U.S. survey finds high phishing exposure and weak URL-checking habits
Target Trend
Summary
Hide ▲
Show ▼
A recent 2000-person U.S. survey found that phishing exposure remains widespread and that many users still skip basic URL checks before clicking, increasing credential-theft risk. 61% said they had been successfully phished, and 75% do not check URLs before following links. The pattern matters because typosquatted login pages can still capture credentials when users enter them manually. In corporate settings, reused passwords can turn one compromised account into a broader lateral-movement risk.
Related Happenings
Perplexity Comet prompt-injection research shows agentic browsers can be trained into phishing traps
Technical Analysis
First: 11.03.2026 18:38
Last: 11.03.2026 18:38
Sources 1
About this happening:
**Perplexity's Comet AI browser** is the focus of a **technical analysis** thread showing how **prompt injection** and **malicious URLs** can steer an agentic browser into **data...
Perplexity Comet prompt-injection research shows agentic browsers can be trained into phishing traps
Technical AnalysisAbout this happening: **Perplexity's Comet AI browser** is the focus of a **technical analysis** thread showing how **prompt injection** and **malicious URLs** can steer an agentic browser into **data...
Jinkusu-Starkiller ecosystem shift changes threat-actor operations
Threat Actor Meta
First: 03.03.2026 13:10
Last: 03.03.2026 13:10
Sources 1
About this happening:
**Jinkusu** is marketing **Starkiller** as a phishing-as-a-service platform that proxies live login pages to **bypass MFA** and capture session tokens. The service lets customers...
Jinkusu-Starkiller ecosystem shift changes threat-actor operations
Threat Actor MetaAbout this happening: **Jinkusu** is marketing **Starkiller** as a phishing-as-a-service platform that proxies live login pages to **bypass MFA** and capture session tokens. The service lets customers...
Jinkusu's Starkiller phishing-as-a-service ecosystem commoditizes account takeover
Threat Actor Meta
First: 20.02.2026 22:00
Last: 20.02.2026 22:00
Sources 1
About this happening:
A new phishing-as-a-service operation tied to **Jinkusu** is proxying real login pages through attacker infrastructure, making **MFA bypass** and account takeover easier for low-s...
Jinkusu's Starkiller phishing-as-a-service ecosystem commoditizes account takeover
Threat Actor MetaAbout this happening: A new phishing-as-a-service operation tied to **Jinkusu** is proxying real login pages through attacker infrastructure, making **MFA bypass** and account takeover easier for low-s...
Starkiller dark-web phishing platform scales credential theft as a SaaS-style criminal service
Threat Actor Meta
First: 19.02.2026 14:00
Last: 19.02.2026 14:00
Sources 1
About this happening:
The **Starkiller** phishing platform has emerged as a **SaaS-style criminal service**, raising the scale and durability of credential theft operations. It is sold on the **dark we...
Starkiller dark-web phishing platform scales credential theft as a SaaS-style criminal service
Threat Actor MetaAbout this happening: The **Starkiller** phishing platform has emerged as a **SaaS-style criminal service**, raising the scale and durability of credential theft operations. It is sold on the **dark we...
1Password adds phishing-URL pop-up warnings to block credential theft
Security Tool/Service
First: 25.01.2026 17:17
Last: 25.01.2026 17:17
Sources 1
About this happening:
**1Password** has added built-in protection against **phishing URLs**, helping users avoid **credential theft** on malicious login pages. The update adds a **pop-up warning** when...
1Password adds phishing-URL pop-up warnings to block credential theft
Security Tool/ServiceAbout this happening: **1Password** has added built-in protection against **phishing URLs**, helping users avoid **credential theft** on malicious login pages. The update adds a **pop-up warning** when...
Timeline
-
25.01.2026 17:17 2 articles · 4mo ago
U.S. survey quantifies phishing exposure and URL-checking gaps
Industry Or Public Sector UpdateA 2000-person survey in the U.S. found that 61% of respondents had been successfully phished and that 75% do not check URLs before clicking links, while more than 50% said it is more convenient to delete suspicious messages than report them. In corporate environments, 1Password found that a third of employees reuse passwords on work accounts and nearly half have fallen victim to phishing, increasing the risk that one compromised account could let attackers move laterally across networks and systems.
Show sources
- 1Password adds pop-up warnings for suspected phishing sites — www.bleepingcomputer.com — 25.01.2026 17:17
- 1Password adds pop-up warnings for suspected phishing sites — www.bleepingcomputer.com — 25.01.2026 17:17