Summary: Most Targeted Sectors by Phishing in 2025

Phishing continues to consolidate itself as the most widely used type of cyberattack against companies and organizations. In 2025, far from decreasing, this technique has increased in sophistication, personalization, and effectiveness.

This sector analysis shows that cyberattacks are not distributed evenly, but rather that there are clearly prioritized sectors for cybercriminals, both in Spain and worldwide.

Most Targeted Sectors in Spain

In Spain, banking services lead phishing attacks in 2025, driven by digitalization, user volume, and the high value of credentials. Telecommunications also stand out due to their exposure, as they manage critical infrastructure and large volumes of data.

Information services and public administration present significant risk due to the sensitivity of the information they handle and the critical nature of their digital services. Sectors such as non-banking financial services, logistics, retail, and entertainment are increasing their exposure due to their dependence on digital environments and the potential impact of impersonation campaigns.

Most Targeted Sectors Globally

At the global level, phishing follows a similar pattern, with webmail services and payment platforms playing a particularly prominent role. Email remains the primary entry point for accessing corporate credentials, while e-commerce and the payment industry concentrate cyberattacks due to the value of the financial information they manage.

Financial services, social networks, and telecommunications continue to be strategic targets because of their large user bases and relevance in the digital economy. Sectors such as logistics, travel, and digital assets also stand out, as their dependence on interconnected systems can affect operational continuity in the event of a compromise.

What Impact Can Phishing Attacks Have on Each Sector?

In banking services and the payment industry, fraudulent access can result in illicit transfers, transaction manipulation, and exposure of sensitive financial data.

In e-commerce, account compromise impacts both customers and internal operations, generating direct financial losses and affecting trust in the platform.

In telecommunications and information services, phishing can facilitate access to large volumes of personal data or corporate credentials, which are later used for more complex attacks.

Public administrations face the risk of unauthorized access to sensitive citizen information and potential disruption of critical digital services. In these cases, the impact goes beyond financial loss and directly affects operational continuity.

Globally, the compromise of webmail accounts is often the starting point for internal fraud such as Business Email Compromise, enabling lateral movement within the corporate network. Financial services and social networks, when breached, can become tools for more sophisticated and targeted impersonation campaigns.

Finally, sectors such as logistics, retail, and travel may experience disruptions in their management, booking, or distribution systems, resulting in operational delays, financial losses, and damage to relationships with customers and partners.

Phishing Trends and Sector Impact

Cyberattacks are increasingly targeted and personalized, aiming to compromise credentials with high strategic value and access to critical systems.

The objective is no longer just to steal data, but to use that initial access to execute financial fraud, lateral movement, or even deploy ransomware. In highly digitized environments, a single malicious email can trigger operational disruptions and significant reputational impact.

In this scenario, protection against phishing must be addressed as a strategic priority. Strengthening authentication, monitoring access, and training staff are key measures to reduce exposure and ensure business continuity in an increasingly demanding environment.

Want to Learn More?

At ESED, we have prepared a detailed report titled: Phishing Cyberattacks Summary 2025. This document provides a complete analysis with figures and specific defense strategies for companies, covering the state of phishing cyberattacks both globally and in Spain.