The UAE Cybersecurity Council alerts that over 75% of cyber breaches originate from fraudulent email campaigns, with attackers increasingly leveraging AI to make scams more convincing and dangerous. Public awareness and robust online habits are crucial to stay protected.
The UAE Government’s Cybersecurity Council has warned that a large majority of digital intrusions begin with deceptive email campaigns, and urged residents to adopt stronger personal safeguards as attackers exploit human error to gain access to accounts and sensitive data. According to the Emirates News Agency (WAM), the council estimates that more than 75 per cent of breaches originate from fraudulent messages delivered by email. [2][6]
The council highlighted the sheer scale of the threat, saying roughly 3.4 billion phishing messages are dispatched each day worldwide, a volume designed to overwhelm defences and harvest login credentials, banking details and other private information for use in fraud, extortion and ransomware operations. It pointed to common red flags such as urgent payment demands, unsolicited requests for personal information, and links or attachments from unknown senders. [2][7]
Officials stressed that attackers are increasingly using automated tools and artificial intelligence to make scams appear legitimate, refining language, recreating logos and even fabricating plausible sender details to bypass typical warning signs. Industry experts have told Gulf News that such AI-enhanced tactics can produce highly convincing messages in seconds and now underpin the majority of successful breaches. The council therefore called for heightened public awareness of emergent, technology-enabled deception. [3][4]
Practical steps recommended by the council include enabling multi-factor authentication on email and social accounts, applying software updates promptly, avoiding unfamiliar links and QR codes in untrusted settings, and keeping login credentials strictly private. The statement urged users to report any suspicious communications immediately to the relevant authorities rather than engaging with senders, so response teams can analyse and contain threats. [2][5]
The council also warned about risks beyond email, noting frequent compromises of public Wi-Fi and the rise of so-called ‘man-in-the-middle’ attacks that can intercept data on insecure networks. It advised the use of trusted virtual private networks, activating browser safe-browsing features and refraining from accessing financial or sensitive accounts when connected to open networks. Government figures cited earlier this year documented thousands of Wi-Fi breaches and reinforced the message that safer browsing habits are essential. [5]
Public surveys and research cited by the council show varying levels of confidence among residents in spotting scams: while many believe they can recognise fraudulent approaches, substantial proportions report encountering scams regularly and note increasing use of AI by fraudsters. The council framed digital vigilance as a shared responsibility, saying that prompt reporting and sound online habits remain the most effective ways to reduce harm, encapsulating its public awareness push with the slogan ‘Think before you click… and stay cyber safe.’ [4][6]
Source Reference Map
Inspired by headline at: [1]
Sources by paragraph:
– Paragraph 1: [2],[6]
– Paragraph 2: [2],[7]
– Paragraph 3: [3],[4]
– Paragraph 4: [2],[5]
– Paragraph 5: [5]
– Paragraph 6: [4],[6]
Source: Noah Wire Services
Verification / Sources
- https://economymiddleeast.com/news/uae-cyber-security-council-warns-that-3-4-billion-daily-phishing-emails-cause-75-percent-of-breaches/?utm_source=rss&utm_medium=rss&utm_campaign=uae-cyber-security-council-warns-that-3-4-billion-daily-phishing-emails-cause-75-percent-of-breaches – Please view link – unable to able to access data
- https://www.gulftoday.ae/business/2026/04/05/uae-cyber-security-council-75-of-cyber-attacks-start-with-phishing-emails – The UAE Cyber Security Council has issued a warning about the cyber risks associated with email fraud, highlighting that over 75% of cyber breaches originate from phishing emails or fraudulent messages. These deceptive emails often contain malware designed to steal login credentials or facilitate identity theft. The Council emphasized the severity of such messages and their potential consequences, noting that more than 3.4 billion phishing messages are sent daily, targeting individuals worldwide to acquire personal and financial data. To protect personal data, the Council advised users to be cautious of suspicious emails, avoid clicking on unknown links, refrain from scanning QR codes in untrusted locations, and maintain the confidentiality of personal information and login credentials. Additionally, enabling multi-factor authentication and regularly updating systems and applications were recommended to enhance security. The Council also stressed the importance of promptly reporting any fraudulent or suspicious messages to the relevant authorities without interacting with the senders.
- https://gulfnews.com/uae/people/uae-cyber-council-flags-risks-of-ai-powered-phishing-1.500405769 – Experts in digital technology and artificial intelligence (AI) have warned of a significant rise in hacking incidents, driven by the growing reliance on technology and rapid digital transformation. AI is becoming a key factor behind the surge in data breaches, as the number of advanced connected devices has increased from 50 billion to 75 billion. AI-powered hacking techniques are advancing, and the adoption of robust information-security practices remains limited. The UAE Government Cybersecurity Council stated that AI technologies have fundamentally transformed fraud practices, enabling highly complex tasks to be executed in seconds. This has dramatically increased the risk of online scams, particularly those driven by AI, highlighting the need to boost public awareness of emerging threats. AI makes cyber fraud harder to detect, as scammers can now create highly convincing schemes by spoofing voices, altering logos to look official, refining wording and design, framing scams as urgent security requests, and generating fake links that appear legitimate. These tactics contribute to a rapid rise in technology-enabled fraud. The Council confirmed that AI-driven phishing now accounts for more than 90% of digital breaches. Fraudsters can craft messages that appear entirely trustworthy, eliminating the usual warning signs and producing scams almost free of detectable flaws. Users are urged to stay cautious before clicking any links and to verify the source of messages requesting personal or financial information.
