Phishing, once dismissed as a familiar nuisance in corporate email systems, has evolved into one of the most widespread cybersecurity threats of the past decade. Today’s attacks reach across email, messaging platforms, collaboration tools, voice calls, video meetings and even CRM systems, exploiting the reality that modern workforces communicate across multiple channels at all times.
Security teams report an unprecedented surge. Data collected by Israeli cybersecurity start-up Cyvore shows that malicious phishing messages have increased more than 2,500% since late 2022, with an estimated 15 billion attempts launched each day. Even experienced cybersecurity leaders are being targeted. Eighty-three percent of CISOs say they have been personally approached by attackers.
The spike reflects a major shift in attacker tactics. Technical exploits have become less central, replaced by social manipulation amplified by AI-generated content and coordinated across several communication channels.
“Attackers no longer need sophisticated vulnerabilities,” said Cyvore CEO Ori Segal. “They just need someone to trust the wrong message. Human interaction has become the attack surface.”
A threat no longer limited to email
Credential phishing is among the fastest-growing attack types, surging nearly 1,000%, driven by AI-powered language tools and domain spoofing. Attackers frequently pair multiple channels to appear credible — for example, sending a phishing email followed by a reassuring phone call, or using a text message masquerading as customer support.
Traditional security tools often fail to catch these multi-stage attacks because each individual event appears harmless. The danger emerges only when interactions are connected, something most legacy systems are not designed to detect.
Cyvore’s model: Security that follows the conversation
Founded by Ori Segal, Yiftach Rotem and Yoav Rotem, Cyvore is developing an AI-driven security platform based on the idea that if attacks follow people across channels, defenses must do the same.
Instead of scanning only for malicious links or attachments, the platform analyzes behavioral patterns across communication channels in real time. It evaluates tone, timing, context and relationship history — indicators that often reveal deception before an attack is fully visible.
“If a trusted vendor suddenly reaches out on an unfamiliar platform or asks for unusual access, we detect that shift,” said chief product officer Yiftach Rotem. “Understanding intent is far more powerful than checking URLs.”
Over time, these interactions feed into a behavioral intelligence graph that maps normal communication patterns and flags anomalies that point to manipulation or fraud.
Public involvement: ScanMySMS and the rise of smishing
As phishing spreads beyond enterprise systems, Cyvore launched ScanMySMS, a public tool that analyzes suspicious text messages and URLs. It provides instant risk assessments while collecting anonymized reports that help track emerging global smishing trends.
“Smishing has become one of the most common attack vectors worldwide,” said CTO Yoav Rotem. “Helping the public identify threats also strengthens our intelligence network.”
Toward preventive security
Cyvore’s focus on behavioral analysis aligns with a broader industry shift toward preventive intelligence. By evaluating full communication context rather than isolated messages, the platform aims to identify phishing campaigns before they reach their targets.
The company plans to expand integrations with additional collaboration tools and managed service providers, while advancing predictive analytics to highlight phishing trends early.
A new layer of enterprise protection
Cyvore’s approach is gaining traction among public and private organizations in Israel and the United States, reflecting growing recognition that communication-based attacks require dedicated defenses.
As phishing continues to spread into every channel where people interact, the industry faces a central question: how do you secure not only systems, but the conversations that power them?
Cyvore offers one emerging approach — treating human communication as a core security domain and using AI to analyze intent, context and behavior at the moment it matters most.