The latest figures from the APWG show a decline in phishing reports. Verizon, on the other hand, implies that almost all incidents of cyber espionage reported in the last year included some phishing component.
This seems to confirm that phishing attacks are becoming less scatter-gun, focusing more on specific targets.
Once every three months, we tot up our country-by-country spamtrap statistics for the previous quarter and calculate the Dirty Dozen.
Of course, this is one "competition" in which getting promoted into the Premier Division - the SPAMMIERSHIP - is a cause for disappointment, not jubilation...
It's more Cape of Storms than it is Cape of Good Hope for an alleged phishing gang reportedly busted in Cape Town in South Africa's Western Cape.
The gang supposedly used a mixture of email and SMS to lure their victims into giving away PII...
Twitter's new two factor authentication system will be welcomed by some users, but ignored by others who will find it a nuisance.
Notably, it's unlikely to be much use at all to media companies who have suffered at the hands of hackers, as Graham Cluley explains.
With a cybercrime plan as poorly thought out as this, maybe it's no wonder the Soviet Union didn't survive.
Crooks who swindled a woman out of her £1 million ($1.5 million) life savings, and blew their ill-gotten gains on cheeseburgers, gold and computers, are now facing jail time.
After a widely publicised hack or data breach, you'll often find "password check" sites springing up.
Some of them are legitimate, but other password check sites are as bogus as they sound on the surface...
It's good news if you're a cybercriminal.
But probably not something that's going to do much good for one of the world's poorest countries.
O, frailty, thy name is insecure pet supply website operators...
Spammers think quoting Hamlet is a way to help them steal usernames and passwords - but they're wrong.
Phishing is often regarded as old hat. From a technical perspective, it's a case of 'been there, done that'. Sometimes however, we come across attacks that are just a little bit more interesting (or at least different) from the norm.
Slovenian police on Thursday raided 12 homes and arrested five Slovenian citizens in connection with sending malware-packed email to small and medium businesses' accounting departments.
Have you taken a close look at the email that Evernote has sent out, with the subject line "Evernote Security Notice: Service-wide Password Reset"?
It looks like the hacked company has made a blunder.
Flooded with phishing attacks, which staff and students were falling for, the IT team at Oxford University blocked access to Google Docs - hoping to wake up users to the threat..
Would such a technique work in your organisation?
Account takeovers are down a mammoth 99.7% compared with what they were at the height of the spear-phishing plague of 2011, the company (rightfully) brags.
Do not relax: such success doesn't let us users off the hook when it comes to account security beef-up.
"Please log into Google Docs, and then you'll be able to read my message."
"I've provided a handy link..."
You would like to think that computer users are getting smarter about securing their systems, and not falling for the age-old tricks used by cybercriminals.
However, we still see our fair share of elementary unsophisticated attacks designed to steal credentials from the unwary.