Full Report
Common email phishing tactics in 2025 include PDF attachments with QR codes, password-protected PDF documents, calendar phishing, and advanced websites that validate email addresses.
Analysis Summary
The provided context is an introductory snippet from a Kaspersky article titled "Notable email phishing techniques in 2025," which primarily serves as navigation for the Securelist website. **It does not contain specific, detailed technical information about malware families, attack tools, specific TTPs, or Indicators of Compromise (IOCs) that can be summarized in the requested structured format.**
Therefore, the summary must reflect the topic of the article while noting the lack of deep technical details in the supplied text.
# Tool/Technique: Email Phishing Techniques (General Focus Area 2025)
## Overview
This entry summarizes the expected focus areas regarding **Email Phishing Techniques** as discussed in a 2025 report by Kaspersky (Securelist). The actual content details of the techniques are not present in the provided context.
## Technical Details
- Type: Technique/Threat Landscape Summary
- Platform: Not specified (Implied: Email systems, End-user devices accessible via email)
- Capabilities: Focuses on observed and emerging methods used in email-based social engineering and compromise.
- First Seen: 2025 (Based on article title scope)
## MITRE ATT&CK Mapping
*Since specific techniques are not detailed, the mapping reflects the general category of Email Phishing:*
- [TA0001 - Initial Access]
- [T1566 - Phishing]
- [T1566.001 - Spearphishing Attachment]
- [T1566.002 - Spearphishing Link]
- [T1566.003 - Phishing: SMS Phishing (Smishing)] (Potentially included if SMS is referenced in the full article)
## Functionality
### Core Capabilities
* Delivery of malicious content or social engineering lures via electronic mail.
* Aims to achieve Initial Access to target networks or systems.
### Advanced Features
* Specific advanced features are not detailed in the context provided.
## Indicators of Compromise
- File Hashes: [No specific hashes provided]
- File Names: [No specific file names provided]
- Registry Keys: [No specific registry keys provided]
- Network Indicators: [No specific C2 servers or domains provided]
- Behavioral Indicators: [No specific behaviors provided]
## Associated Threat Actors
- [Information not available in the provided context]
## Detection Methods
- [Information not available in the provided context, but typically involves email gateway filtering, endpoint detection, and user training.]
## Mitigation Strategies
- [Information not available in the provided context, but generally includes: robust email filtering, disabling macro execution, user awareness training, and MFA implementation.]
## Related Tools/Techniques
- Social Engineering Frameworks
- Malspam campaigns
- Credential harvesting pages