---
title: "Why Phishing Is a Bigger Threat Than Ever in 2019 | DuoCircle"
description: "In the world of cybersecurity, it’s a well-known fact that 93% of data breaches trace their original attack vectors back to phishing."
image: "https://www.duocircle.com/images/og-default.png"
canonical: "https://www.duocircle.com/blog/phishing-protection/why-phishing-is-a-bigger-threat-than-ever-in-2019/"
---

Quick Answer

Phishing accounts for 93% of data breach attack vectors according to Verizon DBIR data, and 2019's high-profile incidents show why the threat keeps escalating: attackers can pull rich personal data from the public web and automate target research at scale. The year's pattern is consistent. DiscountMugs.com lost unencrypted card data to Magecart skimmers; BenefitMall, Catawba Valley Medical Center (20,000 patients), UConn Health (326,000 patients), and St. Francis Physicians Services (32,178 patients) all started with phished employee accounts that exposed names, birthdates, social security numbers, and medical records. Healthcare and small to mid-sized e-commerce and finance firms are the heaviest targets because they hold sensitive data and rarely run multi-layered phishing protection. Layered email security with real-time link click protection is the control that maps to this attack pattern.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=undefined%2Fblog%2Fphishing-protection%2Fwhy-phishing-is-a-bigger-threat-than-ever-in-2019%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Why%20Phishing%20Is%20a%20Bigger%20Threat%20Than%20Ever%20in%202019&url=undefined%2Fblog%2Fphishing-protection%2Fwhy-phishing-is-a-bigger-threat-than-ever-in-2019%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=undefined%2Fblog%2Fphishing-protection%2Fwhy-phishing-is-a-bigger-threat-than-ever-in-2019%2F "Share on Facebook") [ ](https://reddit.com/submit?url=undefined%2Fblog%2Fphishing-protection%2Fwhy-phishing-is-a-bigger-threat-than-ever-in-2019%2F&title=Why%20Phishing%20Is%20a%20Bigger%20Threat%20Than%20Ever%20in%202019 "Share on Reddit") [ ](mailto:?subject=Why%20Phishing%20Is%20a%20Bigger%20Threat%20Than%20Ever%20in%202019&body=Check out this article: undefined%2Fblog%2Fphishing-protection%2Fwhy-phishing-is-a-bigger-threat-than-ever-in-2019%2F "Share via Email") 

![Phishing](https://media.mailhop.org/duocircle/images/2019/03/what-is-DKIM-0031.jpg) 

In the world of cybersecurity, it’s a well-known fact that [93%](https://enterprise.verizon.com/resources/reports/dbir/) of data breaches trace their original attack vectors back to phishing. In the overwhelming majority of cases, hackers use phishing to get their foot in the door of the network they’re targeting.

Phishing is not new, nor are many of the broad strategies that cybercriminals use when phishing. However, the amount of data publicly available in today’s Internet environment brings a new level of tactical sophistication to the arena.

This is immediately apparent when surveying some of the [highest profile cyberattacks in 2019](https://www.identityforce.com/blog/2019-data-breaches). _The wealth of public data available on almost anyone makes it easy for cybercriminals to conduct highly targeted phishing attacks_. Additionally, the newfound ability to automate this information gathering allows bad actors to expand their operations with ease.

## What We Can Learn From the Biggest Data Breaches in 2019

A quick survey of some of the biggest data breaches so far in 2019 shows that cybercriminals are getting bolder and more capable as time goes on. A veritable underground economy of black hat hackers, phishing specialists, and service providers are cooperating with an unprecedented degree of sophistication.

[![Data Breaches](https://media.mailhop.org/duocircle/images/2019/03/DMARC-generator-8551.jpg)](https://media.mailhop.org/duocircle/images/2019/03/DMARC-generator-8551.jpg)

### 1\. DiscountMugs.com

In the first week of January, DiscountMugs.com announced that it was successfully targeted by a professional hacking group called [Magecart](https://techcrunch.com/2019/01/04/discountmugs-customer-credit-card-data-breach/?guccounter=1&guce%5Freferrer%5Fus=aHR0cHM6Ly93d3cuaWRlbnRpdHlmb3JjZS5jb20vYmxvZy8yMDE5LWRhdGEtYnJlYWNoZXM&guce%5Freferrer%5Fcs=zWEhcL45pDvtnw2tJepzCw). _The group gained access to the company’s payment processor application_ and skimmed credit card information from customers for four months.

Unlike many other e-commerce data breaches, hackers managed to get away with users’ full **unencrypted credit card information**, everything they would need to make illicit purchases using the victims’ identities.

Magecart hackers are smart enough to know that using victims’ information would tip their hand. Instead, they sell victims’ credit card information [anonymously on the dark web](https://techcrunch.com/2018/11/13/magecart-hackers-persistent-credit-card-skimmer-groups/), effectively obscuring their tracks.

