Trends in Spam, Phishing, Spoofing, Malware & DNS Abuse

Abstract

April 2026 monthly research brief covering the email, identity, and DNS threat landscape, with a focus on the operationalization of generative AI across the attack chain. The report synthesizes cross-cutting AI-driven trends across phishing, malware, ransomware, email authentication and spoofing, DNS abuse, and major incidents.

Key Findings

1. 1Generative AI is now operationalized across the email-borne attack chain, affecting phishing, spoofing, malware, ransomware, and DNS abuse workflows
2. 2KnowBe4's seventh Phishing Threat Trends report found roughly 82.6% of phishing emails use signatures consistent with AI generation
3. 3Cisco Talos placed phishing back as the leading initial-access vector for the first time in three quarters
4. 4EasyDMARC reported global DMARC adoption at 52.1%, with only 11.1% at full enforcement
5. 5The FBI IC3 2025 Annual Report recorded $20.88B in reported losses, up 26% year over year

Topics