That Should Change Your 2026 Security Roadmap

Cofense’s data highlights a dramatic shift: malicious email frequency jumped from once every 42 seconds to once every 19 seconds year-over-year. The reason isn’t simply “more spam.” It’s precision at scale.

  • Generative AI enables attackers to churn out highly personalized, grammatically perfect messages in seconds.
  • Campaigns are tailored by role, company, industry, and language—with believable details pulled from public sources and breached data.
  • AI systems can run A/B tests, adapt tone, and continuously tweak message structure to slip past filters.

This isn’t a bump in volume; it’s a transformation in quality and evasiveness. And that’s why traditional security awareness that teaches “spot the typo” falls flat against machine-crafted near-perfection.

Reference: Cyber Recaps coverage of Cofense findings

From Spray-and-Pray to Precision-at-Scale

Attackers used to blast identical messages to millions of inboxes, hoping a fraction clicked. Now they can scale personalization without additional human effort.

Conversational Phishing: The 18% You Won’t Catch With Link Scanners

One of the most alarming trends is the rise of “conversational phishing”—emails that contain no links or attachments. Instead, they:

  • Start a thread or reply to an existing one.
  • Request a quick favor—“Are you available?” “Can you help with a payment update?”
  • Build rapport across several exchanges before making the ask.

Because there’s nothing “malicious” to scan, traditional secure email gateways often let these messages through. Yet these are exactly the lures used in BEC and invoice fraud.

Polymorphic Attacks: Every Target Sees a Different Email

Polymorphic phishing changes elements on the fly per recipient—text, images, logos, links, and even tiny layout differences. The result:

  • Signature-based detection struggles because every instance is unique.
  • Machine-learning filters trained on static features miss fast-changing campaigns.
  • URL and domain reputation checks are less useful when links are perishable or unique.

These tactics weaponize the fact that many security stacks rely on pattern matching or known-bad indicators.

Why Traditional Filters Miss AI-Perfect Phish

  • AI can mirror your brand voice, reply in your internal shorthand, and mimic regional idioms.
  • It adjusts content dynamically—if a filter flags one version, the system mutates the message in milliseconds.
  • Content that avoids known malicious artifacts (links, attachments, macros) evades many controls by design.

Put simply, the cost of making a believable phish has collapsed to near-zero, while the cost of defending against it is rising.

BEC and Account Takeover: Where Real Money Moves

BEC has always been lucrative. With generative AI, it’s scaling—and getting harder to detect.

  • Vendor impersonation: Attackers insert themselves into invoice threads, mirror templates, and update bank details.
  • Executive spoofing: Perfectly styled requests for urgent payments, payroll changes, or gift cards.
  • Account takeover (ATO): When real accounts are compromised, thread hijacking becomes invisible to recipients.

The FBI’s IC3 has long flagged BEC as one of the costliest cybercrimes. AI is pouring fuel on that fire, especially when attackers combine email tricks with voice deepfakes or SMS prompts to “confirm” details.

Why “Spot the Errors” Training Doesn’t Work Anymore

Traditional awareness training relies on people catching sloppy grammar, wrong logos, or awkward salutations. Generative AI wipes those tells off the table:

  • Flawless language. No typos, idiomatic and cultural nuances included.
  • Style mimicry. AI can adopt the tone and sentence structure of your CFO, HR, or vendors.
  • Thread insertion. Realistic replies that continue a genuine conversation.

That doesn’t mean training is dead; it means training has to evolve from “find the error” to “verify the request.”

The Defense Playbook: Behavior-Based + Zero Trust Verification

The core shift: you can’t assume “if it looks right, it is right.” You need to verify every high-risk action and inspect behavior over time, not just content in a single message.

Think “Zero Trust for Email”

Zero trust means “never trust, always verify.” Applied to email:

  • Verify the sender: Is this identity consistent with known behaviors, devices, geos, and typical recipients?
  • Verify the channel: Was this message sent with proper authentication and alignment (SPF, DKIM, DMARC)? Any anomalies in routing or headers?
  • Verify the intent: Is the request unusual for this relationship? Is it asking for money, credentials, or data outside established workflows?