### 2\. BenefitMall

On [January 7th](https://www.insurancebusinessmag.com/us/news/cyber/benefitmall-announces-data-breach-121182.aspx), BenefitMall announced that it had been victimized by a data breach originating with a **phishing attack** that compromised an employee account. The payroll and HR service provider hasn’t revealed exactly how many records were compromised. The breach made customer names, addresses, social security numbers, birthdates, and bank account information available to hackers.

_This example illustrates how dangerous a single employee’s mistake can be._ Because BenefitMall is a payroll processor, hackers knew it was virtually guaranteed that sensitive customer data would be present in any employee’s email inbox.

If the company had been less prepared, a single compromised email account could easily have led to the entire company being compromised. An ambitious cybercriminal could take control of an executive account or pilfer company funds before turning on BenefitMall’s customers and partners.

### 3\. Catawba Valley Medical Center

Approximately 20,000 patients of the [Catawba Valley Medical Center](https://www.wcnc.com/article/tech/names-birthdates-social-security-numbers-part-of-health-care-cyber-attack/275-30bd7853-b5e1-41fd-9575-ddafc1ab39ae) in North Carolina have had their personal data exposed in a sophisticated cyberattack announced in February 2019\. Hackers successfully phished three employee email accounts during the summer of 2018 and obtained the names, birthdates, social security numbers, and health records of the medical center’s patients.

This attack illustrates one of the cybercriminal industries’ highest priority targets, healthcare providers. _Even providers who are compliant with HIPAA regulation can be targeted_. In the case of the [Catawba Valley Medical Center](https://www.paubox.com/blog/catawba-valley-medical-center-suffers-hipaa-email-breach), the clinic had never been out of compliance with HIPAA regulation.

### 4\. UConn Health

[UConn Health](https://www.modernhealthcare.com/article/20190226/NEWS/190229939/uconn-health-email-breach-compromises-data-from-326-000-patients) recently announced that roughly **326,000 patient records** were accessed by unauthorized parties at the end of 2018\. The health system provider’s email accounts were compromised by phishing attacks that leaked patient names, birthdates, social security numbers, and medical data.

Healthcare providers like UConn Health are obliged to notify the U.S. Department of Health and Human Services whenever a breach affecting more than 500 people takes place. In this case, the company announced the breach and immediately offered free **identity theft protection services** to the patients whose social security information was compromised.

### 5\. St. Francis Health System

One of the largest healthcare-related data breaches of 2019 to date targeted electronic health records systems partnered with [St. Francis Physicians Systems](https://www.hipaajournal.com/st-francis-physicians-services-notifies-patients-of-milestone-family-medicine-data-breach/). Cybercriminals targeted health record systems with public-facing portals and phished employee email accounts to gain access to patient names, addresses, birthdates, insurance information, social security numbers, and medical data.

The attack compromised 32,178 individual patient records. The clinic announced the data breach in March 2019\. In this case, cybercriminals only gained access to the accounts of patients who had previously received medical services from Milestone Family Medicine, a third-party partner of St. Francis Physician Systems.

This attack showcases how compromised email accounts can allow cybercriminals to move laterally through organizations and their partners. Just like the high-profile Target hack of 2013, third-party partners often represent the easiest attack vector for cybercriminal phishing attempts.

[![Cybercriminals](https://media.mailhop.org/duocircle/images/2019/03/dkim-record-check-1324.jpg)](https://media.mailhop.org/duocircle/images/2019/03/dkim-record-check-1324.jpg)

## Phishing Trends to Watch Out for in 2019

There is a clear pattern in 2019’s biggest data breaches. Cybercriminals have placed relatively small organizations, especially in the field of healthcare and e-commerce - squarely in their sights. The more sensitive information an organization is likely to have access to, the greater its risk of being targeted.

This explains why healthcare organizations are currently the most common targets of **email phishing** attempts. The Department of Health and Human Services maintains a publicly available “[Wall of Shame](https://ocrportal.hhs.gov/ocr/breach/breach%5Freport.jsf)” describing the very latest data breaches in the healthcare sector.

However, smaller organizations in e-commerce and finance are also being targeted. There is a clear tendency towards targeting small to mid-sized businesses that rely on third-party professional services. These organizations represent the largest and most accessible surface area for cyberattack and often do not invest in multi-layered [phishing protection](/email/phishing-protection) security solutions appropriate to the threat.

