2025 Spam and Phishing Report Reveals AI Surge and QR Code Quishing Boom

The 2025 Spam and Phishing Report shows a massive rise in AI-driven phishing attacks. Click-through rates hit 54% for AI-crafted emails, four times higher than human ones. QR code quishing also exploded as attackers hide malware in scam links.

Phishing caused $17,700 in losses every minute last year. AI tools boosted success by 400% in some cases. Attackers used large language models for natural text that beats spam filters. Traditional defenses struggle against these smart fakes.

BEST WINTER DEALS

Editor's Choice

Private Internet Access

Access content across the globe at the highest speed rate.

70% of our readers choose Private Internet Access

70% of our readers choose ExpressVPN

ExpressVPN

Browse the web from multiple devices with industry-standard security protocols.

Nord VPN

Faster dedicated servers for specific actions (currently at summer discounts)

Voice phishing grew too, with deepfakes up 15%. HTTPS phishing sites jumped 47%, now at 80% of cases. Google blocks 15 billion bad emails daily, but threats keep scaling. New phishing sites launch every 20 seconds worldwide.

Keepnet Labs reports: “AI is dramatically increasing success rates, with click rates up to 4x higher than traditional methods. A 2025 report noted a 400% rise in successful phishing scams due to AI tools.”

Hunto AI states: “AI-generated phishing emails have a 54% click-through rate, compared to just 12% for human-written phishing messages.”

Key 2025 Statistics

Attack Tactics

• AI crafts perfect grammar and context.
• Spear-phishing matches human experts at 56% CTR.
• QR codes lead to fake login pages.
• Polymorphic emails change to dodge rules.

Training cuts clicks to 1.5%. Reporting jumps 28% with drills. New hires face 44% higher risk in first 90 days.

Protection Steps

• Use AI email filters with human review.
• Train staff on QR code checks.
• Block suspicious domains fast.
• Watch for brand spoofs like Microsoft (51.7%).

FAQ