Eighty-three percent of companies suffered at least one successful phishing attack in 2021, up from 57 percent in 2020, according to a new Proofpoint report. This article, the first in a two-part series, presents the report’s key findings about the trickiest lures. It also includes a Proofpoint leader’s insights on how companies can boost employee awareness, best assess cybersecurity training programs and address an overlooked third-party risk. The second article will describe the latest twists in social engineering techniques and how companies can gauge the success of their phish-prevention programs. See our two-part series on resolutions for 2022: “Cybersecurity” (Jan. 12, 2022); and “Privacy” (Jan. 19, 2022).