**Sources:**

[Tales of dirty deeds and unscrupulous activities.](https://enterprise.verizon.com/resources/reports/dbir/)

[2019 Data Breaches, The Worst Breaches, So Far](https://www.identityforce.com/blog/2019-data-breaches)

[Breach Portal: Notice to the Secretary of HHS Breach of Unsecured Protected Health Information](https://ocrportal.hhs.gov/ocr/breach/breach%5Freport.jsf)

[St. Francis Physicians Services Notifies Patients of Milestone Family Medicine Data Breach](https://www.hipaajournal.com/st-francis-physicians-services-notifies-patients-of-milestone-family-medicine-data-breach/)

[UConn Health email breach compromises data from 326,000 patients](https://www.modernhealthcare.com/article/20190226/NEWS/190229939/uconn-health-email-breach-compromises-data-from-326-000-patients)

[Catawba Valley Medical Center Suffers HIPAA Email Breach](https://www.paubox.com/blog/catawba-valley-medical-center-suffers-hipaa-email-breach)

![Brad Slavin](https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg) 

Brad Slavin 

General Manager

General Manager at DuoCircle. Product strategy and commercial lead across the email security portfolio.

## Secure your email infrastructure

Protect, authenticate, and deliver. Contact our team to find the right solution.

[Contact Sales](/contact/) [Explore Products](/products/) 

## Related Articles

[  Phishing 11m  AI-Generated Phishing Has Eliminated the Typo: Why Traditional Email Filters Are No Longer Enough  Apr 28, 2026 ](/blog/ai-generated-phishing-eliminates-typos-making-traditional-email-filters-ineffective/)[  Phishing 5m  10 Applications of ChatGPT that Hackers Are Already Exploiting  May 3, 2023 ](/blog/phishing-protection/10-applications-of-chatgpt-that-hackers-are-already-exploiting/)[  Phishing 4m  65% of Global Businesses Ill-Equipped to Defend Against Email-Based Cyber-Attacks  Mar 29, 2016 ](/blog/phishing-protection/65-global-businesses-ill-equipped-defend-email-based-cyber-attacks/)[  Phishing 9m  7 Ways to Protect Your Organization from Email-based Ransomware Attacks  Feb 11, 2018 ](/blog/phishing-protection/7-ways-protect-organization-email-based-ransomware-attacks/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}],"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://www.g2.com/products/phish-protection-by-duocircle/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://support.duocircle.com"},"knowsAbout":["Email Security","Email Authentication","SPF","DKIM","DMARC","Phishing Protection","Spam Filtering","SMTP Relay","Email Deliverability","Email Forwarding"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"DuoCircle LLC","url":"https://www.duocircle.com","description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}
```

```json
[{"@context":"https://schema.org","@type":"BlogPosting","headline":"Why Phishing Is a Bigger Threat Than Ever in 2019","description":"In the world of cybersecurity, it’s a well-known fact that 93% of data breaches trace their original attack vectors back to phishing.","url":"https://www.duocircle.com/blog/phishing-protection/why-phishing-is-a-bigger-threat-than-ever-in-2019/","datePublished":"2019-03-28T12:59:08.000Z","dateModified":"2025-05-23T17:16:27.000Z","dateCreated":"2019-03-28T12:59:08.000Z","author":{"@type":"Person","@id":"https://www.duocircle.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://www.duocircle.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin runs DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. His focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://www.duocircle.com/blog/phishing-protection/why-phishing-is-a-bigger-threat-than-ever-in-2019/"},"articleSection":"phishing-protection","keywords":"","wordCount":981,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/duocircle/images/2019/03/what-is-DKIM-0031.jpg","caption":"Phishing","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}},{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https://www.duocircle.com/blog/"},{"@type":"ListItem","position":2,"name":"Phishing"},{"@type":"ListItem","position":3,"name":"Why Phishing Is a Bigger Threat Than Ever in 2019","item":"https://www.duocircle.com/blog/phishing-protection/why-phishing-is-a-bigger-threat-than-ever-in-2019/"}]}]
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://www.duocircle.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://www.duocircle.com/blog/"},{"@type":"ListItem","position":3,"name":"Phishing","item":"https://www.duocircle.comundefined"},{"@type":"ListItem","position":4,"name":"Why Phishing Is a Bigger Threat Than Ever in 2019","item":"https://www.duocircle.com/blog/phishing-protection/why-phishing-is-a-bigger-threat-than-ever-in-2019/"}]}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Why Phishing Is a Bigger Threat Than Ever in 2019","description":"In the world of cybersecurity, it’s a well-known fact that 93% of data breaches trace their original attack vectors back to phishing.","url":"https://www.duocircle.com/blog/phishing-protection/why-phishing-is-a-bigger-threat-than-ever-in-2019/","datePublished":"2019-03-28T12:59:08.000Z","dateModified":"2025-05-23T17:16:27.000Z","dateCreated":"2019-03-28T12:59:08.000Z","author":{"@type":"Person","@id":"https://www.duocircle.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://www.duocircle.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin runs DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. His focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://www.duocircle.com/blog/phishing-protection/why-phishing-is-a-bigger-threat-than-ever-in-2019/"},"articleSection":"phishing-protection","keywords":"","wordCount":981,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/duocircle/images/2019/03/what-is-DKIM-0031.jpg","caption":"Phishing","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```