Reference for zero trust principles: NIST SP 800-207

Technical Controls That Matter in 2026

Use defense-in-depth. Here’s a prioritized checklist:

  • Phishing-resistant MFA
  • Enforce FIDO2/passkeys for email and identity platforms.
  • Conditional access (risk-based): block high-risk sign-ins, require step-up only when signals demand it.
  • Email authentication and transport
  • SPF, DKIM, DMARC with p=reject and alignment; monitor with DMARC aggregate reports.
  • MTA-STS and TLS-RPT to enforce and monitor TLS for email in transit.
  • ARC to preserve authentication results across forwarders.
  • Consider BIMI to visually reinforce authenticated brand mail (not a security control, but helpful).
  • Learn more: DMARC.org
  • Inbound detection beyond signatures
  • Behavioral models: relationship graphs, typical scheduling/time-of-day patterns, and communication frequency baselines.
  • Conversation-aware analysis: flag payment or credential asks that deviate from historical norms—even without links or attachments.
  • Computer vision to detect logo tampering and brand impersonation.
  • QR code (quishing) and image-to-link extraction scanning.
  • Outbound controls and exfiltration prevention
  • Prevent your domain from being abused via tight DMARC and monitoring.
  • DLP for sensitive data exfiltration; warn on unusual sharing or mass forwarding.
  • S/MIME or Microsoft Purview/IRM-style protections to bind message content to identities.
  • Identity and app governance
  • Lock down OAuth consent: restrict risky third-party mail add-ins and token grants.
  • Monitor dormant but privileged mailboxes and shared mailboxes.
  • Regularly review and revoke stale tokens; watch for impossible travel and atypical client strings.
  • Payment and change-control workflows
  • Out-of-band verification for bank detail changes and large payments (phone/video with a known contact).
  • Dual approval for vendor onboarding and payment changes.
  • Require ticket numbers and purchase order references; no exceptions “because urgent.”
  • Isolation and safe rendering
  • Remote browser isolation for unknown links and attachments.
  • Detonation/sandboxing with time-delayed analysis for payloads and linked pages.
  • Threat intel and brand monitoring
  • Monitor for lookalike domains and new registrations; set up takedown processes.
  • Track campaign polymorphism and feed learnings into detection systems.

Public guidance and playbooks: CISA phishing and BEC resources, ENISA threat landscape

Use AI to Fight AI—Safely and Transparently

AI-powered detection isn’t a silver bullet, but it helps when you:

  • Combine LLMs with classical ML: Use ensembles to analyze content semantics, intent, and metadata together.
  • Incorporate relationship graphs: Who normally emails whom, about what, and when.
  • Close the loop: Feed user-reported phish directly into retraining pipelines. Reward accurate reporting to improve signal.
  • Keep humans in control: Route high-risk, low-confidence cases to analysts with rich context and header forensics.

People and Process Still Win the Day

  • Run frequent micro-simulations focused on verification, not error-spotting.
  • Teach the “pause-and-verify” reflex for any money, credentials, or sensitive data request.
  • Publish simple escalation paths: a Slack/Teams button, a mailbox like phishing@, and a phone number for finance verification.

Metrics That Matter in an AI-Driven Phish Era

If you can’t measure it, you can’t improve it. Track:

  • Time to detect and quarantine malicious emails (median and p95).
  • Click-through and credential submission rates on simulations—segmented by department and seniority.
  • Report rate and mean time to report by users.
  • False positive/negative rates in your email detection pipeline; precision and recall at different confidence thresholds.
  • BEC-specific KPIs: number of attempted vendor bank changes, number blocked, and time to verification.
  • ATO metrics: suspicious OAuth grants, unread message rules creation, unusual forwarding rules.