- https://csc.gov.ae/en/w/the-2024-state-of-scams-in-the-uae – The UAE Government’s Cybersecurity Council and Trends Research & Advisory revealed key findings on the state of scams in the UAE in 2024. The study showed that 65% of survey participants expressed confidence in their ability to identify fraud, while 9% indicated they lack confidence in reliably recognizing scams. The findings showed that 56% of the UAE population receives a scam attempt at least once per month. Only 12% of respondents stated they are rarely confronted by scams. Additionally, 20% of respondents said the number of scam attempts they face is similar to last year (2023), while 43% reported encountering more scams and 37% experienced fewer scams compared to the previous year. The study confirmed that most UAE citizens are aware that scammers can use AI against them. Awareness of AI-generated text and images is high, but complex AI chats and videos are slightly less known. 50% of respondents believe they have encountered an AI scam in the last 12 months. The poll, which formed the basis of the study, surveyed more than 1,964 UAE citizens. Among the respondents, 59% hold university degrees and 24% hold postgraduate degrees.
- https://www.thenationalnews.com/news/uae/2025/08/24/uaes-cyber-security-council-confirms-12000-wi-fi-breaches-this-year/ – The UAE’s Cyber Security Council reported over 12,000 recorded breaches of Wi-Fi networks in the country since the beginning of the year, accounting for about 35% of the total number of cyber attacks in the UAE in 2025. Experts have warned of the serious risks posed by using non-trusted Wi-Fi networks. Hackers and intruders are attacking users through these networks, with the main risk being ‘man-in-the-middle’ attacks, where hackers read transmitted data, record calls, redirect users to fake websites, or intercept phone calls, in addition to installing malicious software or spyware on users’ devices without their knowledge. The UAE is continuing its efforts to build a secure cyberspace that protects users from growing digital risks. The Cyber Security Council outlined three steps every user should follow to stay safe while browsing the internet on public networks: use a trusted VPN application that encrypts your digital connection, activate the ‘safe browsing’ feature in the browser to ensure you don’t access suspicious websites, and avoid logging into sensitive accounts, such as bank accounts or personal email, when using open Wi-Fi networks.
- https://gulfnews.com/uae/uae-cybersecurity-council-warns-public-against-rising-phishing-scams-1.500414274 – The UAE Government’s Cybersecurity Council has warned of the spread of common fraudulent messages targeting individuals, urging the public to remain vigilant and refrain from interacting with any suspicious messages received via mobile phones or messaging applications. In a statement posted on its official social media accounts, the Council highlighted some of the most prevalent scam messages, including: ‘You’ve won!’, ‘You have a refund’, ‘Verify your bank account’, messages appearing to come from the user’s own phone number, as well as low-interest credit card offers. The Council stressed that such tactics are carefully crafted to appear convincing and are often delivered at unexpected times to prompt recipients to click quickly or share personal information. It explained that fraudulent messages are designed to steal sensitive information such as bank account details and passwords or to install malicious software on smart devices, potentially exposing users to significant financial losses and serious cyber risks. The Council emphasised that awareness represents the first line of defence against such threats, calling on individuals to think before clicking and to avoid sharing any personal or financial information through untrusted links. It also underscored the importance of reporting suspicious messages through officially approved channels. The Cybersecurity Council reaffirmed the need to adhere to digital safety guidelines and protect personal data, contributing to stronger cybersecurity and a safer digital environment for all, under the slogan: ‘Think before you click… and stay cyber safe.’
- https://www.hendryadrian.com/75-of-cyberattacks-start-with-phishing-emails-uae-cyber-council-says/ – Phishing emails now initiate more than 75% of cyberattacks, with attackers sending an estimated 3.4 billion phishing messages globally each day to steal credentials, distribute malware, and harvest personal data. The UAE Cyber Security Council warns users to verify messages, enable multi-factor authentication, apply updates, and report suspicious emails promptly to help disrupt ongoing campaigns.
Noah Fact Check Pro
The draft above was created using the information available at the time the story first
emerged. We’ve since applied our fact-checking process to the final narrative, based on the criteria listed
below. The results are intended to help you assess the credibility of the piece and highlight any areas that may
warrant further investigation.
Freshness check
Score: 7
Notes: The article references recent warnings from the UAE Cybersecurity Council about phishing emails causing 75% of cyber breaches, with 3.4 billion phishing messages sent daily. Similar warnings have been reported in the past, such as in January 2026, indicating that the narrative is not entirely new. (gulfnews.com)
Quotes check
Score: 6
Notes: The article includes direct quotes from the UAE Cybersecurity Council, but these quotes cannot be independently verified through the provided sources. The lack of direct access to the council’s official statements raises concerns about the authenticity of the quotes.
Source reliability
Score: 5
Notes: The primary source, the UAE Cybersecurity Council, is a government entity, which is generally reliable. However, the article relies on secondary sources, such as Gulf Today and Gulf News, which may have their own biases or limitations. The absence of direct access to the council’s official statements reduces the overall reliability.
Plausibility check
Score: 8
Notes: The claims about the prevalence of phishing emails and their role in cyber breaches are plausible and align with known cybersecurity trends. However, the specific figures provided (75% of breaches and 3.4 billion daily phishing messages) cannot be independently verified, which slightly diminishes the credibility.