The New Incident Response Playbook for Conversational Phishing

When no link or attachment is present, your IR steps need to shift:

  1. Verify identity out-of-band – Call the sender on a known number (not from the email signature). – For vendors, use your supplier portal contact directory, not the email thread.
  2. Freeze financial changes – Pause any banking or payroll updates until verified by a second channel and approver.
  3. Contain quickly if ATO is suspected – Invalidate active sessions, reset tokens, rotate MFA for the mailbox. – Search for malicious inbox rules (auto-forwarding, delete-on-receipt). – Review recent OAuth grants, especially “Mail.ReadWrite” scopes.
  4. Hunt laterally – Check for thread hijacking across mailboxes, unusual internal BCC patterns, and sentiment-shifting replies. – Examine cloud logs for anomalous client types, IP geos, and login times.
  5. Communicate with context – Notify finance, vendors, and affected teams with plain guidance: what to do, what not to do, and who to call.
  6. Improve detections – Create behavioral rules from the incident: keywords tied to approvals, unusual timing, and requester-recipient pair anomalies.

Automate where safe using SOAR: bulk search-and-quarantine, rule removal, and vendor notification templates.

Governance and Policy: Close the Process Gaps

Technology can’t compensate for broken processes. Update:

  • Payment policy
  • Mandate out-of-band verification for bank changes; document evidence.
  • Enforce two-person approval for large transfers or off-cycle payroll.
  • Vendor management
  • Centralize vendor communications in secure portals; reduce email-based updates.
  • Require signed change forms with unique reference numbers.
  • App consent and email rules
  • Disallow auto-forwarding to external domains except by exception.
  • Require security approval for new mail-integrated apps with high-permission scopes.
  • Audit and supervision
  • Log and review high-risk mailbox actions (delegation, rule changes).
  • Present quarterly BEC metrics to leadership and the board.

Consider regulatory implications if you’re public or in regulated industries; timely incident disclosure rules may apply. See CISA BEC guidance and consult counsel as needed.

Security Awareness 2.0: Train for Verification, Not Typos

Make training relevant to real attacks:

  • Scenario-based drills
  • Vendor bank change requests that reference real purchase orders.
  • Executive “urgent” messages that resemble your org’s tone and formatting.
  • SMS and voice callback challenges to test multi-channel verification.
  • Teach five verification moves
  • Pause: No immediate actions on money or credential requests.
  • Confirm: Use a known, separate channel to verify.
  • Check: Look for DMARC authentication results in the banner if available.
  • Escalate: Use the report button or phishing@ address.
  • Document: Keep a quick log when verifying vendor changes.
  • Just-in-time nudges
  • Banner warnings on external emails and first-time sender contacts.
  • Prompt for secondary review when risky terms appear (e.g., “bank details,” “urgent wire”).

Who’s Most at Risk Right Now?

  • Finance and AP: Payment redirection, invoice fraud, payroll updates.
  • Sales and Customer Success: Contract changes, gift card scams, new-client impersonation.
  • HR: Tax document and benefits fraud; sensitive data requests.
  • Legal and Procurement: Vendor onboarding, NDA and contract changes.
  • Executives and EAs: High-trust targets, calendar manipulation, and rush approvals.

Tailor controls and training to these teams first; they’re closest to the money and sensitive data.

Your 90-Day Action Plan

You don’t need to do everything at once. Start with momentum:

  • Days 1–30
  • Enforce phishing-resistant MFA for email/identity.
  • Turn on DMARC with p=reject (after monitoring), align SPF/DKIM.
  • Disable external auto-forwarding org-wide; audit and remove risky inbox rules.
  • Launch a vendor payment verification policy and comms campaign.
  • Roll out a one-click report button in mail clients; stand up phishing@ intake.
  • Days 31–60
  • Deploy behavioral email detection and relationship-graphing.
  • Implement conditional access and risk-based step-up.
  • Pilot remote browser isolation for unknown links.
  • Start targeted micro-simulations for finance, HR, and executive assistants.
  • Days 61–90
  • Lock down OAuth consent (admin approval workflows).
  • Add MTA-STS and TLS-RPT; start monitoring DMARC aggregate.
  • Integrate SOAR for search-and-quarantine, rule cleanup, and vendor alerts.
  • Present baseline metrics to leadership; set quarterly targets.

The Arms Race Is Real—But Winnable

AI is empowering attackers to craft perfect, polymorphic, conversation-driven phish. But it’s also giving defenders the tools to spot behavioral anomalies, re-score risk in real time, and automate rapid containment. The winners will be organizations that:

  • Verify, don’t assume—especially for money and data requests.
  • Shift from static content checks to dynamic behavior analytics.
  • Harden identity and email authentication end to end.
  • Align people, process, and technology with zero trust principles.

When the messages look perfect, your controls and processes have to be even better.

Helpful Resources

FAQ

Q: What is “conversational phishing,” and why is it harder to stop?
A: It’s phishing without obvious payloads—no links or attachments. Attackers build rapport over a few messages and then make a request (often money or data). Because there’s nothing to scan, many traditional email filters don’t flag it. Behavior and intent analysis, plus strict verification policies, are essential.

Q: How does generative AI make phishing more dangerous?
A: AI produces grammatically perfect, personalized emails at scale. It can mimic tone, adjust to feedback, and change content per target (polymorphism), which defeats pattern-based detection and “spot the typo” training.

Q: Are secure email gateways still useful?
A: Yes, but they’re not sufficient. You need behavior-based detection, strong identity controls (phishing-resistant MFA, conditional access), strict email authentication (SPF/DKIM/DMARC), and process controls for payments and data requests.

Q: What does “zero trust for email” really mean in practice?
A: Never trust a message based on appearance alone. Verify the sender’s identity, the channel’s integrity (authentication, headers), and the request’s intent—especially for high-risk actions. Require out-of-band confirmation for financial or sensitive changes.

Q: How do I protect against BEC specifically?
A: Combine policy and tech: mandatory out-of-band verification for bank changes, dual approvals for large payments, DMARC p=reject with alignment, monitoring for lookalike domains, phishing-resistant MFA, and behavioral email analytics tuned for payment and credential requests.

Q: Are QR codes in emails safe to scan?
A: Treat them like links. Attackers increasingly use “quishing” to bypass link scanners. Use tools that extract and inspect QR targets, and train users to be cautious with unsolicited QR prompts.

Q: Can training still help if AI emails look perfect?
A: Absolutely—if it focuses on verification behavior. Teach users to pause, confirm via a trusted channel, and escalate when requests involve money, credentials, or sensitive data. Micro-simulations and just-in-time prompts work best.

Q: What immediate steps should we take this quarter?
A: Enforce phishing-resistant MFA, implement DMARC p=reject, block external auto-forwarding, roll out an out-of-band payment verification policy, and deploy behavior-based email analytics. Stand up easy reporting and measure results.

Clear takeaway: Generative AI has turned phishing into a precision game, doubling malicious email rates and erasing the old “spot the typo” tells. To keep pace, shift your defenses from content to behavior, from trust to verification, and from manual checks to automated, risk-based controls. Verify every high-risk request, harden identity and email authentication, and arm your people with simple verification habits. That’s how you win the inbox in 2026.

Discover more at InnoVirtuoso.com

I would love some feedback on my writing so if you have any, please don’t hesitate to leave a comment around here or in any platforms that is convenient for you.

For more on tech and other topics, explore InnoVirtuoso.com anytime. Subscribe to my newsletter and join our growing community—we’ll create something magical together. I promise, it’ll never be boring! 

Stay updated with the latest news—subscribe to our newsletter today!

Thank you all—wishing you an amazing day ahead!

Read more related Articles at InnoVirtuoso

InnoVirtuoso

Hello there! I'm passionate content writer navigating the digital landscape. With a deep love for words and an insatiable curiosity about technology.

With 10 years of experience in IT field, I write mostly about emerging tech, sharing news, informational articles and covering other topics I find interesting.

Let's craft the future of content together – one word at a time!

Browse InnoVirtuoso for more!